CVE-2022-50634

The records describe CVE-2022-50634 in the Linux kernel’s cw2015 power supply code. cw_bat_probe() calls create_singlethread_workqueue() but does not verify the return value. If the call fails and returns NULL, subsequent queue_delayed_work()/__queue_work() can dereference cw_bat->wq, causing ...

Linux Distros Unpatched Vulnerability : CVE-2023-53849

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/msm: fix workqueue leak on bind errors Make sure to destroy the workqueue also in case of early errors during bind e.g. a subcomponent failing to bind. Sinc...

Linux Distros Unpatched Vulnerability : CVE-2022-50663

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: stmmac: fix possible memory leak in stmmacdvrprobe The bitmapfree should be called to free priv-afxdpzcqps when createsinglethreadworkqueue fails, otherwis...

Linux Distros Unpatched Vulnerability : CVE-2022-50634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - power: supply: cw2015: Fix potential null-ptr-deref in cwbatprobe cwbatprobe calls createsinglethreadworkqueue and not checked the ret value, which may return...

PT-2025-49614

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s power management component, specifically within the cw2015 driver. The cw bat probe function does not check the return value of create singlethread...

PT-2025-49694

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix possible memory leak in stmmac dvr probe The bitmap free should be called to free priv-af xdp zc qps when create singlethread workqueue fails, otherwise there will be a memory leak, so we add the err path error w...

CVE-2025-40309 Bluetooth: SCO: Fix UAF on sco_conn_free

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on scoconnfree BUG: KASAN: slab-use-after-free in scoconnfree net/bluetooth/sco.c:87 inline BUG: KASAN: slab-use-after-free in krefput include/linux/kref.h:65 inline BUG: KASAN: slab-use-after-free in...

SUSE CVE-2025-40249

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: make sure the cdev fd is still active before emitting events With the final call to fput on a file descriptor, the release action may be deferred and scheduled on a work queue. The reference count of that descriptor i...

Oracle Linux 10 : ELSA-2025-20095-0: / kernel (ELSA-2025-200950)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-200950 advisory. - selftests: tls: add tests for zero-length records CKI Backport Bot RHEL-114328 CVE-2025-39682 - tls: fix handling of zero-length records on the...

PT-2025-52893

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A flaw exists in the Linux kernel related to the allocation of a workqueue for asynchronous reads within the iomap subsystem. Specifically, after a certain commit, error completions for...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41063)

Bluetooth: hcicore: deadlock at destroyworkqueue. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504797; scriptversion"1.3";...

SUSE CVE-2025-40196

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

mptcp: use the workqueue to destroy unaccepted sockets

...

EUVD-2025-150378

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

Siemens SIMATIC S7-1500 Improper Handling of Exceptional Conditions (CVE-2024-53140)

In the Linux kernel, the following vulnerability has been resolved: netlink: terminate outstanding dump on socket close Netlink supports iterative dumping of data. It provides the families the following ops: - start - optional kicks off the dumping process - dump - actual dump helper, keeps getti...

CVE-2025-40196

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

UBUNTU-CVE-2025-40196

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

CVE-2025-40196

CVE-2025-40196 concerns the Linux kernel quota subsystem. A writeback-triggered flush could trigger a kernel panic due to MEM_RECLAIM flag mismatch when quota_release_work runs on the non MEM_RECLAIM queue. The patch adds a dedicated workqueue with the WQ_MEM_RECLAIM flag for quota_release_work t...

CVE-2025-40196 fs: quota: create dedicated workqueue for quota_release_work

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990898)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990898 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Lock port-lock when calling uarthandlectschange uarthandlectschange has to be...