Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•1 views

CVE-2025-68728

In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix uninit memory after failed miread in miformatnew Fix a KMSAN un-init bug found by syzkaller. ntfsgetbh expects a buffer from sbgetblk, that buffer may not be uptodate. We do not bring the buffer uptodate before setting...

5.8AI score0.00161EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•8 views

CVE-2025-68367

In the Linux kernel, the following vulnerability has been resolved: macintosh/machid: fix race condition in machidtoggleemumouse The following warning appears when running syzkaller, and this issue also exists in the mainline code. ------------ cut here ------------ listadd double add:...

5.9AI score0.00165EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•6 views

CVE-2025-68375

In the Linux kernel, the following vulnerability has been resolved: perf/x86: Fix NULL event access and potential PEBS record loss When intelpmudrainpebsicl is called to drain PEBS records, the perfeventoverflow could be called to process the last PEBS record. While perfeventoverflow could trigge...

5.7AI score0.00162EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•5 views

CVE-2025-68380

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix peer HE MCS assignment In ath11kwmisendpeerassoccmd, peer's transmit MCS is sent to firmware as receive MCS while peer's receive MCS sent as transmit MCS, which goes against firmwire's definition. While connecti...

5.9AI score0.00168EPSS
Exploits0References24
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•2 views

CVE-2025-68365

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Initialize allocated memory before use KMSAN reports: Multiple uninitialized values detected: - KMSAN: uninit-value in ntfsreadhdr 3 - KMSAN: uninit-value in bcmp 3 Memory is allocated by getname, which is a wrapper for...

5.5CVSS5.9AI score0.00168EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•3 views

CVE-2025-68725

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not let BPF test infra emit invalid GSO types to stack Yinhao et al. reported that their fuzzer tool was able to trigger a skbwarnbadoffload from netifskbfeatures - gsofeaturescheck. When a BPF program - triggered via BPF...

5.5CVSS5.9AI score0.00161EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•6 views

CVE-2025-68732

In the Linux kernel, the following vulnerability has been resolved: gpu: host1x: Fix race in syncpt alloc/free Fix race condition between host1xsyncptalloc and host1xsyncptput by using krefputmutex instead of krefput + manual mutex locking. This ensures no thread can acquire the syncptmutex after...

5.9AI score0.00161EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•3 views

CVE-2025-68724

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

6AI score0.00154EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•3 views

CVE-2025-68727

In the Linux kernel, the following vulnerability has been resolved: ntfs3: Fix uninit buffer allocated by getname Fix uninit errors caused after buffer allocation given to 'de'; by initializing the buffer with zeroes. The fix was found by using KMSAN...

5.8AI score0.00161EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•3 views

CVE-2025-68378

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check in bpfgetstackid Syzkaller reported a KASAN slab-out-of-bounds write in bpfgetstackid when copying stack trace data. The issue occurs when the perf trace contains more stack entries than the stack...

5.9AI score0.00157EPSS
Exploits0References24
UbuntuCve
UbuntuCve
•added 2025/12/24 11:16 a.m.•2 views

CVE-2025-68730

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix page fault in ivpubounbindallbosfromcontext Don't add BO to the vdev-bolist in ivpugemcreateobject. When failure happens inside drmgemshmemcreate, the BO is not fully created and ivpugembofree callback will not be...

5.7AI score0.00155EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-54004

In the Linux kernel, the following vulnerability has been resolved: udplite: Fix NULL pointer dereference in skmemraiseallocated. syzbot reported 0 a null-ptr-deref in skgetrmem0 while using IPPROTOUDPLITE 0x88: 14:25:52 executing program 1: r0 = socket$inet60xa, 0x80002, 0x88 We had a similar...

6.1AI score0.00173EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2023-54010

In the Linux kernel, the following vulnerability has been resolved: ACPICA: ACPICA: check null return of ACPIALLOCATEZEROED in acpidbdisplayobjects ACPICA commit 0d5f467d6a0ba852ea3aad68663cbcbd43300fd4 ACPIALLOCATEZEROED may fails, objectinfo might be null and will cause null pointer dereference...

6.1AI score0.00185EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•5 views

CVE-2022-50704

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix use-after-free during usb config switch In the process of switching USB config from rndis to other config, if the hardware does not support the -pullup callback, or the hardware encounters a low probability fault...

5.7AI score0.0017EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2023-54037

In the Linux kernel, the following vulnerability has been resolved: ice: prevent NULL pointer deref during reload Calling ethtool during reload can lead to call trace, because VSI isn't configured for some time, but netdev is alive. To fix it add rtnl lock for VSI deconfig and config. Set...

5.7AI score0.00145EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2023-54033

In the Linux kernel, the following vulnerability has been resolved: bpf: fix a memory leak in the LRU and LRUPERCPU hash maps The LRU and LRUPERCPU maps allocate a new element on update before locking the target hash table bucket. Right after that the maps try to lock the bucket. If this fails,...

5.7AI score0.00157EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-53988

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds read in hdrdeletede Here is a BUG report from syzbot: BUG: KASAN: slab-out-of-bounds in hdrdeletede+0xe0/0x150 fs/ntfs3/index.c:806 Read of size 16842960 at addr ffff888079cc0600 by task...

5.7AI score0.00168EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•9 views

CVE-2023-54036

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: Fix memory leaks with RTL8723BU, RTL8192EU The wifi + bluetooth combo chip RTL8723BU can leak memory especially? when it's connected to a bluetooth audio device. The busy bluetooth traffic generates lots of C2H ca...

5.9AI score0.00157EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•6 views

CVE-2023-54002

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some things more complicated. The assertion of valid states when starting fro...

5.7AI score0.00168EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2023-54032

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it, which is struct...

5.9AI score0.00172EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2022-50707

In the Linux kernel, the following vulnerability has been resolved: virtio-crypto: fix memory leak in virtiocryptoalgskcipherclosesession 'vcctrlreq' is alloced in virtiocryptoalgskcipherclosesession, and should be freed in the invalid ctrlstatus-status error handling case. Otherwise there is a...

5.7AI score0.00168EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•10 views

CVE-2023-54009

In the Linux kernel, the following vulnerability has been resolved: i2c: cadence: cdnsi2cmasterxfer: Fix runtime PM leak on error path The cdnsi2cmasterxfer function gets a runtime PM reference when the function is entered. This reference is released when the function is exited. There is currentl...

5.8AI score0.00173EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-54039

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939tptxdatnew: fix out-of-bounds memory access In the j1939tptxdatnew function, an out-of-bounds memory access could occur during the memcpy operation if the size of skb-cb is larger than the size of struct...

6AI score0.00161EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•1 views

CVE-2023-54001

In the Linux kernel, the following vulnerability has been resolved: staging: r8712: Fix memory leak in r8712initxmitpriv In the above mentioned routine, memory is allocated in several places. If the first succeeds and a later one fails, the routine will leak memory. This patch fixes commit...

5.9AI score0.00176EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-53992

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: ocb: don't leave if not joined If there's no OCB state, don't ask the driver/mac80211 to leave, since that's just confusing. Since set/clear the chandef state, that's a simple check...

5.7AI score0.00167EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-54040

In the Linux kernel, the following vulnerability has been resolved: ice: fix wrong fallback logic for FDIR When adding a FDIR filter, if icevcfdirsetirqctx returns failure, the inserted fdir entry will not be removed and if icevcfdirwritefltr returns failure, the fdir context info for irq handler...

5.7AI score0.00157EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2022-50709

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: avoid uninit memory read in ath9khtcrxmsg syzbot is reporting uninit value at ath9khtcrxmsg 1, for ioctlUSBRAWIOCTLEPWRITE can call ath9khifusbrxstream with pktlen = 0 but ath9khifusbrxstream uses devallocskbpktlen +...

5.9AI score0.00181EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•1 views

CVE-2023-54021

In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...

5.9AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-54031

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

5.7AI score0.00155EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2025-68357

In the Linux kernel, the following vulnerability has been resolved: iomap: allocate sdiodonewq for async reads as well Since commit 222f2c7c6d14 "iomap: always run error completions in user context", read error completions are deferred to sdiodonewq. This means the workqueue also needs to be...

5.9AI score0.00209EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2025-68360

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks MT7996 driver can use both wed and wedhif2 devices to offload traffic from/to the wireless NIC. In the current codebase we assume to always use the primary w...

5.7AI score0.00174EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-54026

In the Linux kernel, the following vulnerability has been resolved: opp: Fix use-after-free in lazyopptables after probe deferral When devpmoppoffindiccpaths in allocateopptable returns -EPROBEDEFER, the opptable is freed again, to wait until all the interconnect paths are available. However, if...

5.7AI score0.00157EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•6 views

CVE-2023-53989

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both createmappingnoalloc and updatemappingprot sanity-check their 'virt' parameter, but the check itself doesn't make much sense. The condition used today appears to be a historical accident...

5.9AI score0.00173EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-54012

In the Linux kernel, the following vulnerability has been resolved: net: fix stack overflow when LRO is disabled for virtual interfaces When the virtual interface's feature is updated, it synchronizes the updated feature for its own lower interface. This propagation logic should be worked as the...

5.9AI score0.00191EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-53993

In the Linux kernel, the following vulnerability has been resolved: PCI/DOE: Fix memory leak with CONFIGDEBUGOBJECTS=y After a pcidoetask completes, its workstruct needs to be destroyed to avoid a memory leak with CONFIGDEBUGOBJECTS=y...

5.7AI score0.00167EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2023-54015

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Devcom, fix error flow in mlx5devcomregisterdevice In case devcom allocation is failed, mlx5 is always freeing the priv. However, this priv might have been allocated by a different thread, and freeing it might lead to...

5.9AI score0.00173EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•5 views

CVE-2023-53987

In the Linux kernel, the following vulnerability has been resolved: ping: Fix potentail NULL deref for /proc/net/icmp. After commit dbca1596bbb0 "ping: convert to RCU lookups, get rid of rwlock", we use RCU for ping sockets, but we should use spinlock for /proc/net/icmp to avoid a potential NULL...

5.7AI score0.00167EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•5 views

CVE-2023-54016

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix memory leak in rxdesc and txdesc Currently when ath12kdpccdescinit is called we allocate memory to rxdescs and txdescs. In ath12kdpcccleanup, during descriptor cleanup rxdescs and txdescs memory is not freed. Th...

5.7AI score0.00156EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-54042

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix VAS mm use after free The refcount on mm is dropped before the coprocessor is detached...

5.7AI score0.00157EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2023-53999

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: TC, Fix internal port memory leak The flow rule can be splited, and the extra postact rules are added to postact table. It's possible to trigger memleak when the rule forwards packets from internal port and over tunnel...

6.3AI score0.00159EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2023-54020

In the Linux kernel, the following vulnerability has been resolved: dmaengine: sf-pdma: pdmadesc memory leak fix Commit b2cc5c465c2c "dmaengine: sf-pdma: Add multithread support for a DMA channel" changed sfpdmaprepdmamemcpy to unconditionally allocate a new sfpdmadesc each time it is called. The...

5.7AI score0.00164EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2025-68359

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free of qgroup record after failure to add delayed ref head In the previous code it was possible to incur into a double kfree scenario when calling adddelayedrefhead. This could happen if the record was reported...

5.8AI score0.00167EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-54005

In the Linux kernel, the following vulnerability has been resolved: binder: fix memory leak in binderinit In binderinit, the destruction of binderallocshrinkerinit is not performed in the wrong path, which will cause memory leaks. So this commit introduces binderallocshrinkerexit and calls it in...

5.9AI score0.00177EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•8 views

CVE-2023-54041

In the Linux kernel, the following vulnerability has been resolved: iouring: fix memory leak when removing provided buffers When removing provided buffers, iobuffer structs are not being disposed of, leading to a memory leak. They can't be freed individually, because they are allocated in...

5.7AI score0.00162EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-54030

In the Linux kernel, the following vulnerability has been resolved: iouring/net: don't overflow multishot recv Don't allow overflowing multishot recv CQEs, it might get out of hand, hurt performance, and in the worst case scenario OOM the task...

5.8AI score0.00145EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-54003

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix GID entry ref leak when createah fails If AH create request fails, release sgidattr to avoid GID entry referrence leak reported while releasing GID table...

6.1AI score0.00173EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•2 views

CVE-2025-68350

In the Linux kernel, the following vulnerability has been resolved: exfat: fix divide-by-zero in exfatallocatebitmap The variable maxracount can be 0 in exfatallocatebitmap, which causes a divide-by-zero error in the subsequent modulo operation i % maxracount, leading to a system crash. When...

5.7AI score0.00156EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•5 views

CVE-2022-50711

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix possible memory leak in mtkprobe If mtkwedaddhw has been called, mtkwedexit needs be called in error path or removing module to free the memory allocated in mtkwedaddhw...

5.7AI score0.00156EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-53998

In the Linux kernel, the following vulnerability has been resolved: hwrng: virtio - Fix race on dataavail and actual data The virtio rng device kicks off a new entropy request whenever the data available reaches zero. When a new request occurs at the end of a read operation, that is, when the...

5.9AI score0.00177EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/24 11:15 a.m.•4 views

CVE-2023-54025

In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled In case WoWlan was never configured during the operation of the system, the hw-wiphy-wowlanconfig will be NULL. rsiconfigwowlan checks whether wowlanconfig is...

5.9AI score0.00168EPSS
Exploits0References7
Total number of security vulnerabilities68528