Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•3 views

CVE-2022-50652

In the Linux kernel, the following vulnerability has been resolved: uio: uiodmemgenirq: Fix missing unlock in irq configuration Commit b74351287d4b "uio: fix a sleep-in-atomic-context bug in uiodmemgenirqirqcontrol" started calling disableirq without holding the spinlock because it can sleep...

5.9AI score0.00195EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2022-50653

In the Linux kernel, the following vulnerability has been resolved: mmc: atmel-mci: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost is leaked. 2. In the remove path, mmcremovehos...

5.8AI score0.00173EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53781

In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcpwritetimerhandler. With Eric's ref tracker, syzbot finally found a repro for use-after-free in tcpwritetimerhandler by kernel TCP sockets. 0 If SMC creates a kernel socket in smccreate, the kernel...

5.7AI score0.00155EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•3 views

CVE-2022-50637

In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom-hw: Fix memory leak in qcomcpufreqhwreadlut If "cpudev" fails to get opp table in qcomcpufreqhwreadlut, the program will return, resulting in "table" resource is not released...

5.9AI score0.00168EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53780

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix FCLK pstate change underflow Why Currently we set FCLK p-state change watermark calculated based on dummy p-state latency when UCLK p-state is not supported How Calculate FCLK p-state change watermark based o...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•3 views

CVE-2023-53796

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix information leak in f2fsmoveinlinedirents When converting an inline directory to a regular one, f2fs is leaking uninitialized memory to disk because it doesn't initialize the entire directory block. Fix this by...

5.9AI score0.00177EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•4 views

CVE-2022-50644

In the Linux kernel, the following vulnerability has been resolved: clk: ti: dra7-atl: Fix reference leak in ofdra7atlclkprobe pmruntimegetsync will increment pm usage counter. Forgetting to putting operation will result in reference leak. Add missing pmruntimeputsync in some error paths...

5.9AI score0.00199EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•4 views

CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.7AI score0.00156EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53787

In the Linux kernel, the following vulnerability has been resolved: regulator: da9063: fix null pointer deref with partial DT config When some of the da9063 regulators do not have corresponding DT nodes a null pointer dereference occurs on boot because such regulators have no initdata causing the...

5.7AI score0.00155EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2022-50633

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: qcom: Fix memory leak in dwc3qcominterconnectinit oficcget alloc resources for path handle, we should release it when not need anymore. Like the release in dwc3qcominterconnectexit function. Add iccput in error handlin...

5.9AI score0.00168EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53783

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: fix divide by 0 error in calclcoefs echo max of u64 to cost.model can cause divide by 0 error. echo 8:0 rbps=18446744073709551615 /sys/fs/cgroup/io.cost.model divide error: 0000 1 PREEMPT SMP RIP:...

5.9AI score0.00173EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•7 views

CVE-2022-50649

In the Linux kernel, the following vulnerability has been resolved: power: supply: adp5061: fix out-of-bounds read in adp5061getchgtype ADP5061CHGSTATUS1CHGSTATUS is masked with 0x07, which means a length of 8, but adp5061chgtype array size is 4, may end up reading 4 elements beyond the end of th...

5.9AI score0.00176EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53818

In the Linux kernel, the following vulnerability has been resolved: ARM: zynq: Fix refcount leak in zynqearlyslcrinit offindcompatiblenode returns a node pointer with refcount incremented, we should use ofnodeput on error path. Add missing ofnodeput to avoid refcount leak...

5.9AI score0.00165EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53800

In the Linux kernel, the following vulnerability has been resolved: ubi: Fix use-after-free when volume resizing failed There is an use-after-free problem reported by KASAN: ================================================================== BUG: KASAN: use-after-free in ubiebacopytable+0x11f/0x1c...

5.9AI score0.00165EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2022-50638

In the Linux kernel, the following vulnerability has been resolved: ext4: fix bugon in estreesearch caused by bad boot loader inode We got a issue as fllows: ================================================================== kernel BUG at fs/ext4/extentsstatus.c:203! invalid opcode: 0000 1 PREEMP...

6AI score0.00205EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53785

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921: don't assume adequate headroom for SDIO headers mt7921usbsdiotxprepareskb calls mt7921usbsdiowritetxwi and mt7921skbaddusbsdiohdr, both of which blindly assume that adequate headroom will be available in the passed...

5.6AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53804

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfsroot in nilfsevictinode During unmount process of nilfs2, nothing holds nilfsroot structure after nilfs2 detaches its writer in nilfsdetachlogwriter. However, since nilfsevictinode uses...

5.9AI score0.00165EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53803

In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in sesenclosuredataprocess A fix for: BUG: KASAN: slab-out-of-bounds in sesenclosuredataprocess+0x949/0xe30 ses Read of size 1 at addr ffff88a1b043a451 by task systemd-udevd/3271 Checking after a...

5.8AI score0.00165EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53786

In the Linux kernel, the following vulnerability has been resolved: dm flakey: fix a crash with invalid table line This command will crash with NULL pointer dereference: dmsetup create flakey --table \ "0 blockdev --getsize /dev/ram0 flakey /dev/ram0 0 0 1 2 corruptbiobyte 512" Fix the crash by...

5.9AI score0.00195EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53815

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimerdelete itimerdelete has a retry loop when the timer is concurrently expired. On non-RT kernels this just spin-waits until the timer callback has completed, except for posix CPU timers...

5.9AI score0.00161EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53813

In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4mbusepreallocated During allocations, while looking for preallocationsPA in the per inode rbtree, we can't do a direct traversal of the tree because ext4mbdiscardgrouppreallocation can...

5.8AI score0.00161EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•10 views

CVE-2022-50636

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pcideviceispresent for VFs by checking PF pcideviceispresent previously didn't work for VFs because it reads the Vendor and Device ID, which are 0xffff for VFs, which looks like they aren't present. Check the PF instead...

5.9AI score0.00177EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53794

In the Linux kernel, the following vulnerability has been resolved: cifs: fix session state check in reconnect to avoid use-after-free issue Don't collect exiting session in smb2reconnectserver, because it will be released soon. Note that the exiting session will stay in server-smbseslist until i...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53788

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuningctlset tuningctlset might have buffer overrun at X if it didn't break from loop by matching A. static int tuningctlset... for i = 0; i TUNINGCTLSCOUNT; i++ A if nid ==...

6AI score0.00177EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53789

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Improve page fault error reporting If IOMMU domain for device group is not setup properly then we may hit IOMMU page fault. Current page fault handler assumes that domain is always setup and it will hit NULL pointer...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2022-50634

In the Linux kernel, the following vulnerability has been resolved: power: supply: cw2015: Fix potential null-ptr-deref in cwbatprobe cwbatprobe calls createsinglethreadworkqueue and not checked the ret value, which may return NULL. And a null-ptr-deref may happen: cwbatprobe...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53797

In the Linux kernel, the following vulnerability has been resolved: HID: wacom: Use ktimet rather than int when dealing with timestamps Code which interacts with timestamps needs to use the ktimet type returned by functions like ktimeget. The int type does not offer enough space to store these...

5.7AI score0.00173EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•6 views

CVE-2023-53799

In the Linux kernel, the following vulnerability has been resolved: crypto: api - Use work queue in cryptodestroyinstance The function cryptodropspawn expects to be called in process context. However, when an instance is unregistered while it still has active users, the last user may cause the...

5.8AI score0.00173EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2022-50654

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix panic due to wrong pageattr of im-image In the scenario where livepatch and kretfunc coexist, the pageattr of im-image is rox after archpreparebpftrampoline in bpftrampolineupdate, and then modifyfentry or registerfentry...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53806

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: populate subvp cmd info only for the top pipe Why System restart observed while changing the display resolution to 8k with extended mode. Sytem restart was caused by a page fault. How When the driver populates...

5.7AI score0.00155EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2023-53810

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

5.9AI score0.00164EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•5 views

CVE-2023-53817

In the Linux kernel, the following vulnerability has been resolved: crypto: lib/mpi - avoid null pointer deref in mpicmpui During NVMeTCP Authentication a controller can trigger a kernel oops by specifying the 8192 bit Diffie Hellman group and passing a correctly sized, but zeroed Diffie Hellamn...

5.8AI score0.002EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•3 views

CVE-2023-53814

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix dropping valid root bus resources with .end = zero On r8a7791/koelsch: kmemleak: 1 new suspected memory leaks see /sys/kernel/debug/kmemleak cat /sys/kernel/debug/kmemleak unreferenced object 0xc3a34e00 size 64: comm...

5.7AI score0.00156EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•8 views

CVE-2022-50635

In the Linux kernel, the following vulnerability has been resolved: powerpc/kprobes: Fix null pointer reference in archpreparekprobe I found a null pointer reference in archpreparekprobe: echo 'p cmdlineprocshow' kprobeevents echo 'p cmdlineprocshow+16' kprobeevents Kernel attempted to read user...

6.3AI score0.00171EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•2 views

CVE-2022-50647

In the Linux kernel, the following vulnerability has been resolved: RISC-V: Make port I/O string accessors actually work Fix port I/O string accessors such as insb', outsb', etc. which use the physical PCI port I/O address rather than the corresponding memory mapping to get at the requested...

5.9AI score0.00173EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 1:16 a.m.•1 views

CVE-2023-53819

In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in amdgpuvmupdaterange when offsetinbo+mapsize overflows. v2: keep the validations in amdgpuvmbomap v3: add the validations to...

5.9AI score0.00165EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 12:0 a.m.•0 views

CVE-2025-59030

An attacker can trigger the removal of cached records by sending a NOTIFY query over TCP...

7.5CVSS5.9AI score0.00486EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/12/09 12:0 a.m.•3 views

CVE-2025-59029

An attacker can trigger an assertion failure by requesting crafted DNS records, waiting for them to be inserted into the records cache, then send a query with qtype set to ANY...

5.3CVSS5.9AI score0.00324EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/12/08 10:15 p.m.•1 views

CVE-2025-62408

c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using readanswer and processanswer, which can cause a Denial of Service. This issue is fixed in version 1.34.6...

5.9CVSS6.8AI score0.0039EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/08 5:16 p.m.•3 views

CVE-2025-59391

A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap before release-4.3.5-patches. An out-of-bounds read may occur when parsing certain configuration values, allowing an attacker to infer or read memory beyond string boundaries in the .rodata section. This...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40318

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix race in hcicmdsyncdequeueonce hcicmdsyncdequeueonce does lookup and then cancel the entry under two separate lock sections. Meanwhile, hcicmdsyncwork can also delete the same entry, leading to double listd...

5.7AI score0.00156EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40304

In the Linux kernel, the following vulnerability has been resolved: fbdev: Add bounds checking in bitputcs to fix vmalloc-out-of-bounds Add bounds checking to prevent writes past framebuffer boundaries when rendering text near screen edges. Return early if the Y position is off-screen and clip...

6AI score0.00165EPSS
Exploits0References35
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40326

In the Linux kernel, the following vulnerability has been resolved: NFSD: Define actions for the new timedeleg FATTR4 attributes NFSv4 clients won't send legitimate GETATTR requests for these new attributes because they are intended to be used only with CBGETATTR and SETATTR. But NFSD has to do...

5.7AI score0.00148EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•5 views

CVE-2023-53756

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Fix crash due to uninitialized currentvmcs KVM enables 'Enlightened VMCS' and 'Enlightened MSR Bitmap' when running as a nested hypervisor on top of Hyper-V. When MSR bitmap is updated, evmcstouchmsrbitmap function uses...

5.8AI score0.0016EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2022-50616

In the Linux kernel, the following vulnerability has been resolved: regulator: core: Use different devices for resource allocation and DT lookup Following by the below discussion, there's the potential UAF issue between regulator and mfd...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40314

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget In the cdnspgadgetinit and cdnspgadgetexit functions, the gadget structure pdev-gadget was freed before its endpoints. The endpoints are...

5.7AI score0.00161EPSS
Exploits0References33
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2022-50618

In the Linux kernel, the following vulnerability has been resolved: mmc: meson-gx: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost is leaked. 2. In the remove path, mmcremovehost...

5.9AI score0.00173EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40319

In the Linux kernel, the following vulnerability has been resolved: bpf: Sync pending IRQ work before freeing ring buffer Fix a race where irqwork can be queued in bpfringbufcommit but the ring buffer is freed before the work executes. In the syzbot reproducer, a BPF program attached to schedswit...

6AI score0.00161EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•3 views

CVE-2025-40297

In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix use-after-free due to MST port state bypass syzbot reported1 a use-after-free when deleting an expired fdb. It is due to a race condition between learning still happening and a port being deleted, after all its...

5.7AI score0.00176EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2022-50620

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to invalidate dcc-f2fsissuediscard in error path Syzbot reports a NULL pointer dereference issue as below: refcountadd include/linux/refcount.h:193 inline refcountinc include/linux/refcount.h:250 inline refcountinc...

5.7AI score0.00168EPSS
Exploits0References6
Total number of security vulnerabilities68528