669 matches found
CVE-2022-47940
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2write...
GSD-2022-1008327 ntfs: fix use-after-free in ntfs_attr_find()
ntfs: fix use-after-free in ntfsattrfind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.334 by commit...
GSD-2022-1007900 net: microchip: sparx5: Fix potential null-ptr-deref in sparx_stats_init() and sparx5_start()
net: microchip: sparx5: Fix potential null-ptr-deref in sparxstatsinit and sparx5start This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.80 ...
GSD-2022-1007821 arm64: entry: avoid kprobe recursion
arm64: entry: avoid kprobe recursion This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.8 by commit db66629d43b2d12cb43b004a4ca6be1d03228e97, ...
PT-2022-36602 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.9.334 Description: The issue is related to the removal of exit for snd soc util exit in the ASoC soc-utils. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kerne...
GSD-2022-1007457 openvswitch: switch from WARN to pr_warn
openvswitch: switch from WARN to prwarn This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.264 by commit...
PT-2025-18627
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.8 Description A use-after-free condition has been identified in the Linux kernel's Bluetooth L2CAP implementation. This issue arises from a race condition between two parallel flows: l2cap reassemble sdu and...
CVE-2022-41222
mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move...
GSD-2022-1005660 meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init
meson-mx-socinfo: Fix refcount leak in mesonmxsocinfoinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005625 wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi()
wifi: wil6210: debugfs: fix info leak in wilwritefilewmi This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005546 firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails
firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005511 kbuild: dummy-tools: avoid tmpdir leak in dummy gcc
kbuild: dummy-tools: avoid tmpdir leak in dummy gcc This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...
PT-2022-34328 · Linux · Kvm +1
Name of the Vulnerable Software and Affected Versions: KVM versions prior to v5.4.211 Description: The issue concerns the nVMX snapshot pre-VM-Enter BNDCFGS for the !nested run pending case. It was introduced in Linux Kernel version v4.19 and is fixed in version v5.4.211. The actual impact and...
PT-2022-34408 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.256 Description: The issue is related to a buffer overflow in the cp2112 xfer function. This is an automated ID intended to aid in discovery of potential security vulnerabilities, and the actual impact and...
GSD-2022-1005397 hwmon: (gpio-fan) Fix array out of bounds access
hwmon: gpio-fan Fix array out of bounds access This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.66 by commit...
PT-2022-33638 · Linux · Kvm
Name of the Vulnerable Software and Affected Versions: KVM versions prior to v5.19.2 Description: The issue concerns the KVM's nVMX snapshot pre-VM-Enter DEBUGCTL for the !nested run pending case. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions...
GSD-2022-1004375 drm/aperture: Run fbdev removal before internal helpers
drm/aperture: Run fbdev removal before internal helpers This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.56 by commit...
GSD-2022-1004168 net: atlantic: remove aq_nic_deinit() when resume
net: atlantic: remove aqnicdeinit when resume This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.13 by commit...
GSD-2022-1002887 staging: rtl8712: fix uninit-value in usb_read8() and friends
staging: rtl8712: fix uninit-value in usbread8 and friends This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...
GSD-2022-1002872 netfilter: nf_tables: double hook unregistration in netns path
netfilter: nftables: double hook unregistration in netns path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.2 by commit...