Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2022-50559

In the Linux kernel, the following vulnerability has been resolved: clk: imx: scu: fix memleak on platformdeviceadd fails No error handling is performed when platformdeviceadd fails. Add error processing before return, and modified the return value...

5.7AI score0.00195EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•0 views

CVE-2022-50581

In the Linux kernel, the following vulnerability has been resolved: hfs: fix OOB Read in hfsbrecfind Syzbot reported a OOB read bug: ================================================================== BUG: KASAN: slab-out-of-bounds in hfsstrcmp+0x117/0x190 fs/hfs/string.c:84 Read of size 1 at addr...

5.9AI score0.00237EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50577

In the Linux kernel, the following vulnerability has been resolved: ima: Fix memory leak in imainodehash Commit f3cc6b25dcc5 "ima: always measure and audit files in policy" lets measurement or audit happen even if the file digest cannot be calculated. As a result, iint-imahash could have been...

5.7AI score0.00193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50573

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix mt7915ratetxpowerget resource leaks Coverity message: variable "buf" going out of scope leaks the storage. Addresses-Coverity-ID: 1527799 "Resource leaks"...

5.7AI score0.00181EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53697

In the Linux kernel, the following vulnerability has been resolved: nvdimm: Fix memleak of pmu attrgroups in unregisternvdimmpmu Memory pointed by 'ndpmu-pmu.attrgroups' is allocated in function 'registernvdimmpmu' and is lost after 'kfreendpmu' call in function 'unregisternvdimmpmu'...

5.7AI score0.00195EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53702

In the Linux kernel, the following vulnerability has been resolved: s390/crypto: use vector instructions only if available for ChaCha20 Commit 349d03ffd5f6 "crypto: s390 - add crypto library interface for ChaCha20" added a library interface to the s390 specific ChaCha20 implementation. However no...

5.7AI score0.00193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53720

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Release the label when replacing existing ct entry Cited commit doesn't release the label mapping when replacing existing ct entry which leads to following memleak report: unreferenced object 0xffff8881854cf280 size 96...

5.7AI score0.00168EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53721

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix a NULL pointer dereference in ath12kmacophwscan In ath12kmacophwscan, the return value of kzalloc is directly used in memcpy, which may lead to a NULL pointer dereference on failure of kzalloc. Fix this bug by...

5.7AI score0.00168EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53727

In the Linux kernel, the following vulnerability has been resolved: net/sched: fqpie: avoid stalls in fqpietimer When setting a high number of flows limit being 65536, fqpietimer is currently using too much time as syzbot reported. Add logic to yield the cpu every 2048 flows less than 150 usec on...

5.9AI score0.00182EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53696

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix memory leak in qla2x00probeone There is a memory leak reported by kmemleak: unreferenced object 0xffffc900003f0000 size 12288: comm "modprobe", pid 19117, jiffies 4299751452 age 42490.264s hex dump first 32...

6.3AI score0.00197EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2022-50560

In the Linux kernel, the following vulnerability has been resolved: drm/meson: explicitly remove aggregate driver at module unload time Because componentmasterdel wasn't being called when unloading the mesondrm module, the aggregate device would linger forever in the global aggregatedevices list...

5.9AI score0.00195EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50558

In the Linux kernel, the following vulnerability has been resolved: regmap-irq: Use the new numconfigregs property in regmapaddirqchipfwnode Commit faa87ce9196d "regmap-irq: Introduce config registers for irq types" added the numconfigregs, then commit 9edd4f5aee84 "regmap-irq: Deprecate type...

5.7AI score0.00193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50579

In the Linux kernel, the following vulnerability has been resolved: arm64: ftrace: fix module PLTs with mcount Li Huafei reports that mcount-based ftrace with module PLTs was broken by commit: a6253579977e4c6f "arm64: ftrace: consistently handle PLTs." When a module PLTs are used and a module is...

5.8AI score0.00197EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2023-53710

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix error code of return in mt7921acpiread Kernel NULL pointer dereference when ACPI SAR table isn't implemented well. Fix the error code of return to mark the ACPI SAR table as invalid. 5.077128 mt7921e...

5.8AI score0.0018EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50569

In the Linux kernel, the following vulnerability has been resolved: xfrm: Update ipcompscratches with NULL when freed Currently if ipcompallocscratches fails to allocate memory ipcompscratches holds obsolete address. So when we try to free the percpu scratches using ipcompfreescratches it tries t...

5.9AI score0.00227EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•4 views

CVE-2023-53698

In the Linux kernel, the following vulnerability has been resolved: xsk: fix refcount underflow in error path Fix a refcount underflow problem reported by syzbot that can happen when a system is running out of memory. If xpalloctxdescs fails, and it can only fail due to not having enough memory,...

6.4AI score0.00195EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53707

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpucspass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size = sizeofuint32t, will cause uninitialized memory to be...

5.7AI score0.00193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•4 views

CVE-2023-53723

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: disable sdma ecc irq only when sdma RAS is enabled in suspend sdmav40ip is shared on a few asics, but in sdmav40hwfini, driver unconditionally disables eccirq which is only enabled on those asics enabling sdma ecc. Th...

5.9AI score0.00187EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2023-53713

In the Linux kernel, the following vulnerability has been resolved: arm64: sme: Use STR P to clear FFR context field in streaming SVE mode The FFR is a predicate register which can vary between 16 and 256 bits in size depending upon the configured vector length. When saving the SVE state in...

6.3AI score0.00182EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53714

In the Linux kernel, the following vulnerability has been resolved: drm/stm: ltdc: fix late dereference check In ltdccrtcsetcrcsource, struct drmcrtc was dereferenced in a containerof before the pointer check. This could cause a kernel panic. Fix this smatch warning: drivers/gpu/drm/stm/ltdc.c:11...

5.7AI score0.00189EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53731

In the Linux kernel, the following vulnerability has been resolved: netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in netlinkseterr 1 A similar issue was fixed in commit 1d482e666b8e "netlink: disable IRQs for netlinklocktable" in netlinklocktable This patch...

5.9AI score0.00211EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50557

In the Linux kernel, the following vulnerability has been resolved: pinctrl: thunderbay: fix possible memory leak in thunderbaybuildfunctions The thunderbayaddfunctions will free memory of thunderbayfuncs when everything is ok, but thunderbayfuncs will not be freed when thunderbayaddfunctions...

5.7AI score0.00193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2022-50568

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: fix fhidg lifetime vs cdev The embedded struct cdev does not have its lifetime correctly tied to the enclosing struct fhidg, so there is a use-after-free if /dev/hidgN is held open while the gadget is deleted...

5.9AI score0.002EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2022-50574

In the Linux kernel, the following vulnerability has been resolved: drm/omap: dss: Fix refcount leak bugs In dssinitports and dssuninitports, we should call ofnodeput for the reference returned by ofgraphgetportbyid in fail path or when it is not used anymore...

5.9AI score0.002EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•4 views

CVE-2022-50572

In the Linux kernel, the following vulnerability has been resolved: ASoC: audio-graph-card: fix refcount leak of cpuep in graphforeachlink The ofgetnextchild returns a node with refcount incremented, and decrements the refcount of prev. So in the error path of the while loop, ofnodeput needs be...

5.9AI score0.002EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•6 views

CVE-2023-53730

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: use spinlockirqsave in adjustinuseandcalccost adjustinuseandcalccost use spinlockirq and IRQ will be enabled when unlock. DEADLOCK might happen if we have held other locks and disabled IRQ before invoking it. Fix it b...

5.9AI score0.00187EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2023-53706

In the Linux kernel, the following vulnerability has been resolved: mm/vmemmap/devdax: fix kernel crash when probing devdax devices commit 4917f55b4ef9 "mm/sparse-vmemmap: improve memory savings for compound devmaps" added support for using optimized vmmemap for devdax devices. But how vmemmap...

5.8AI score0.00181EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2023-53699

In the Linux kernel, the following vulnerability has been resolved: riscv: move memblockallowresize after linear mapping is ready The initial memblock metadata is accessed from kernel image mapping. The regions arrays need to "reallocated" from memblock and accessed through linear mapping to cove...

5.7AI score0.00195EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2023-53703

In the Linux kernel, the following vulnerability has been resolved: HID: amdsfh: Fix for shift-out-of-bounds Shift operation of 'exp' and 'shift' variables exceeds the maximum number of shift values in the u32 range leading to UBSAN shift-out-of-bounds. ... 6.120512 UBSAN: shift-out-of-bounds in...

5.7AI score0.00193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2023-53695

In the Linux kernel, the following vulnerability has been resolved: udf: Detect system inodes linked into directory hierarchy When UDF filesystem is corrupted, hidden system inodes can be linked into directory hierarchy which is an avenue for further serious corruption of the filesystem and kerne...

5.9AI score0.00202EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2022-50571

In the Linux kernel, the following vulnerability has been resolved: btrfs: call btrfsremovefreespacecachelocked on cache load failure Now that lockdep is staying enabled through our entire CI runs I started seeing the following stack in generic/475 ------------ cut here ------------ WARNING: CPU:...

5.7AI score0.00181EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2022-50565

In the Linux kernel, the following vulnerability has been resolved: wifi: plfxlc: fix potential memory leak in lfxusbenablerx urbs does not be freed in exception paths in lfxusbenablerx. That will trigger memory leak. To fix it, add kfree for urbs within "error" label. Compile tested only...

5.7AI score0.00193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2023-53709

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Handle race between rbmovetail and rbcheckpages It seems a data race between ringbuffer writing and integrity check. That is, RBFLAG of headpage is been updating, while at same time RBFLAG was cleared when doing...

5.9AI score0.00182EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50562

In the Linux kernel, the following vulnerability has been resolved: tpm: acpi: Call acpiputtable to fix memory leak The start and length of the event log area are obtained from TPM2 or TCPA table, so we call acpigettable to get the ACPI information, but the acpigettable should be coupled with...

5.9AI score0.00195EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53728

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in a loop searching the ID...

5.9AI score0.00191EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53732

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix NULL dereference in niwriteinode Syzbot reports a NULL dereference in niwriteinode. When creating a new inode, if allocation fails in miinit function called in miformatnew function, mi-mrec is set to NULL. In the...

5.7AI score0.00182EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53729

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmiencdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAXLEN + 1. If a string is actually MAXLEN + 1 length, this wil...

5.9AI score0.00187EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•7 views

CVE-2023-53718

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not swap cpubuffer during resize process When ringbufferswapcpu was called during resize process, the cpu buffer was swapped in the middle, resulting in incorrect state. Continuing to run in the wrong state will...

5.9AI score0.00183EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2022-50556

In the Linux kernel, the following vulnerability has been resolved: drm: Fix potential null-ptr-deref due to drmmmodeconfiginit drmmmodeconfiginit will call drmmodecreatestandardproperties and won't check the ret value. When drmmodecreatestandardproperties failed due to alloc, property will be a...

5.8AI score0.00195EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2023-53692

In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free read in ext4findextent for bigalloc + inline Syzbot found the following issue: loop0: detected capacity change from 0 to 2048 EXT4-fs loop0: mounted filesystem 00000000-0000-0000-0000-000000000000 without...

5.7AI score0.00205EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•5 views

CVE-2022-50561

In the Linux kernel, the following vulnerability has been resolved: iio: fix memory leak in iiodeviceregistereventset When iiodeviceregistersysfsgroup returns failed, iiodeviceregistereventset needs to free attrs array. Otherwise, kmemleak would scan & report memory leak as below: unreferenced...

5.7AI score0.00195EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2022-50578

In the Linux kernel, the following vulnerability has been resolved: class: fix possible memory leak in classregister If classaddgroups returns error, the 'cp-subsys' need be unregister, and the 'cp' need be freed. We can not call ksetunregister here, because the 'cls' will be freed in callback...

5.9AI score0.00221EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2022-50566

In the Linux kernel, the following vulnerability has been resolved: mtd: Fix device name leak when register device failed in addmtddevice There is a kmemleak when register device failed: unreferenced object 0xffff888101aab550 size 8: comm "insmod", pid 3922, jiffies 4295277753 age 925.408s hex du...

5.9AI score0.00229EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•4 views

CVE-2022-50567

In the Linux kernel, the following vulnerability has been resolved: fs: jfs: fix shift-out-of-bounds in dbAllocAG Syzbot found a crash : UBSAN: shift-out-of-bounds in dbAllocAG. The underlying bug is the missing check of bmp-dbagl2size. The field can be greater than 64 and trigger the...

5.9AI score0.00227EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•3 views

CVE-2023-53716

In the Linux kernel, the following vulnerability has been resolved: net: fix skb leak in skbtstamptx Commit 50749f2dd685 "tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp." added a call to skborphanfragsrx to fix leaks with zerocopy skbs. But it ended up adding a leak of its own...

5.7AI score0.00193EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•1 views

CVE-2023-53726

In the Linux kernel, the following vulnerability has been resolved: arm64: csum: Fix OoB access in IP checksum code for negative lengths Although commit c2c24edb1d9c "arm64: csum: Fix pathological zero-length calls" added an early return for zero-length input, syzkaller has popped up with an...

6.2AI score0.00187EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/22 2:15 p.m.•2 views

CVE-2023-53711

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential data corruption We must ensure that the subrequests are joined back into the head before we can retransmit a request. If the head was not on the commit lists, because the server wrote it synchronously, we sti...

5.9AI score0.00182EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/22 1:15 p.m.•3 views

CVE-2025-11411

NLnet Labs Unbound up to and including version 1.24.1 is vulnerable to possible domain hijack attacks. Promiscuous NS RRSets that complement positive DNS replies in the authority section can be used to trick resolvers to update their delegation information for the zone. Usually these RRSets are...

7.1CVSS6.8AI score0.00311EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/22 12:0 a.m.•10 views

CVE-2025-40780

In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...

8.6CVSS6.6AI score0.00454EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/10/22 12:0 a.m.•4 views

CVE-2025-8677

Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1...

7.5CVSS6.6AI score0.1096EPSS
Exploits0References3
Total number of security vulnerabilities68528