Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50828

In the Linux kernel, the following vulnerability has been resolved: clk: zynqmp: Fix stack-out-of-bounds in strncpy "BUG: KASAN: stack-out-of-bounds in strncpy+0x30/0x68" Linux-ATF interface is using 16 bytes of SMC payload. In case clock name is longer than 15 bytes, string terminated NULL...

5.9AI score0.00206EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50816

In the Linux kernel, the following vulnerability has been resolved: ipv6: ensure sane device mtu in tunnels Another syzbot report 1 with no reproducer hints at a bug in ip6gre tunnel dev:ip6gretap0 Since ipv6 mcast code makes sure to read dev-mtu once and applies a sanity check on it see commit...

6AI score0.00211EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50809

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

5.7AI score0.00206EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50847

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: it6505: Initialize AUX channel in it6505i2cprobe During device boot, the HPD interrupt could be triggered before the DRM subsystem registers it6505 as a DRM bridge. In such cases, the driver tries to access AUX channe...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50823

In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra114clockinit offindmatchingnode returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

5.9AI score0.00233EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50818

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix runningreq for internal abort commands Disabling the remote phy for a SATA disk causes a hang: root@none$ more /sys/class/sasphy/phy-0:0:8/targetportprotocols sata root@none$ echo 0...

5.8AI score0.00203EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50839

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential buffer head reference count leak As in 'jbd2fcwaitbufs' if buffer isn't uptodate, will return -EIO without update 'journal-jfcoff'. But 'jbd2fcreleasebufs' will release buffer head from ‘jfcoff - 1’ if 'bh' is...

6AI score0.00206EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50835

In the Linux kernel, the following vulnerability has been resolved: jbd2: add miss release buffer head in fcdoonepass In fcdoonepass miss release buffer head after use which will lead to reference count leak...

6AI score0.00201EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50834

In the Linux kernel, the following vulnerability has been resolved: nfc: Fix potential resource leaks nfcgetdevice take reference for the device, add missing nfcputdevice to release it when not need anymore. Also fix the style warnning by use error EOPNOTSUPP instead of ENOTSUPP...

5.9AI score0.00216EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50851

In the Linux kernel, the following vulnerability has been resolved: vhostvdpa: fix the crash in unmap a large memory While testing in vIOMMU, sometimes Guest will unmap very large memory, which will cause the crash. To fix this, add a new function vhostvdpageneralunmap. This function will only...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50821

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Don't leak netobj memory when gssreadproxyverf fails...

5.9AI score0.00215EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50811

In the Linux kernel, the following vulnerability has been resolved: erofs: fix missing unmap if zerofsgetextentcompressedlen fails Otherwise, meta buffers could be leaked...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50827

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix memory leak in lpfccreateport Commit 5e633302ace1 "scsi: lpfc: vmid: Add support for VMID in mailbox command" introduced allocations for the VMID resources in lpfccreateport after the call to scsihostalloc. Upon...

5.8AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50833

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use hdev-workqueue when queuing hdev-cmd,ncmdtimer works syzbot is reporting attempt to schedule hdev-cmdwork work from systemwq WQ into hdev-workqueue WQ which is under draining operation 1, for commit c8efcc2589464ac...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50826

In the Linux kernel, the following vulnerability has been resolved: ipu3-imgu: Fix NULL pointer dereference in imgusubdevsetselection Calling v4l2subdevgettrycrop and v4l2subdevgettrycompose with a subdev state of NULL leads to a NULL pointer dereference. This can currently happen in...

5.7AI score0.00206EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.5 views

CVE-2022-50841

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add overflow check for attribute size The offset addition could overflow and pass the used size check given an attribute with very large size e.g., 0xffffff7f while parsing MFT attributes. This could lead to out-of-boun...

5.8AI score0.00217EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.11 views

CVE-2022-50842

In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Check whether transferred 2D BO is shmem Transferred 2D BO always must be a shmem BO. Add check for that to prevent NULL dereference if userspace passes a VRAM BO...

5.9AI score0.00201EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50838

In the Linux kernel, the following vulnerability has been resolved: net: stream: purge skerrorqueue in skstreamkillqueues Changheon Lee reported TCP socket leaks, with a nice repro. It seems we leak TCP sockets with the following sequence: 1 SOFTIMESTAMPINGTXACK is enabled on the socket. Each ACK...

5.9AI score0.00239EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50832

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix potential memory leak in wilcmacxmit The wilcmacxmit returns NETDEVTXOK without freeing skb, add devkfreeskb to fix it. Compile tested only...

5.9AI score0.00211EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50814

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/zip - fix mismatch in get/set sglsgenr KASAN reported this Bug: 17619.659757 BUG: KASAN: global-out-of-bounds in paramgetint+0x34/0x60 17619.673193 Read of size 4 at addr fffff01332d7ed00 by task readall/1507958...

5.9AI score0.00206EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50849

In the Linux kernel, the following vulnerability has been resolved: pstore: Avoid kcore oops by vmaping with VMIOREMAP An oops can be induced by running 'cat /proc/kcore /dev/null' on devices using pstore with the ram backend because kmapatomic assumes lowmem pages are accessible with va. Unable ...

5.9AI score0.00195EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50846

In the Linux kernel, the following vulnerability has been resolved: mmc: via-sdmmc: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost is leaked. 2. In the remove path, mmcremovehos...

5.8AI score0.00239EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.8 views

CVE-2022-50848

In the Linux kernel, the following vulnerability has been resolved: drivers: dio: fix possible memory leak in dioinit If deviceregister returns error, the 'dev' and name needs be freed. Add a release function, and then call putdevice in the error path, so the name is freed in kobjectcleanup and t...

5.9AI score0.00239EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.6 views

CVE-2022-50829

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in ath9khtcrxmsg, then usbsubmiturb fails and we try to free skb again. It causes use-after-free bug. Moreover, if allocskb fails,...

5.9AI score0.00239EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50819

In the Linux kernel, the following vulnerability has been resolved: udmabuf: Set ubuf-sg = NULL if the creation of sg table fails When userspace tries to map the dmabuf and if for some reason e.g. OOM the creation of the sg table fails, ubuf-sg needs to be set to NULL. Otherwise, when the userspa...

5.9AI score0.00201EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50843

In the Linux kernel, the following vulnerability has been resolved: dm clone: Fix UAF in clonedtr Dmclone also has the same UAF problem when dmresume and dmdestroy are concurrent. Therefore, cancelling timer again in clonedtr...

5.9AI score0.00206EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50812

In the Linux kernel, the following vulnerability has been resolved: security: Restrict CONFIGZEROCALLUSEDREGS to gcc or clang 15.0.6 A bad bug in clang's implementation of -fzero-call-used-regs can result in NULL pointer dereferences see the links above the check for more information. Restrict...

5.7AI score0.00201EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.5 views

CVE-2022-50852

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix use after free in mt7921acpiread Don't dereference "sarroot" after it has been freed...

5.7AI score0.00155EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50844

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix type of second parameter in odneditdpmtable callback With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sur...

5.9AI score0.00201EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50845

In the Linux kernel, the following vulnerability has been resolved: ext4: fix inode leak in ext4xattrinodecreate on an error path There is issue as follows when do setxattr with inject fault: localhost fsck.ext4 -fn /dev/sda e2fsck 1.46.6-rc1 12-Sep-2022 Pass 1: Checking inodes, blocks, and sizes...

5.9AI score0.00211EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50813

In the Linux kernel, the following vulnerability has been resolved: drivers: mcb: fix resource leak in mcbprobe When probe hook function failed in mcbprobe, it doesn't put the device. Compiled test only...

5.9AI score0.00233EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.8 views

CVE-2022-50836

In the Linux kernel, the following vulnerability has been resolved: remoteproc: sysmon: fix memory leak in qcomaddsysmonsubdev The kfree should be called when ofirqgetbyname fails or devmrequestthreadedirq fails in qcomaddsysmonsubdev, otherwise there will be a memory leak, so add kfree to fix it...

5.9AI score0.00211EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.5 views

CVE-2022-50810

In the Linux kernel, the following vulnerability has been resolved: rapidio: devices: fix missing putdevice in mportcdevopen When kfifoalloc fails, the refcount of chdev-dev is left incremental. We should use putdevice&chdev-dev to decrease the ref count of chdev-dev to avoid refcount leak...

5.9AI score0.00233EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.5 views

CVE-2022-50820

In the Linux kernel, the following vulnerability has been resolved: perf/armdmc620: Fix hotplug callback leak in dmc620pmuinit dmc620pmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path. Simil...

5.7AI score0.002EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50824

In the Linux kernel, the following vulnerability has been resolved: tpm: tpmtis: Add the missed acpiputtable to fix memory leak In checkacpitpm2, we get the TPM2 table just to make sure the table is there, not used after the init, so the acpiputtable should be added to release the ACPI memory...

5.9AI score0.00216EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.3 views

CVE-2022-50825

In the Linux kernel, the following vulnerability has been resolved: usb: typec: wusb3801: fix fwnode refcount leak in wusb3801probe I got the following report while doing fault injection test: OF: ERROR: memory leak, expected refcount 1 instead of 4, ofnodeget/ofnodeput unbalanced - destroy cset...

5.7AI score0.00222EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.8 views

CVE-2022-50837

In the Linux kernel, the following vulnerability has been resolved: net: dsa: tag8021q: avoid leaking ctx on dsatag8021qregister error path If dsatag8021qsetup fails, for example due to the inability of the device to install a VLAN, the tag8021q context of the switch will leak. Make sure it is...

5.8AI score0.002EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.5 views

CVE-2022-50822

In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete The MR restrack also needs to be released when delete it, otherwise it cause memory leak as the task struct won't be released...

5.7AI score0.002EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50830

In the Linux kernel, the following vulnerability has been resolved: auxdisplay: hd44780: Fix potential memory leak in hd44780remove hd44780probe allocates a memory chunk for hd with kzalloc and makes "lcd-drvdata-hd44780" point to it. When we call hd44780remove, we should release all relevant...

5.7AI score0.00206EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.2 views

CVE-2022-50840

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible UAF in snictgtcreate Smatch reports a warning as follows: drivers/scsi/snic/snicdisc.c:307 snictgtcreate warn: '&tgt-list' not removed from list If deviceadd fails in snictgtcreate, tgt will be freed, but...

5.9AI score0.00239EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50815

In the Linux kernel, the following vulnerability has been resolved: ext2: Add sanity checks for group and filesystem size Add sanity check that filesystem size does not exceed the underlying device size and that group size is big enough so that metadata can fit into it. This avoid trying to mount...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.5 views

CVE-2022-50817

In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid possible NULL deref in skbclone syzbot got a crash 1 in skbclone, caused by a bug in hsrgetuntaggedframe. When/if createstrippedskbhsr returns NULL, we must not attempt to call skbclone. While we are at it, replac...

5.9AI score0.002EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50850

In the Linux kernel, the following vulnerability has been resolved: scsi: ipr: Fix WARNING in iprinit iprinit will not call unregisterrebootnotifier when pciregisterdriver fails, which causes a WARNING. Call unregisterrebootnotifier when pciregisterdriver fails. notifier callback iprhalt ipr...

5.9AI score0.00195EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/12/30 12:15 p.m.4 views

CVE-2022-50784

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mei: fix potential NULL-ptr deref after clone If cloning the SKB fails, don't try to use it, but rather return as if we should pass it. Coverity CID: 1503456...

5.7AI score0.00155EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 12:15 p.m.2 views

CVE-2022-50785

In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after free Use getdevice and putdevice in the open and close functions to make sure the device doesn't get freed while a file descriptor is open. Also, lock around the freeing of the device buffer and check...

5.8AI score0.00155EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 12:15 p.m.5 views

CVE-2023-54162

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix possible memory leak in smb2lock argv needs to be free when setupasyncwork fails or when the current process is woken up...

5.7AI score0.00156EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 12:15 p.m.4 views

CVE-2022-50786

In the Linux kernel, the following vulnerability has been resolved: media: s5p-mfc: Clear workbit to handle error condition During error on CLOSEINSTANCE command, ctxworkbits was not getting cleared. During consequent mfc execution NULL pointer dereferencing of this context led to kernel panic...

6.1AI score0.00173EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/12/30 1:15 a.m.5 views

CVE-2025-69217

coturn is a free open source implementation of TURN and STUN Server. Versions 4.6.2r5 through 4.7.0-r4 have a bad random number generator for nonces and port randomization after refactoring. Additionally, random numbers aren't generated with openssl's RANDbytes but libc's random if it's not runni...

7.7CVSS5.9AI score0.00363EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/29 11:15 p.m.2 views

CVE-2025-15284

Improper Input Validation vulnerability in qs parse modules allows HTTP DoS.This issue affects qs: 6.14.1. Summary The arrayLimit option in qs did not enforce limits for bracket notation a=1&a=2, only for indexed notation a0=1. This is a consistency bug; arrayLimit should apply uniformly across a...

6.3CVSS6.4AI score0.0041EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/12/29 7:15 p.m.4 views

CVE-2025-68431

libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay image item path triggers a heap buffer over-read in HeifPixelImage::overlay. The function computes a negative row length likely from an unclipped overlay rectangle or...

7.1CVSS6AI score0.00267EPSS
Exploits1References4
Total number of security vulnerabilities68528