Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•1 views

CVE-2022-50460

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifsflock If not flock, before return -ENOLCK, should free the xid, otherwise, the xid will be leaked...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•1 views

CVE-2023-53503

In the Linux kernel, the following vulnerability has been resolved: ext4: allow ext4getgroupinfo to fail Previously, ext4getgroupinfo would treat an invalid group number as BUG, since in theory it should never happen. However, if a malicious attaker or fuzzer modifies the superblock via the block...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53468

In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix memory leak in allocwbufs kmemleak reported a sequence of memory leaks, and show them as following: unreferenced object 0xffff8881575f8400 size 1024: comm "mount", pid 19625, jiffies 4297119604 age 20.383s hex dump fir...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53453

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: free iio for atombios when driver shutdown Fix below kmemleak when unload radeon driver: unreferenced object 0xffff9f8608ede200 size 512: comm "systemd-udevd", pid 326, jiffies 4294682822 age 716.338s hex dump first 3...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53456

In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: Add length check when parsing nlattrs There are three places that qla4xxx parses nlattrs: - qla4xxxsetchapentry - qla4xxxifacesetparam - qla4xxxsysfsddbsetparam and each of them directly converts the nlattr to...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53531

In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. 1 BUG: kernel NULL pointer dereference, address:...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50450

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2023-53464

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Check that sock is valid before iscsisetparam The validity of sock should be checked before assignment to avoid incorrect values. Commit 57569c37f0ad "scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling...

5.5CVSS5.9AI score0.00151EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53513

In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbdioctl arg without verification. The UBSAN warning calltrace like below: UBSAN: Undefined behaviour in fs/buffer.c:1709:35 signed integer...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53467

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential leak in rtw89appendprobereqie Do kfreeskbnew before goto out to prevent potential leak...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53516

In the Linux kernel, the following vulnerability has been resolved: macvlan: add forgotten nlapolicy for IFLAMACVLANBCCUTOFF The previous commit 954d1fa1ac93 "macvlan: Add netlink attribute for broadcast cutoff" added one additional attribute named IFLAMACVLANBCCUTOFF to allow broadcast cutfoff...

7.8CVSS6.6AI score0.00133EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2023-53530

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use rawsmpprocessorid instead of smpprocessorid The following call trace was observed: localhost kernel: nvme nvme0: NVME-FC0: controller connect complete localhost kernel: BUG: using smpprocessorid in preemptible...

5.5CVSS6.2AI score0.00135EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50458

In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra210clockinit offindmatchingnode returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53529

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: Fix memory leak in rtw88usb Kmemleak shows the following leak arising from routine in the usb probe routine: unreferenced object 0xffff895cb29bba00 size 512: comm "udev-worker", pid 534, jiffies 4294903932 age...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50452

In the Linux kernel, the following vulnerability has been resolved: net: sched: cake: fix null pointer access issue when cakeinit fails When the default qdisc is cake, if the qdisc of devqueue fails to be inited during mqprioinit, cakereset is invoked to clear resources. In this case, the tins is...

5.5CVSS5.9AI score0.00147EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•4 views

CVE-2023-53455

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: drop all currently held locks if deadlock happens If vc4hdmiresetlink returns -EDEADLK, it means that a deadlock happened in the locking context. This situation should be addressed by dropping all currently held locks an...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2023-53532

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix deinitialization of firmware resources Currently, in ath11kahbfwresourcesinit, iommu domain mapping is done only for the chipsets having fixed firmware memory. Also, for such chipsets, mapping is done only if it...

5.5CVSS5.8AI score0.00135EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2023-53496

In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bidirectional socketnode lookups. But when nrcpus is set to a smaller number than actually present, the...

5.5CVSS5.9AI score0.00127EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2022-50427

In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: fix possible memory leak in sndac97devregister If deviceregister fails in sndac97devregister, it should call putdevice to give up reference, or the name allocated in devsetname is leaked...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2022-50429

In the Linux kernel, the following vulnerability has been resolved: memory: of: Fix refcount leak bug in oflpddr3getddrtimings We should add the ofnodeput when breaking out of foreachchildofnode as it will automatically increase and decrease the refcount...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53473

In the Linux kernel, the following vulnerability has been resolved: ext4: improve error handling from ext4dirhash The ext4dirhash will almost never fail, especially when the hash tree feature was first introduced. However, with the addition of support of encrypted, casefolded file names, that...

7.8CVSS6.5AI score0.00154EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53449

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: Fix potential memleak in dasdeckdinit dasdreservereq is allocated before dasdvolinforeq, and it also needs to be freed before the error returns, just like the other cases in this function...

5.5CVSS5.8AI score0.00146EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2022-50442

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate buffer length while parsing index indxread is called when we have some NTFS directory operations that need more information from the index buffers. This adds a sanity check to make sure the returned index buffe...

7.1CVSS6.7AI score0.00149EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50432

In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected use-after-free. The race occurs when the root node is freed during...

7.8CVSS6.2AI score0.0015EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50422

In the Linux kernel, the following vulnerability has been resolved: scsi: libsas: Fix use-after-free bug in smpexecutetasksg When executing SMP task failed, the smpexecutetasksg calls deltimer to delete "slowtask-timer". However, if the timer handler sastaskinternaltimedout is running, the deltim...

7.8CVSS6.2AI score0.0015EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50441

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Lag, fix failure to cancel delayed bond work Commit 0d4e8ed139d8 "net/mlx5: Lag, avoid lockdep warnings" accidentally removed a call to cancel delayed bond work thus it may cause queued delay to expire and fall on an...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50435

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid crash when inline data creation follows DIO write When inode is created and written to using direct IO, there is nothing to clear the EXT4STATEMAYINLINEDATA flag. Thus when inode gets truncated later to say 1 byte and...

5.5CVSS6AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53514

In the Linux kernel, the following vulnerability has been resolved: gpu: host1x: Fix memory leak of device names The device names allocated by devsetname need be freed before module unloading, but they can not be freed because the kobject's refcount which was set in deviceinitialize has not be...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53474

In the Linux kernel, the following vulnerability has been resolved: x86/MCE/AMD: Use an u64 for bankmap Thee maximum number of MCA banks is 64 MAXNRBANKS, see a0bc32b3cacf "x86/mce: Increase maximum number of banks to 64". However, the bankmap which contains a bitfield of which banks to initializ...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50437

In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: fix memory corruption with too many bridges Add the missing sanity check on the bridge counter to avoid corrupting data beyond the fixed-sized bridge array in case there are ever more than eight bridges. Patchwork:...

7.8CVSS6.2AI score0.00153EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50423

In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage There is an use-after-free reported by KASAN: BUG: KASAN: use-after-free in acpiutremovereference+0x3b/0x82 Read of size 1 at addr ffff888112afc460 by task modprobe/2111...

7.8CVSS6.2AI score0.00153EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•1 views

CVE-2023-53498

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential null dereference The adev-dm.dc pointer can be NULL and dereferenced in amdgpudmfini without checking. Add a NULL pointer check before calling dcdmubsrvdestroy. Found by Linux Verification Center...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•1 views

CVE-2022-50438

In the Linux kernel, the following vulnerability has been resolved: net: hinic: fix memory leak when reading function table When the input parameter idx meets the expected case option in hinicdbggetfunctable, readdata is not released. Fix it...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2022-50457

In the Linux kernel, the following vulnerability has been resolved: mtd: core: Fix refcount error in delmtddevice delmtddevice will call ofnodeput to mtdgetofnodemtd, which is mtd-dev.ofnode. However, memset&mtd-dev, 0 is called before ofnodeput. As the result, ofnodeput won't do anything in...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53488

In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix possible panic during hotplug remove During hotplug remove it is possible that the update counters work might be pending, and may run after memory has been freed. Cancel the update counters work before freeing memory...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53490

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix disconnect vs accept race Despite commit 0ad529d9fd2b "mptcp: fix possible divide by zero in recvmsg", the mptcp protocol is still prone to a race between disconnect or shutdown and accept. The root cause is that the...

4.7CVSS6.1AI score0.00103EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2023-53511

In the Linux kernel, the following vulnerability has been resolved: iouring: fix fget leak when fs don't support nowait buffered read Heming reported a BUG when using iouring doing link-cp on ocfs2. 1 Do the following steps can reproduce this BUG: mount -t ocfs2 /dev/vdc /mnt/ocfs2 cp testfile...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•2 views

CVE-2022-50454

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix a use-after-free in nouveaugemprimeimportsgtable nouveauboinit is backed by ttmboinit and ferries its return code back to the caller. On failures, ttm will call nouveaubodelttm and free the memory.Thus, when...

7.8CVSS6.2AI score0.0015EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2022-50467

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFTID An error case exit from lpfccmplctcmdgftid results in a call to lpfcnlpput with a null pointer to a nodelist structure. Changed lpfccmplctcmdgftid to...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 12:15 p.m.•3 views

CVE-2022-50428

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off-by-one errors in fast-commit block filling Due to several different off-by-one errors, or perhaps due to a late change in design that wasn't fully reflected in the code that was actually merged, there are several ve...

5.5CVSS6AI score0.00146EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•1 views

CVE-2025-39907

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: stm32fmc2: avoid overlapping mappings on ECC buffer Avoid below overlapping mappings by using a contiguous non-cacheable buffer. 4.077708 DMA-API: stm32fmc2nfc 48810000.nand-controller: cacheline tracking EEXIST,...

5.5CVSS6.4AI score0.0014EPSS
Exploits0References31
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•2 views

CVE-2025-39910

In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc, mm/kasan: respect gfp mask in kasanpopulatevmalloc kasanpopulatevmalloc and its helpers ignore the caller's gfpmask and always allocate memory using the hardcoded GFPKERNEL flag. This makes them inconsistent with...

5.5CVSS6.4AI score0.00093EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•2 views

CVE-2025-39897

In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Add error handling for RX metadata pointer retrieval Add proper error checking for dmaenginedescgetmetadataptr which can return an error pointer and lead to potential crashes or undefined behaviour if the...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References14
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•2 views

CVE-2025-39899

In the Linux kernel, the following vulnerability has been resolved: mm/userfaultfd: fix kmaplocal LIFO ordering for CONFIGHIGHPTE With CONFIGHIGHPTE on 32-bit ARM, movepagespte maps PTE pages using kmaplocalpage, which requires unmapping in Last-In-First-Out order. The current code maps dstpte...

5.5CVSS6AI score0.00135EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•1 views

CVE-2025-39895

In the Linux kernel, the following vulnerability has been resolved: sched: Fix schednumafindnthcpu if mask offline schednumafindnthcpu uses a bsearch to look for the 'closest' CPU in scheddomainsnumamasks and given cpus mask. However they might not intersect if all CPUs in the cpus mask are...

5.5CVSS6.4AI score0.00136EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•2 views

CVE-2025-39909

In the Linux kernel, the following vulnerability has been resolved: mm/damon/lrusort: avoid divide-by-zero in damonlrusortapplyparameters Patch series "mm/damon: avoid divide-by-zero in DAMON module's parameters application". DAMON's RECLAIM and LRUSORT modules perform no validation on...

5.5CVSS6.3AI score0.00137EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•2 views

CVE-2025-39925

In the Linux kernel, the following vulnerability has been resolved: can: j1939: implement NETDEVUNREGISTER notification handler syzbot is reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 problem, for j1939 protocol did not have NETDEVUNREGISTER notification handler...

5.5CVSS6.7AI score0.0012EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•1 views

CVE-2025-39914

In the Linux kernel, the following vulnerability has been resolved: tracing: Silence warning when chunk allocation fails in tracepidwrite Syzkaller trigger a fault injection warning: WARNING: CPU: 1 PID: 12326 at tracepointaddfunc+0xbfc/0xeb0 Modules linked in: CPU: 1 UID: 0 PID: 12326 Comm:...

5.5CVSS6.4AI score0.00154EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•1 views

CVE-2025-39918

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: fix linked list corruption Never leave scheduled wcid entries on the temporary on-stack list...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/10/01 8:15 a.m.•1 views

CVE-2025-39919

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: add missing check for rx wcid entries Non-station wcid entries must not be passed to the rx functions. In case of the global wcid entry, it could even lead to corruption in the wcid array due to pointer being...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References4
Total number of security vulnerabilities68528