CVE-2026-23206

Summary: CVE-2026-23206 affects the Linux kernel dpaa2-switch driver where zero interfaces (num_ifs == 0) caused a NULL-like ZERO_SIZE_PTR allocation and a kernel panic during probe. The issue stems from allocating arrays with kcalloc() using ethsw->sw_attr.num_ifs and dereferencing ports[0] i...

CVE-2023-53752

In the Linux kernel, the following vulnerability has been resolved: net: deal with integer overflows in kmallocreserve Blamed commit changed: ptr = kmallocsize; if ptr size = ksizeptr; size = kmallocsizeroundupsize; ptr = kmallocsize; This allowed various crash as reported by syzbot 1 and Kyle...

PT-2025-49482

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.39 Description The Linux kernel contained an issue where an integer overflow in the kmalloc reserve function could lead to crashes. Specifically, if the size parameter passed to kmalloc reserve was greater th...

DEBIAN-CVE-2023-52631

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix an NULL dereference bug The issue here is when this is called from ntfsloadattrlist. The "size" comes from le32tocpuattr-res.datasize so it can't overflow on a 64bit systems but on 32bit systems the "+ 1023" can...

PT-2022-34615 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.9 Description: The issue is related to handling data vault when the value is ZERO SIZE PTR in the thermal/int340x thermal component. The actual impact and attack plausibility have not yet been proven...

CVE-2017-7261

In was found that in the Linux kernel, in vmwsurfacedefineioctl function in 'drivers/gpu/drm/vmwgfx/vmwgfxsurface.c' file, a 'numsizes' parameter is assigned a user-controlled value which is not checked if it is zero. This is used in a call to kmalloc and later leads to dereferencing ZEROSIZEPTR,...