CVE-2023-53808

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: fix memory leak in mwifiexhistogramread Always free the zeroed page on return from 'mwifiexhistogramread'...

CVE-2023-53808

CVE-2023-53808 pertains to the Linux kernel WiFi driver mwifiex. The vulnerability is a memory leak in mwifiex_histogram_read(); the fix ensures the zeroed page is always freed on return from mwifiex_histogram_read(). Affected component is the mwifiex histogram read path inside the mwifiex subsys...

PT-2025-49668

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the mwifiex histogram read function within the mwifiex module. The issue occurs because a zeroed page is not always freed upon return from the function, leading t...

CVE-2025-40221

CVE-2025-40221 (Linux kernel) affects the media: pci: mg4b subsystem. The vulnerability stems from uninitialized iio scan data that can leak uninitialized stack data to userspace. The fix zeros the scan structure before use to prevent leaking sensitive data. Affected environments reference patche...

CVE-2025-13470

In RNP version 0.18.0 a refactoring regression causes the symmetric session key used for Public-Key Encrypted Session Key PKESK packets to be left uninitialized except for zeroing, resulting in it always being an all-zero byte array. Any data encrypted using public-key encryption in this release...

CVE-2025-13402

Removed by vendor...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990834)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990834 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPICA: check null return of ACPIALLOCATEZEROED in acpidbconverttopackage ACPICA commit...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990491)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990491 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: fix unexpected zeroed page mapping with zram swap Two processes under CLONEVM cloning, user...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990531)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990531 advisory. In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value in copyname syzbot reported BUG: KMSAN: uninit-value in...

CVE-2023-53713

CVE-2023-53713 affects the Linux kernel on arm64 with SME in streaming SVE mode. The vulnerability arises from clearing the FFR context field using an unconditional 8-byte store, which may fail to clear the entire field or corrupt memory if the SME vector length is not 64 bytes. The fix replaces ...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987594)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987594 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: fix unexpected zeroed page mapping with zram swap Two processes under CLONEVM cloning, user...

EUVD-2022-55152

In the Linux kernel, the following vulnerability has been resolved: mm: fix unexpected zeroed page mapping with zram swap Two processes under CLONEVM cloning, user process can be corrupted by seeing zeroed page unexpectedly. CPU A CPU B doswappage doswappage SWPSYNCHRONOUSIO path SWPSYNCHRONOUSIO...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414404)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414404 advisory. Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986278)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986278 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/netfront: destroy queues before realnumtxqueues is zeroed xennetdestroyqueues relies on...

EUVD-2025-14107

Malicious code in bioql PyPI...

CVE-2025-39891 wifi: mwifiex: Initialize the chan_stats array to zero

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Initialize the chanstats array to zero The adapter-chanstats array is initialized in mwifiexinitchannelscangap with vmalloc, which doesn't zero out memory. The array is filled in mwifiexupdatechanstatistics and the...

DEBIAN-CVE-2023-53181

In the Linux kernel, the following vulnerability has been resolved: dma-buf/dma-resv: Stop leaking on krealloc failure Currently dmaresvgetfences will leak the previously allocated array if the fence iteration got restarted and the kreallocarray fails. Free the old array by hand, and make sure we...

Linux Distros Unpatched Vulnerability : CVE-2016-20014

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In pamtacplus.c in pamtacplus before 1.4.1, pamsmacctmgmt does not zero out the arep data structure. CVE-2016-20014 Note that Nessus relies on the presence of t...

iio: light: as73211: Ensure buffer holes are zeroed

...

UBUNTU-CVE-2025-39690

In the Linux kernel, the following vulnerability has been resolved: iio: accel: sca3300: fix uninitialized iio scan data Fix potential leak of uninitialized stack data to userspace by ensuring that the channels array is zeroed before use...