30 matches found
EUVD-2025-36476
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix crypto buffers in non-linear memory The crypto API, through the scatterlist API, expects input buffers to be in linear memory. We handle this with the cifssgsetbuf helper that converts vmalloc'd memory to their...
CVE-2025-40052 smb: client: fix crypto buffers in non-linear memory
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix crypto buffers in non-linear memory The crypto API, through the scatterlist API, expects input buffers to be in linear memory. We handle this with the cifssgsetbuf helper that converts vmalloc'd memory to their...
AZL-75122 CVE-2025-39891 affecting package kernel for versions less than 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Initialize the chanstats array to zero The adapter-chanstats array is initialized in mwifiexinitchannelscangap with vmalloc, which doesn't zero out memory. The array is filled in mwifiexupdatechanstatistics and the...
CVE-2023-53435 cassini: Fix a memory leak in the error handling path of cas_init_one()
In the Linux kernel, the following vulnerability has been resolved: cassini: Fix a memory leak in the error handling path of casinitone cassaturnfirmwareinit allocates some memory using vmalloc. This memory is freed in the .remove function but not it the error handling path of the probe. Add the...
PT-2025-40065
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The adapter-chan stats array within the mwifiex module is not properly initialized to zero, potentially leading to an information leak. The array is allocated using vmalloc, which does n...
kernel: rcu: dump vmalloc memory info safely
A flaw was found in the Read-Copy-Update RCU core of the Linux kernel related to how memory information for vmalloc-allocated objects is dumped. Under certain sequences, calling callrcu may lead to the invocation of vmallocdumpobj while holding the vmaparealock spinlock in an interrupt context...
SUSE CVE-2024-41094
In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Only set smemstart is enable per module option Only export struct fbinfo.fix.smemstart if that is required by the user and the memory does not come from vmalloc. Setting struct fbinfo.fix.smemstart breaks systems...
DEBIAN-CVE-2024-41094
In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Only set smemstart is enable per module option Only export struct fbinfo.fix.smemstart if that is required by the user and the memory does not come from vmalloc. Setting struct fbinfo.fix.smemstart breaks systems...
Linux kernel 安全漏洞
Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that stems from setting memstart without checking if the memory is coming from a vmalloc function, which can cause problems when DMA memory is supporte...
PT-2025-53190
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc4-rt2-yocto-preempt-rt+ 15 Description The Linux kernel contained a flaw related to memory information dumping within the RCU Read-Copy-Update subsystem. Specifically, when call rcu was invoked multiple...