Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50258

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...

7.8CVSS6.3AI score0.00153EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53173

In the Linux kernel, the following vulnerability has been resolved: tty: pcnuart: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremove instead...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50245

In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfifo and just free priv. But priv is still in the chdev-filelist, then list traversal may cause UAF. This fixes the following smatch...

7.8CVSS6.2AI score0.00156EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53183

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.9AI score0.00016EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53170

In the Linux kernel, the following vulnerability has been resolved: net: dsa: Removed unneeded ofnodeput in felixparseportsnode Remove unnecessary ofnodeput from the continue path to prevent child node from being released twice, which could avoid resource leak or other unexpected issues...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50243

In the Linux kernel, the following vulnerability has been resolved: sctp: handle the error returned from sctpauthasocinitactivekey When it returns an error from sctpauthasocinitactivekey, the activekey is actually not updated. The old shkey will be freeed while it's still used as active key in...

7.8CVSS6.1AI score0.0015EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50255

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix reading strings from synthetic events The follow commands caused a crash: cd /sys/kernel/tracing echo 's:open char file' dynamicevents echo 'hist:keys=commonpid:file=filename:onchange$file.traceopen,$file'...

7.1CVSS6.6AI score0.00149EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.6 views

CVE-2022-50242

In the Linux kernel, the following vulnerability has been resolved: drivers: net: qlcnic: Fix potential memory leak in qlcnicsriovinit If vp alloc failed in qlcnicsriovinit, all previously allocated vp needs to be freed...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53171

In the Linux kernel, the following vulnerability has been resolved: vfio/type1: prevent underflow of lockedvm via exec When a vfio container is preserved across exec, the task does not change, but it gets a new mm with lockedvm=0, and loses the count from existing dma mappings. If the user later...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53163

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: don't hold nilock when calling truncatesetsize syzbot is reporting hung task at douseraddrfault 1, for there is a silent deadlock between PGlocked bit and nilock lock. Since filemapupdatepage calls filemapreadfolio afte...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53177

In the Linux kernel, the following vulnerability has been resolved: media: hi846: fix usage of pmruntimegetifinuse pmruntimegetifinuse does not only return nonzero values when the device is in use, it can return a negative errno too. And especially during resuming from system suspend, when runtim...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53180

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid NULL pointer access during management transmit cleanup Currently 'ar' reference is not added in skbcb. Though this is generally not used during transmit completion callbacks, on interface removal the remaining...

5.5CVSS6.2AI score0.00128EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50247

In the Linux kernel, the following vulnerability has been resolved: usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq Can not set the @sharedhcd to NULL before decrease the usage count by usbputhcd, this will cause the shared hcd not released...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50249

In the Linux kernel, the following vulnerability has been resolved: memory: of: Fix refcount leak bug in ofgetddrtimings We should add the ofnodeput when breaking out of foreachchildofnode as it will automatically increase and decrease the refcount...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.0 views

CVE-2022-50251

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, the memory that allocated in mmcallochost will be leaked and it will lead a kernel crash because of deleting not added...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50250

In the Linux kernel, the following vulnerability has been resolved: regulator: core: fix usecount leakage when handling boot-on I found a usecount leakage towards supply regulator of rdev with boot-on option. ┌───────────────────┐ ┌───────────────────┐ │ regulatordev A │ │ regulatordev B │ │...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53168

In the Linux kernel, the following vulnerability has been resolved: usb: ucsiacpi: Increase the command completion timeout Commit 130a96d698d7 "usb: typec: ucsi: acpi: Increase command completion timeout value" increased the timeout from 5 seconds to 60 seconds due to issues related to alternate...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53184

In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing the allocation of the buffer for SVE state when changing SME vector length we introduced an immediate reallocation of the SVE state, this is also done when...

7.8CVSS6.7AI score0.00151EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53185

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes A bad USB device is able to construct a service connection response message with target endpoint being ENDPOINT0 which is reserved for HTCCTRLRSVDSVC and should not be...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50239

In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix writes in read-only memory region This commit fixes a kernel oops because of a write in some read-only memory: 9.068287 Unable to handle kernel write to read-only memory at virtual address ffff800009240ad8...

7.1CVSS6.3AI score0.00148EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50234

In the Linux kernel, the following vulnerability has been resolved: iouring/afunix: defer registered files gc to iouring release Instead of putting iouring's registered files in unixgc we want it to be done by iouring itself. The trick here is to consider iouring registered files for cycle...

7.8CVSS6.2AI score0.00153EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2022-50261

In the Linux kernel, the following vulnerability has been resolved: drm/sti: Fix return type of stidvo,hda,hdmiconnectormodevalid With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure the...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53172

In the Linux kernel, the following vulnerability has been resolved: fsverity: reject FSIOCENABLEVERITY on mode 3 fds Commit 56124d6c87fd "fsverity: support enabling with tree block size fmode & FMODEREAD' in kernelread became reachable by fuzz tests. This happens if FSIOCENABLEVERITY is called on...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53178

In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, where a swapped out page gets swapped in with data that was written to a different page. The race...

4.7CVSS5.9AI score0.00103EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53174

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to decrease the reference count in th...

5.5CVSS5.8AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53169

In the Linux kernel, the following vulnerability has been resolved: x86/resctrl: Clear stagedconfig before and after it is used As a temporary storage, stagedconfig in rdtdomain should be cleared before and after it is used. The stale value in stagedconfig could cause an MSR access error. Here is...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.0 views

CVE-2023-53176

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Reinit port-pm on port specific driver unbind When we unbind a serial port hardware specific 8250 driver, the generic serial8250 driver takes over the port. After that we see an oops about 10 seconds later. This can...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53195

In the Linux kernel, the following vulnerability has been resolved: mlxsw: minimal: fix potential memory leak in mlxswmlinecardsinit The line cards array is not freed in the error path of mlxswmlinecardsinit, which can lead to a memory leak. Fix by freeing the array in the error path, thereby...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53193

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix amdgpuirqput call trace in gmcv100hwfini The gmc.eccirq is enabled by firmware per IFWI setting, and the host driver is not privileged to enable/disable the interrupt. So, it is meaningless to use the amdgpuirqput...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.3 views

CVE-2023-53198

In the Linux kernel, the following vulnerability has been resolved: raw: Fix NULL deref in rawgetnext. Dae R. Jeong reported a NULL deref in rawgetnext 0. It seems that the repro was running these sequences in parallel so that one thread was iterating on a socket that was being freed in another...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53196

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: qcom: Fix potential memory leak Function dwc3qcomprobe allocates memory for resource structure which is pointed by parentres pointer. This memory is not freed. This leads to memory leak. Use stack memory to prevent...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.3 views

CVE-2023-53191

In the Linux kernel, the following vulnerability has been resolved: irqchip/alpine-msi: Fix refcount leak in alpinemsixinitdomains ofirqfindparent returns a node pointer with refcount incremented, We should use ofnodeput on it when not needed anymore. Add missing ofnodeput to avoid refcount leak...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53192

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix nexthop hash size The nexthop code expects a 31 bit hash, such as what is returned by fibmultipathhash and rt6multipathhash. Passing the 32 bit hash returned by skbgethash can lead to problems related to the fact that...

7.8CVSS6.2AI score0.00154EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.3 views

CVE-2022-50256

In the Linux kernel, the following vulnerability has been resolved: drm/meson: remove drm bridges at aggregate driver unbind time drm bridges added by mesonencoderhdmiinit and mesonencodercvbsinit were not manually removed at module unload time, which caused dangling references to freed memory to...

7.8CVSS5.7AI score0.00147EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53187

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free of new block group that became unused If a task creates a new block group and that block group becomes unused before we finish its creation, at btrfscreatependingblockgroups, then when btrfsmarkbgunused ...

7.8CVSS6.6AI score0.00148EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53164

In the Linux kernel, the following vulnerability has been resolved: irqchip/ti-sci: Fix refcount leak in tisciintrirqdomainprobe ofirqfindparent returns a node pointer with refcount incremented, We should use ofnodeput on it when not needed anymore. Add missing ofnodeput to avoid refcount leak...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53148

In the Linux kernel, the following vulnerability has been resolved: igb: Fix igbdown hung on surprise removal In a setup where a Thunderbolt hub connects to Ethernet and a display through USB Type-C, users may experience a hung task timeout when they remove the cable between the PC and the...

7.8CVSS6.3AI score0.00155EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50260

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Make .remove and .shutdown HW shutdown consistent Drivers' .remove and .shutdown callbacks are executed on different code paths. The former is called when a device is removed from the bus, while the latter is called at...

5.5CVSS5.7AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.3 views

CVE-2023-53151

In the Linux kernel, the following vulnerability has been resolved: md/raid10: prevent soft lockup while flush writes Currently, there is no limit for raid1/raid10 plugged bio. While flushing writes, raid1 has condresched while raid10 doesn't, and too many writes can cause soft lockup. Follow up...

5.5CVSS6.1AI score0.00112EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53152

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix calltrace warning in amddrmbuddyfini The following call trace is observed when removing the amdgpu driver, which is caused by that BOs allocated for psp are not freed until removing. 61811.450562 RIP:...

5.5CVSS6.2AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53179

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add the missing IPSETHASHWITHNET0 macro for ipsethashnetportnet.c The missing IPSETHASHWITHNET0 macro in ipsethashnetportnet can lead to the use of wrong CIDRPOSc for calculating array offsets, which can lead to...

7.8CVSS6.1AI score0.00157EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2022-50252

In the Linux kernel, the following vulnerability has been resolved: igb: Do not free qvector unless new one was allocated Avoid potential use-after-free condition under memory pressure. If the kzalloc fails, qvector will be freed but left in the original adapter-qvectorvidx array position...

7.8CVSS6.3AI score0.00153EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2022-50248

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix double free on tx path. We see kernel crashes and lockups and KASAN errors related to ax210 firmware crashes. One of the KASAN dumps pointed at the tx path, and it appears there is indeed a way to...

7.8CVSS6.2AI score0.0015EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53194

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add length check in indxgetroot This adds a length check to guarantee the retrieved index root is legit. 162.459513 BUG: KASAN: use-after-free in hdrfinde.isra.0+0x10c/0x320 162.460176 Read of size 2 at addr...

7.8CVSS6.6AI score0.00149EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2022-50246

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpci: fix of node refcount leak in tcpciregisterport I got the following report while doing devicemt6370-tcpc load test with CONFIGOFUNITTEST and CONFIGOFDYNAMIC enabled: OF: ERROR: memory leak, expected refcount 1...

5.5CVSS5.9AI score0.00147EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53182

In the Linux kernel, the following vulnerability has been resolved: ACPICA: Avoid undefined behavior: applying zero offset to null pointer ACPICA commit 770653e3ba67c30a629ca7d12e352d83c2541b1e Before this change we see the following UBSAN stack trace in Fuchsia: 0 0x000021e4213b3302 in...

5.5CVSS6.2AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53189

In the Linux kernel, the following vulnerability has been resolved: ipv6/addrconf: fix a potential refcount underflow for idev Now in addrconfmodrstimer, reference idev depends on whether rstimer is not pending. Then modify rstimer timeout. There is a time gap in 1, during which if the pending...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.1 views

CVE-2023-53147

In the Linux kernel, the following vulnerability has been resolved: xfrm: add NULL check in xfrmupdateaeparams Normally, x-replayesn and x-preplayesn should be allocated at xfrmallocreplaystateesn... in xfrmstateconstruct..., hence the xfrmupdateaeparams... is okay to update them. However, the...

5.5CVSS5.9AI score0.00454EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.3 views

CVE-2023-53190

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix memory leaks in error path The memory allocated by vxlanvnigroupinit is not freed in the error path, leading to memory leaks 1. Fix by calling vxlanvnigroupuninit in the error path. The leaks can be reproduced by...

5.5CVSS5.9AI score0.00162EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/15 2:15 p.m.2 views

CVE-2023-53166

In the Linux kernel, the following vulnerability has been resolved: power: supply: bq25890: Fix externalpowerchanged race bq25890chargerexternalpowerchanged dereferences bq-charger, which gets sets in bq25890powersupplyinit like this: bq-charger = devmpowersupplyregisterbq-dev, &bq-desc, &psycfg;...

4.7CVSS5.7AI score0.00103EPSS
Exploits0References5
Total number of security vulnerabilities68528