Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40295

In the Linux kernel, the following vulnerability has been resolved: fscrypt: fix left shift underflow when inode-iblkbits PAGESHIFT When simulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, an error trace appears during partition table reading at boot...

5.7AI score0.00173EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40313

In the Linux kernel, the following vulnerability has been resolved: ntfs3: pretend $Extend records as regular files Since commit af153bb63a33 "vfs: catch invalid modes in mayopen" requires any inode be one of SIFDIR/SIFLNK/SIFREG/SIFCHR/SIFBLK/ SIFIFO/SIFSOCK type, use SIFREG for $Extend records...

5.7AI score0.00161EPSS
Exploits0References33
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53749

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00024EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•0 views

CVE-2022-50621

In the Linux kernel, the following vulnerability has been resolved: dm: verity-loadpin: Only trust verity targets with enforcement Verity targets can be configured to ignore corrupted data blocks. LoadPin must only trust verity targets that are configured to perform some kind of enforcement when...

5.7AI score0.00159EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2022-50617

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/powerplay/psm: Fix memory leak in power state init Commit 902bc65de0b3 "drm/amdgpu/powerplay/psm: return an error in power state init" made the power state init function return early in case of failure to get an entry...

5.7AI score0.00168EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53764

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Handle lock during peerid find ath12kpeerfindbyid requires that the caller hold the ab-baselock. Currently the WBM error path does not hold the lock and calling that function, leads to the following lockdepassertin...

5.7AI score0.00145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2022-50630

In the Linux kernel, the following vulnerability has been resolved: mm: hugetlb: fix UAF in hugetlbhandleuserfault The vmalock and hugetlbfaultmutex are dropped before handling userfault and reacquire them again after handleuserfault, but reacquire the vmalock could lead to UAF1,2 due to the...

5.9AI score0.00168EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2022-50629

In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Fix memory leak in rsicoexattach The coexcb needs to be freed when rsicreatekthread failed in rsicoexattach...

5.8AI score0.00176EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2022-50624

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

5.9AI score0.00173EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2023-53750

In the Linux kernel, the following vulnerability has been resolved: pinctrl: freescale: Fix a memory out of bounds when numconfigs is 1 The config passed in by pad wakeup is 1, when numconfigs is 1, Configuration 1 should not be fetched, which will be detected by KASAN as a memory out of bounds...

5.7AI score0.00155EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2022-50619

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix memory leak in kfdmemdmamapuserptr If the number of pages from the userptr BO differs from the SG BO then the allocated memory for the SG table doesn't get freed before returning -EINVAL, which may lead to a memor...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•3 views

CVE-2023-53759

In the Linux kernel, the following vulnerability has been resolved: HID: hidraw: fix data race on device refcount The hidrawopen function increments the hidraw device reference counter. The counter has no dedicated synchronization mechanism, resulting in a potential data race when concurrently...

5.7AI score0.00156EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2023-53752

In the Linux kernel, the following vulnerability has been resolved: net: deal with integer overflows in kmallocreserve Blamed commit changed: ptr = kmallocsize; if ptr size = ksizeptr; size = kmallocsizeroundupsize; ptr = kmallocsize; This allowed various crash as reported by syzbot 1 and Kyle...

5.7AI score0.00156EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53743

In the Linux kernel, the following vulnerability has been resolved: PCI: Free released resource after coalescing releaseresource doesn't actually free the resource or resource list entry so free the resource list entry to avoid a leak...

5.7AI score0.00168EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2023-53744

In the Linux kernel, the following vulnerability has been resolved: soc: ti: pm33xx: Fix refcount leak in am33xxpmprobe wkupm3ipcget takes refcount, which should be freed by wkupm3ipcput. Add missing refcount release in the error paths...

5.9AI score0.00173EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•3 views

CVE-2023-53763

In the Linux kernel, the following vulnerability has been resolved: Revert "f2fs: fix to do sanity check on extent cache correctly" syzbot reports a f2fs bug as below: UBSAN: array-index-out-of-bounds in fs/f2fs/f2fs.h:3275:19 index 1409 is out of range for type 'le32923' aka 'unsigned int923' Ca...

5.7AI score0.00156EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53747

In the Linux kernel, the following vulnerability has been resolved: vcscreen: reload load of struct vcdata pointer in vcswrite to avoid UAF After a call to consoleunlock in vcswrite the vcdata struct can be freed by vcportdestruct. Because of that, the struct vcdata pointer must be reloaded in th...

5.9AI score0.00165EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2023-53751

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential use-after-free bugs in TCPServerInfo::hostname TCPServerInfo::hostname may be updated once or many times during reconnect, so protect its access outside reconnect path as well and then prevent any potential...

5.7AI score0.00156EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53768

In the Linux kernel, the following vulnerability has been resolved: regmap-irq: Fix out-of-bounds access when allocating config buffers When allocating the 2D array for handling IRQ type registers in regmapaddirqchipfwnode, the intent is to allocate a matrix with numconfigbases rows and...

5.9AI score0.00172EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53769

In the Linux kernel, the following vulnerability has been resolved: virt/coco/sev-guest: Double-buffer messages The encryption algorithms read and write directly to shared unencrypted memory, which may leak information as well as permit the host to tamper with the message integrity. Instead, copy...

5.7AI score0.00104EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2023-53762

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in hcidisconnectallsync Use-after-free can occur in hcidisconnectallsync if a connection is deleted by concurrent processing of a controller event. To prevent this the code now tries to iterate over th...

5.8AI score0.00155EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40310

In the Linux kernel, the following vulnerability has been resolved: amd/amdkfd: resolve a race in amdgpuamdkfddevicefinisw There is race in amdgpuamdkfddevicefinisw and interrupt. if amdgpuamdkfddevicefinisw run in b/w kfdcleanupnodes and kfreekfd, and KGD interrupt generated. kernel panic log:...

5.7AI score0.00156EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2022-50623

In the Linux kernel, the following vulnerability has been resolved: fpga: prevent integer overflow in dflfeatureioctlsetirq The "hdr.count sizeofs32" multiplication can overflow on 32 bit systems leading to memory corruption. Use arraysize to fix that...

5.9AI score0.00168EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•11 views

CVE-2022-50626

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: fix memory leak in dvbusbadapterinit Syzbot reports a memory leak in "dvbusbadapterinit". The leak is due to not accounting for and freeing current iteration's adapter-priv in case of an error. Currently if an err...

5.9AI score0.00195EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40290

In the Linux kernel, the following vulnerability has been resolved: xsk: avoid data corruption on cq descriptor number Since commit 30f241fcf52a "xsk: Fix immature cq descriptor production", the descriptor number is stored in skb control block and xskcqsubmitaddrlocked relies on it to put the ume...

5.8AI score0.00155EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

6.2AI score0.00168EPSS
Exploits0References35
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•5 views

CVE-2025-40320

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential cfid UAF in smb2queryinfocompound When smb2queryinfocompound retries, a previously allocated cfid may have been freed in the first attempt. Because cfid wasn't reset on replay, later cleanup could act o...

5.7AI score0.00156EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40303

In the Linux kernel, the following vulnerability has been resolved: btrfs: ensure no dirty metadata is written back for an fs with errors BUG During development of a minor feature make sure all btrfsbio::endio is called in task context, I noticed a crash in generic/388, where metadata writes...

5.7AI score0.00156EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•5 views

CVE-2025-40301

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: validate skb length for unknown CC opcode In hcicmdcompleteevt, if the command complete event has an unknown opcode, we assume the first byte of the remaining skb-data contains the return status. However,...

5.7AI score0.00156EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40305

In the Linux kernel, the following vulnerability has been resolved: 9p/transfd: p9fdrequest: kick rx thread if EPOLLIN p9readwork doesn't set Rworksched and doesn't do scheduleworkm-rq if listempty&m-reqlist. However, if the pipe is full, we need to read more data and this used to work prior to...

5.7AI score0.00145EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2022-50622

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential memory leak in ext4fcrecordmodifiedinode As krealloc may return NULL, in this case 'state-fcmodifiedinodes' may not be freed by krealloc, but 'state-fcmodifiedinodes' already set NULL. Then will lead to...

5.8AI score0.00168EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2023-53748

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix potential array out-of-bounds in decoder queuesetup variable nplanes is provided by user via system call argument. The possible value of qdata-fmt-numplanes is 1-3, while the value of nplanes can be...

5.7AI score0.00155EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53766

In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Check for read-only mounted filesystem in txBegin This patch adds a check for read-only mounted filesystem in txBegin before starting a transaction potentially saving from NULL pointer deref...

5.9AI score0.00165EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40292

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix received length check in big packets Since commit 4959aebba8c0 "virtio-net: use mtu size as buffer length for big packets", when guest gso is off, the allocated size for big packets is not MAXSKBFRAGS PAGESIZE...

5.8AI score0.00168EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•3 views

CVE-2025-40316

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fix device use-after-free on unbind A recent change fixed device reference leaks when looking up drm platform device driver data during bind but failed to remove a partial fix which had been added by commit...

5.7AI score0.0016EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40294

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix OOB access in parseadvmonitorpattern In the parseadvmonitorpattern function, the value of the 'length' variable is currently limited to HCIMAXEXTADLENGTH251. The size of the 'value' array in the mgmtadvpatter...

5.7AI score0.00168EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40293

In the Linux kernel, the following vulnerability has been resolved: iommufd: Don't overflow during division for dirty tracking If pgshift is 63 then BITSPERTYPEbitmap-bitmap pgsize will overflow to 0 and this triggers divide by 0. In this case the index should just be 0, so reorganize things to...

5.8AI score0.00168EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•7 views

CVE-2025-40307

In the Linux kernel, the following vulnerability has been resolved: exfat: validate cluster allocation bits of the allocation bitmap syzbot created an exfat image with cluster bits not set for the allocation bitmap. exfat-fs reads and uses the allocation bitmap without checking this. The problem ...

5.7AI score0.00158EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40315

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Fix epfile null pointer access after ep enable. A race condition occurs when ffsfuncepsenable runs concurrently with ffsdatareset. The ffsdataclear called in ffsdatareset sets ffs-epfiles to NULL before resettin...

5.7AI score0.00168EPSS
Exploits0References35
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2022-50625

In the Linux kernel, the following vulnerability has been resolved: serial: amba-pl011: avoid SBSA UART accessing DMACR register Chapter "B Generic UART" in "ARM Server Base System Architecture" 1 documentation describes a generic UART interface. Such generic UART does not support DMA. In current...

5.9AI score0.00199EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2025-40324

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix crash in nfsd4readrelease When tracing is enabled, the tracenfsdreaddone trace point crashes during the pynfs read.testNoFh test...

5.9AI score0.00161EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•3 views

CVE-2025-40299

In the Linux kernel, the following vulnerability has been resolved: gve: Implement gettimex64 with -EOPNOTSUPP gve implemented a ptpclock for sole use of doauxwork at this time. ptpclockgettime and ptpsysoffset assume every ptpclock has implemented either gettimex64 or gettime64. Stub gettimex64...

5.7AI score0.00155EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2025-40296

In the Linux kernel, the following vulnerability has been resolved: platform/x86: int3472: Fix double free of GPIO device during unregister regulatorunregister already frees the associated GPIO device. On ThinkPad X9 Lunar Lake, this causes a double free issue that leads to random failures when...

5.7AI score0.00155EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2022-50615

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix reference count leak in snruncoremmiomap pcigetdevice will increase the reference count for the returned pcidev, so snruncoregetmcdev will return a pcidev with its reference count increased. We need to...

5.9AI score0.00168EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53753

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix mapping to non-allocated address Why There is an issue mapping non-allocated location of memory. It would allocate gpio registers from an array out of bounds. How Patch correct numbers of bounds for using...

5.7AI score0.00155EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•4 views

CVE-2025-40291

In the Linux kernel, the following vulnerability has been resolved: iouring: fix regbuf vector size truncation There is a report of ioestimatebvecsize truncating the calculated number of segments that leads to corruption issues. Check it doesn't overflow "int"s used later. Rough but simple, can b...

5.7AI score0.00155EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•5 views

CVE-2022-50628

In the Linux kernel, the following vulnerability has been resolved: drm/gud: Fix UBSAN warning UBSAN complains about invalid value for bool: 101.165172 drm Initialized gud 1.0.0 20200422 for 2-3.2:1.0 on minor 1 101.213360 gud 2-3.2:1.0: drm fb1: guddrmfb frame buffer device 101.213426 usbcore:...

5.8AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•3 views

CVE-2022-50627

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix monitor mode bringup crash When the interface is brought up in monitor mode, it leads to NULL pointer dereference crash. This crash happens when the packet type is extracted for a SKB. This extraction which is...

5.7AI score0.00166EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•2 views

CVE-2023-53765

In the Linux kernel, the following vulnerability has been resolved: dm cache: free background tracker's queued work in btrackerdestroy Otherwise the kernel can BUG with: 2245.426978 ============================================================================= 2245.435155 BUG btwork Tainted: G B W...

5.7AI score0.00169EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/08 12:0 a.m.•1 views

CVE-2023-53767

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix memory leak in ath12kqmidrivereventwork Currently the buffer pointed by event is not freed in case ATH12KFLAGUNREGISTERING bit is set, this causes memory leak. Add a goto skip instead of return, to ensure event...

5.8AI score0.00145EPSS
Exploits0References4
Total number of security vulnerabilities68528