Lucene search
K
LinuxLinux Kernel

14330 matches found

CVE
CVE
added 2025/02/26 2:13 a.m.82 views

CVE-2022-49450

CVE-2022-49450 relates to the Linux kernel AF_RXRPC listen() backlog handling. The underlying issue is that the backlog can be configured up to 32, but the preallocation ring has 32 slots and one slot is always dead due to the ring using CIRC_CNT(). This caused an oops on socket close when listen...

5.5CVSS5.2AI score0.00283EPSS
CVE
CVE
added 2024/07/16 11:43 a.m.81 views

CVE-2022-48787

The CVE-2022-48787 vulnerability concerns iwlwifi use-after-free in the Linux kernel. When no firmware is present or parsing fails, device_release_driver()/remove()/iwl_drv_stop() may free the drv struct, but the code can still access it. The fix involves avoiding the access after the object is f...

7.8CVSS8.2AI score0.00242EPSS
CVE
CVE
added 2024/07/16 11:44 a.m.81 views

CVE-2022-48811

CVE-2022-48811 concerns the ibmvnic driver in the Linux kernel. Affected: ibmvnic_open/reset paths in the IBM Power virtualization NIC stack. Root cause: in __ibmvnic_open(), if an error occurs (e.g., when setting link state), release_resources() frees napi structures that are still needed, causi...

5.5CVSS6.4AI score0.00268EPSS
CVE
CVE
added 2024/08/22 1:30 a.m.81 views

CVE-2022-48907

CVE-2022-48907 is a Linux kernel memory-leak bug in the auxdisplay LCD2S path. The issue was that the lcd2s_data struct was allocated but never freed in ->remove(), allowing memory to leak. The fix switches allocation to devm_kzalloc(), ensuring automatic freeing with device lifecycle. Affecte...

5.5CVSS6.5AI score0.0021EPSS
CVE
CVE
added 2025/02/26 1:54 a.m.81 views

CVE-2022-49117

The CVE-2022-49117 issue is in the Linux kernel (mips/ralink): a refcount leak in ill_acc_of_setup() that requires of_node_put(np) when pdev == NULL. The vulnerability is addressed by applying the fix that ensures proper reference counter management, preventing the leak and potential use-after-fr...

5.5CVSS5.3AI score0.00243EPSS
CVE
CVE
added 2025/02/26 1:55 a.m.81 views

CVE-2022-49233

The CVE-2022-49233 issue is in the Linux kernel DRM/AMD display path where a porting error left a stream assignment for a link encoder unreleased, causing a memory leak. The documented fix reintroduces the intended dc_stream_release() call to release the stream as part of the original patch. The ...

5.5CVSS6.5AI score0.00209EPSS
CVE
CVE
added 2025/02/26 1:56 a.m.81 views

CVE-2022-49237

CVE-2022-49237 is resolved in the Linux kernel’s ath11k driver. The vulnerability stems from a missing of_node_put() after obtaining a device tree node via of_find_node_by_type() or of_parse_phandle(), where the node’s refcount is incremented but not decremented, causing a refcount leak. The impa...

5.5CVSS5.4AI score0.00209EPSS
CVE
CVE
added 2025/02/26 1:56 a.m.81 views

CVE-2022-49244

CVE-2022-49244 concerns the Linux kernel ASoC path for the mediatek mt8192-mt6359 driver. The issue arises from improper reference counting of the device_node returned by of_parse_phandle(): the code increments the refcount, but only calls of_node_put() on the success path, creating a refcount le...

5.5CVSS6.5AI score0.00252EPSS
CVE
CVE
added 2025/02/26 1:56 a.m.81 views

CVE-2022-49278

CVE-2022-49278: Linux kernel remoteproc vulnerability in rproc_coredump_write() where a count underflow was possible. The fix adds a count check for zero, mirroring the validation in rproc_recovery_write(), to prevent underflow. This is resolved in the kernel codebase; patch references are in the...

7.1CVSS5.3AI score0.00252EPSS
CVE
CVE
added 2025/02/26 2:12 a.m.81 views

CVE-2022-49419

The CVE-2022-49419 issue affects the Linux kernel vesafb (video: fbdev) where use-after-free can occur if the fb_info is freed in the .remove path before or after .fb_destroy. The underlying cause is an ordering bug: the code previously freed fb_info in .remove, which could reference freed memory...

7.8CVSS5.4AI score0.00251EPSS
CVE
CVE
added 2025/02/26 2:12 a.m.81 views

CVE-2022-49439

In CVE-2022-49439, the Linux kernel's powerpc/fsl_rio_setup had a refcount leak: of_parse_phandle() returns a node pointer with refcount incremented, and code failed to call of_node_put() when it was no longer needed. The patch adds the missing of_node_put() to prevent the leak and closes the vul...

5.5CVSS5.3AI score0.00247EPSS
CVE
CVE
added 2025/02/26 2:13 a.m.81 views

CVE-2022-49479

CVE-2022-49479 corresponds to a Linux kernel vulnerability in the mt76 driver: a race condition (use-after-free) during station removal can cause a skb to be added to a status-tracking idr after the idr has been cleaned, leaving a wcid linked in the status poll list. The root cause is a race betw...

7.8CVSS6.7AI score0.00249EPSS
CVE
CVE
added 2025/02/26 2:14 a.m.81 views

CVE-2022-49560

Summary: CVE-2022-49560 affects the Linux kernel exfat code. A slab-out-of-bounds read in exfat_clear_bitmap was triggered by truncating to size 0, reported by Syzbot. Root cause/fix in connected docs: the patch moves the is_valid_cluster() helper from fatent.c to a common header to allow reuse, ...

7.1CVSS6.4AI score0.0028EPSS
CVE
CVE
added 2025/03/27 4:42 p.m.81 views

CVE-2022-49738

Summary (CVE-2022-49738) : In the Linux kernel’s f2fs subsystem, a sanity check missing for .i_extra_isize in is_alive() leads to a potential slab-out-of-bounds access in data_blkaddr during garbage collection, as observed in the f2fs_gc path (gc_data_segment -> is_alive -> data_blkaddr -&g...

7.1CVSS6.5AI score0.00182EPSS
CVE
CVE
added 2025/05/01 2:9 p.m.81 views

CVE-2022-49763

Summary (CVE-2022-49763) In the Linux kernel NTFS code, the use-after-free issue in ntfs_attr_find() stems from missing bounds checks on the attrs_offset field after loading the first MFT record. The vulnerability was exposed by KASAN reports (use-after-free read) during NTFS attribute handling, ...

7.8CVSS6.6AI score0.00189EPSS
CVE
CVE
added 2025/05/01 2:9 p.m.81 views

CVE-2022-49779

CVE-2022-49779 affects the Linux kernel kprobes subsystem, specifically the kprobe-on-ftrace path. Description: when unregistering an aggrprobe, if the currently unregistered probe has a post_handler but sibling probes do not, the aggrprobe’s post_handler may be cleared. If the probe is ftrace-ba...

7.8CVSS6.4AI score0.00188EPSS
CVE
CVE
added 2025/05/01 2:9 p.m.81 views

CVE-2022-49807

CVE-2022-49807 affects the Linux kernel nvmet subsystem, addressing a memory leak in nvmet_auth_set_key when changing dhchap secrets. The fix releases the old secrets to prevent unreferenced memory leaks (kmemleak). Impact details in the provided sources indicate a local issue within nvmet key ma...

5.5CVSS6.4AI score0.0014EPSS
CVE
CVE
added 2025/05/01 2:9 p.m.81 views

CVE-2022-49829

CVE-2022-49829 pertains to the Linux kernel DRM scheduler exhibit: fix of fence ref counting to prevent leaking dependency fences when processes are killed. The issue involved grabbing a reference to the last scheduled fence and leaks occur due to improper fence ref counts. Connected advisories (...

5.5CVSS6.6AI score0.00141EPSS
CVE
CVE
added 2025/05/01 2:9 p.m.81 views

CVE-2022-49845

CVE-2022-49845 – Linux kernel CAN/j1939 header initialization fix . The issue related to can: j1939_send_one() involved uninitialized CAN header fields in CAN frames created for j1939 messages, exposing a read access to canxl_frame::len due to uninitialized reserved and later-filled fields in str...

5.5CVSS6.3AI score0.00183EPSS
CVE
CVE
added 2025/05/01 2:10 p.m.81 views

CVE-2022-49858

The CVE-2022-49858 issue affects the Linux kernel in the octeontx2-pf driver. The vulnerability arose from an incorrect SQE (submission queue entry) availability check: the current method used HW-updated SQB count, which could allow submitting an SQE before the previously transmitted CQE was proc...

5.5CVSS6.5AI score0.0014EPSS
CVE
CVE
added 2025/05/01 2:10 p.m.81 views

CVE-2022-49868

CVE-2022-49868 relates to a Linux kernel quirk involving the mt7621 PCI PHY/staging driver. The issue arises when mt7621_soc_dev_attr registers the SoC as a device, causing an oops in soc_device_match_attr. The quirk was introduced in the staging driver (staging: mt7621-pci-phy) and was later re-...

5.5CVSS6.4AI score0.00164EPSS
CVE
CVE
added 2025/05/01 2:10 p.m.81 views

CVE-2022-49900

CVE-2022-49900 affects the Linux kernel i2c piix4 driver. In the single-adapter removal path, piix4_adapter_count is not set (default zero) during piix4_probe(), so piix4_remove() fails to remove the adapter, leaking resources (i2c client and device). This can allow leaked adapters to be accessed...

7.8CVSS6.1AI score0.00174EPSS
CVE
CVE
added 2025/06/18 10:54 a.m.81 views

CVE-2022-49937

CVE-2022-49937 affects the Linux kernel mceusb driver in the media subsystem. Automatic fuzzing reported a WARN due to an unusual read on endpoint 0 caused by using legacy usb_control_msg_() routines and not setting USB_DIR_IN in bRequestType. The fix converts the driver to usb_control_msg_recv()...

5.5CVSS6.2AI score0.00151EPSS
CVE
CVE
added 2025/06/18 10:59 a.m.81 views

CVE-2022-49943

In CVE-2022-49943, the Linux kernel USB gadget udc_mutex scope was too large, allowing a lockdep alert/circular locking dependency when the gadget core invoked driver bind/unbind or started/stopped a UDC. The root cause is a widened udc_lock footprint that protected udc->driver among other thi...

5.5CVSS6.6AI score0.00141EPSS
CVE
CVE
added 2025/06/18 11:1 a.m.81 views

CVE-2022-50012

CVE-2022-50012 affects the Linux kernel on 64-bit PowerPC (powerpc/64). The root cause is that jump_label_init() is invoked in setup_feature_keys() too late, since static keys may be used by subroutines of parse_early_param(), which itself is a subroutine of early_init_devtree(). The result is th...

5.5CVSS6.5AI score0.00205EPSS
CVE
CVE
added 2025/06/18 11:2 a.m.81 views

CVE-2022-50084

CVE-2022-50084 - Kernel dm-raid KASAN warning fix Context: Linux kernel vulnerability resolved in the dm-raid area, where an AddressSanitizer slab-out-of-bounds read could occur in raid_status. The fault manifested as a read of 4 bytes from conf->max_nr_stripes when mddev->private was cast ...

7.1CVSS6.3AI score0.00168EPSS
CVE
CVE
added 2024/03/18 10:7 a.m.81 views

CVE-2023-52613

CVE-2023-52613 affects the Linux kernel loongson2_thermal driver. The root cause is an incorrect PTR_ERR() check that can return -ENODEV when thermal-zones are undefined, causing tz->type to be NULL and a kernel OOPS. The fixes in the connected docs indicate that PTR_ERR() should yield -ENODEV...

5.5CVSS5.2AI score0.00222EPSS
CVE
CVE
added 2024/05/21 3:23 p.m.81 views

CVE-2023-52745

CVE-2023-52745 (LINUX KERNEL) describes a crash in legacy IPoIB caused by an erroneous queue count when creating child PKEY interfaces via netlink. The root cause is a commit that allows multiple TX/RX queues for child interfaces while some devices support only 1 TX and 1 RX queue, leading to a k...

5.5CVSS6.5AI score0.0025EPSS
CVE
CVE
added 2024/08/21 6:10 a.m.81 views

CVE-2023-52903

CVE-2023-52903 affects the Linux kernel’s io_uring IOPOLL path, where a lock overflow can occur in the CQ ring when handling overflow in IOPOLL (and more so with IOPOLL|SQPOLL). The issue is triggered during overflow filling in io_cqring_event_overflow and can propagate through io_req_cqe_overflo...

5.5CVSS6.9AI score0.00179EPSS
CVE
CVE
added 2025/03/27 4:43 p.m.81 views

CVE-2023-53022

CVE-2023-53022 concerns a deadlock in the Linux kernel’s enetc driver. The vulnerability stems from a locking sequence in enetc_tx_onestep_tstamp() where a work item runs in process context with softirqs enabled and holds netif_tx_lock. If a transmission interrupt occurs, the NET_TX softirq can r...

5.5CVSS6.6AI score0.00136EPSS
CVE
CVE
added 2025/03/27 4:44 p.m.81 views

CVE-2023-53032

CVE-2023-53032 concerns the Linux kernel netfilter/ipset bitmap_ip_create() overflow handling. When first_ip = 0, last_ip = 0xFFFFFFFF, and netmask = 31, the expression 2 <

5.5CVSS6.8AI score0.00191EPSS
CVE
CVE
added 2025/05/02 3:54 p.m.81 views

CVE-2023-53040

CVE-2023-53040 (Linux kernel) is a local-bypass buffer-overflow vulnerability caused by the ca8210 patch: it fixes a negative mac_len array access that could overflow skb->data when ieee802154_hdr_peek_addrs() fails. Affected: Linux kernel code handling ieee802.154 headers. Impact per provided...

5.5CVSS7.1AI score0.00184EPSS
CVE
CVE
added 2025/05/02 3:55 p.m.81 views

CVE-2023-53054

CVE-2023-53054 affects the Linux kernel’s USB DWC2 driver (dwc2) where suspend/resume could leak device resources: __dwc2_lowlevel_hw_enable calls devm_add_action_or_reset() on every PM cycle, creating new devres entries; there is also a second issue where regulator_bulk_disable() is never invoke...

5.5CVSS6.3AI score0.00169EPSS
CVE
CVE
added 2024/04/03 2:54 p.m.81 views

CVE-2024-26690

CVE-2024-26690 affects the Linux kernel stmmac driver: it fixes a race in 64-bit statistics counters by splitting u64_stats_sync into three groups and adding per-CPU stats to avoid mutual-exclusion issues across tx, NAPI, and interrupt contexts. The write side of u64_stats_sync must be serialized...

6.5CVSS6.3AI score0.00709EPSS
CVE
CVE
added 2024/04/17 3:59 p.m.81 views

CVE-2024-26911

CVE-2024-26911 concerns the Linux kernel where the drm/buddy allocator’s alloc_range() could incorrectly return SUCCESS if it could not find the required memory blocks. The root cause, as described across multiple feeds, is that a total allocated size smaller than requested could slip through as ...

3.3CVSS6.8AI score0.00191EPSS
CVE
CVE
added 2024/05/01 1:0 p.m.81 views

CVE-2024-27061

CVE-2024-27061 affects the Linux kernel crypto sun8i-ce path (sun8i_ce_cipher_do_one) due to a use-after-free in unprepare. The root cause is use-after-free of memory when client callbacks may free memory before sun8i_ce_cipher_unprepare is called, leading to a potential pointer dereference and a...

7.8CVSS6.6AI score0.00226EPSS
CVE
CVE
added 2024/05/19 8:34 a.m.81 views

CVE-2024-35873

CVE-2024-35873 is a Linux kernel vulnerability affecting the RISC-V vector state handling during rt_sigreturn. A bug in the restoration path with vector state discard could cause the live vector state and vstate to diverge, and when the vectorized path of user_from_copy() is chosen (CONFIG_RISCV_...

5.5CVSS6.5AI score0.00196EPSS
CVE
CVE
added 2024/05/20 9:47 a.m.81 views

CVE-2024-35985

CVE-2024-35985 concerns the Linux kernel vulnerability where the eevdf scheduler could yield an out-of-bounds vlag and a NULL-deref in certain edge cases. The connected Astra/Nessus documents reiterate that reweight_eevdf() could compute vlag beyond the intended bound, since the vlag is used with...

5.5CVSS6.6AI score0.00225EPSS
CVE
CVE
added 2024/06/19 1:35 p.m.81 views

CVE-2024-38539

CVE-2024-38539 affects the Linux kernel RDMA subsystem (RDMA/cma and ib_core) with kmemleak-related leakage observed during blktests nvme/rdma when siw is used. The root cause is that kmemleak-detected unreferenced objects can be produced due to rdma_put_gid_attr not being invoked when sgid_attr ...

5.5CVSS7AI score0.00225EPSS
CVE
CVE
added 2025/02/27 2:18 a.m.81 views

CVE-2025-21789

CVE-2025-21789 concerns the Linux kernel IP checksum code. The issue arises from the LoongArch path where commit 69e3a6aa6be2 introduced a negative-length OoB access/undefined shift in the IP checksum, which could trigger an out-of-bounds read under certain conditions. A corresponding ARM64 fix w...

7.1CVSS6.8AI score0.00216EPSS
CVE
CVE
added 2025/04/01 3:41 p.m.81 views

CVE-2025-21939

CVE-2025-21939 concerns the Linux kernel drm/xe/hmm path. The vulnerability stems from pnfs obtained via hmm_range_fault() referencing pages without holding the notifier lock, risking dereferencing struct page pointers and dirty/accessed marks. The fix builds the sg-table manually and maintains t...

5.5CVSS7AI score0.00187EPSS
CVE
CVE
added 2025/05/09 6:41 a.m.81 views

CVE-2025-37845

CVE-2025-37845: Linux kernel tracing fprobe events fix prevents use-after-free by unloading a module during tprobe/tracepoint handling. Root cause: a previous relocation of try_module_get() from __find_tracepoint_module_cb() to find_tracepoint() could access a freed module object; the patch resto...

7.8CVSS6.4AI score0.0025EPSS
CVE
CVE
added 2025/05/09 6:41 a.m.81 views

CVE-2025-37848

The CVE-2025-37848 fix applies to the Linux kernel accel/ivpu MS IOCTLs path. It resolves a PM-related deadlock where runtime resume/suspend can be blocked while MS IOCTLs are in progress; a failed suspend would trigger ivpu_ms_cleanup() which attempts to acquire file_priv->ms_lock that is alr...

5.5CVSS6.5AI score0.00173EPSS
CVE
CVE
added 2025/05/20 4:1 p.m.81 views

CVE-2025-37955

CVE-2025-37955 concerns a memory leak in the Linux kernel virtio-net driver. The issue occurs on the error path of virtnet_xsk_pool_enable(), where xsk_buffs are not freed, leading to an unreferenced 2048-byte object in the xdp helper path. The backtrace points to virtnet_xsk_pool_enable and rela...

5.5CVSS6.9AI score0.00148EPSS
CVE
CVE
added 2025/05/20 4:47 p.m.81 views

CVE-2025-37965

Concretely described CVE-2025-37965 affects the Linux kernel DRM/AMD display code. The root cause is GFP_KERNEL memory allocations in populate_dml_plane_cfg_from_plane_state(), which are unsafe in atomic contexts. The fix removes dynamic allocations by passing a pointer to scaler_data within the ...

5.5CVSS6.5AI score0.00146EPSS
CVE
CVE
added 2025/07/03 8:35 a.m.81 views

CVE-2025-38124

CVE-2025-38124 affects the Linux kernel UDP GSO fraglist handling. The vulnerability arises when a frag_list GSO skb has part of its payload pulled into head_skb, causing the frag_list SKBs to lose their expected geometry and triggering a failure in skb_segment. The description specifies the inva...

5.5CVSS7.2AI score0.00148EPSS
CVE
CVE
added 2025/07/03 8:35 a.m.81 views

CVE-2025-38148

CVE-2025-38148 affects the Linux kernel network driver path: net: phy: mscc. The issue is a memory leak when using one-step timestamping, where frames (skb) were not freed because the hardware may not generate an interrupt to signal timestamping. The described fix frees the frame in the one-step ...

5.5CVSS7AI score0.00145EPSS
CVE
CVE
added 2025/07/03 8:36 a.m.81 views

CVE-2025-38165

CVE-2025-38165 affects the Linux kernel (bpf, sockmap) and can trigger a kernel panic when skb_linearize is called in the backlog path. The root cause, introduced by a prior skb_get usage to fix race conditions, caused panics for large RX payloads (e.g., when using the strparser to accumulate up ...

5.5CVSS6.9AI score0.00138EPSS
CVE
CVE
added 2025/07/04 1:37 p.m.81 views

CVE-2025-38182

CVE-2025-38182 affects the Linux kernel ublk (userspace block driver). The connected advisories confirm the issue is fixed in the kernel by sanitizing arguments from userspace when adding a device and by sanity-checking the queue depth/number of queues obtained from userspace. Root cause: inadequ...

7.8CVSS6.6AI score0.00156EPSS
CVE
CVE
added 2025/07/09 10:42 a.m.81 views

CVE-2025-38256

CVE-2025-38256 involves io_uring/rsrc folio unpinning in the Linux kernel. The issue arises when pinning a folio’s tail page and then unpinning the head page via unpin_user_page*, which can trigger a debug warning in mm/gup.c. The provided connected Astra Linux bulletin confirms the root cause an...

5.5CVSS6.2AI score0.00135EPSS
Total number of security vulnerabilities14330