Lucene search
K
LinuxLinux Kernel

14088 matches found

CVE
CVE
added 2025/09/15 2:46 p.m.20 views

CVE-2023-53252

The CVE-2023-53252 entry applies to the Linux kernel Bluetooth stack. The vulnerability arises in hci_update_accept_list_sync where hci_conn_params/hci_sync lists are iterated while the lists can be modified (e.g., by le_scan_cleanup) without holding the device lock, risking an invalid list curso...

7.8CVSS6.1AI score0.00137EPSS
CVE
CVE
added 2025/09/16 8:11 a.m.20 views

CVE-2023-53277

CVE-2023-53277 is a Linux kernel vulnerability in the wifi iwl3945 driver. The issue arises from missing validation of the return value of create_singlethread_workqueue, which can lead to a NULL pointer dereference. Public advisories (Unity Linux UTSA-2025-992797/992386/992212; SUSE-SU-2025:03615...

5.5CVSS6.1AI score0.00146EPSS
CVE
CVE
added 2025/09/16 8:11 a.m.20 views

CVE-2023-53297

CVE-2023-53297 — Linux kernel Bluetooth L2CAP vulnerability : The issue arises in the L2CAP disconnect response path where conn->chan_lock is not held before calling l2cap_get_chan_by_scid; if that function returns NULL, a “bad unlock balance” condition can be triggered, potentially impacting ...

5.5CVSS6.2AI score0.00137EPSS
CVE
CVE
added 2025/09/16 8:11 a.m.20 views

CVE-2023-53300

The CVE-2023-53300 issue is in the Linux kernel media hi846 driver: hi846_init_controls allocated a ctrl_hdlr but failed to free it on error, causing a memory leak. The fix adds v4l2_ctrl_handler_free to properly release the allocated resources when initialization fails. Affected area: kernel med...

5.5CVSS6AI score0.00135EPSS
CVE
CVE
added 2025/09/16 8:11 a.m.20 views

CVE-2023-53302

CVE-2023-53302 affects the Linux kernel wifi iwl4965 driver. The vulnerability stems from a missing check of the return value of create_singlethread_workqueue(), which can lead to a NULL pointer dereference. The provided connected documents confirm the fix was applied in the kernel to add the nec...

5.5CVSS6.1AI score0.00136EPSS
CVE
CVE
added 2025/09/16 4:11 p.m.20 views

CVE-2023-53305

The CVE-2023-53305 entry refers to a Linux kernel vulnerability in Bluetooth L2CAP that fixes a use-after-free condition in l2cap_le_command_rej. The issue is described as a use-after-free (UAF) in Bluetooth code, leading to potential impact with a CVSSv3.1 score of 7.8 (HIGH) and a LOCAL attack ...

7.8CVSS6.2AI score0.0015EPSS
CVE
CVE
added 2025/09/16 4:11 p.m.20 views

CVE-2023-53306

CVE-2023-53306 involves the Linux kernel fsdax path used by XFS for CoW on non-shared extents. The issue arises when a previous non-shared extent is mwrited and its dax entry is left dirty, which produced a WARN at dax_insert_entry. The connected documents consistently describe this as a resolved...

5.5CVSS5.9AI score0.00128EPSS
CVE
CVE
added 2025/09/16 4:11 p.m.20 views

CVE-2023-53309

CVE-2023-53309 affects the Linux kernel’s drm/radeon path. The vulnerability stems from an overflow in radeon_cs_parser_init: the size field is unsigned, and if size equals 0x40000000, the calculation size *= sizeof(uint32_t) overflows, causing size to wrap to zero and leading to use of uninitial...

5.5CVSS6.3AI score0.00146EPSS
CVE
CVE
added 2025/09/16 4:11 p.m.20 views

CVE-2023-53312

CVE-2023-53312 : In the Linux kernel, a trace-event interaction with skb_transport_offset() in net_dev_start_xmit could lead to unsafe skb_transport_offset usage. The issue arises after a blamed commit and is fixed by the kernel remediation described in the initial document (commit references inc...

5.5CVSS6.2AI score0.00143EPSS
CVE
CVE
added 2025/09/16 4:11 p.m.20 views

CVE-2023-53321

CVE-2023-53321 affects the Linux kernel wireless stack, specifically wifi: mac80211_hwsim. The issue arises when short frames are processed in ways that could forward incomplete 3-address headers, risking access to invalid memory if shorter frames slip through (even though some control frames lik...

7.1CVSS6.1AI score0.0014EPSS
CVE
CVE
added 2025/09/17 2:56 p.m.20 views

CVE-2023-53336

The CVE-2023-53336 vulnerability in the Linux kernel affects the media: ipu-bridge code. It causes a NULL pointer dereference in ipu_bridge_parse_rotation() or ipu_bridge_parse_orientation() when sensor->adev is not yet set, triggered by dev_warn() warnings about unknown values. The root cause...

5.5CVSS6AI score0.00187EPSS
CVE
CVE
added 2025/09/17 2:56 p.m.20 views

CVE-2023-53337

The CVE concerns the Linux kernel nilfs2 subsystem. After metadata corruption is detected, nilfs2 may degenerate to read-only mode and still perform log writes, causing mark_buffer_dirty() to be invoked on buffer heads lacking the uptodate flag. The vulnerability arises from writes to a read‑only...

5.5CVSS6.3AI score0.00189EPSS
CVE
CVE
added 2025/09/17 2:56 p.m.20 views

CVE-2023-53358

CVE-2023-53358 relates to the Linux kernel’s ksmbd component, where a race condition during concurrent smb2 tree disconnect led to a use-after-free (UAF). The issue is addressed by a patch that adds TREE_CONN_EXPIRE flags for tcon to prevent concurrent access. The connected documents confirm the ...

7CVSS6.1AI score0.00164EPSS
CVE
CVE
added 2025/09/17 2:56 p.m.20 views

CVE-2023-53367

CVE-2023-53367 concerns a memory leak in the Linux kernel’s accel/habanalabs code path (mem mappings in user_mappings) that could occur when clearing user_mappings during rapid context reuse. The connected OSV entries indicate Rootio‑Linux patches fixing this CVE across Root:Ubuntu:22.04 and Root...

5.5CVSS6.1AI score0.00156EPSS
CVE
CVE
added 2025/09/18 1:33 p.m.20 views

CVE-2023-53394

Technical details (affected product/versions, root cause, exploitability, or patch specifics) are not provided in the connected documents. Please monitor for updates from the listed sources.

5.5CVSS6.3AI score0.00119EPSS
CVE
CVE
added 2025/09/18 4:4 p.m.20 views

CVE-2023-53434

In the Linux kernel, CVE-2023-53434 concerns remoteproc: imx_dsp_rproc. The fix adds a custom memory copy implementation (and memset) for the i.MX DSP cores because the HiFi DSP IRAM requires 32‑bit writes; violating this can trigger a Kernel panic. The vulnerability is mitigated by the patched m...

5.5CVSS6.1AI score0.00134EPSS
CVE
CVE
added 2025/10/01 11:42 a.m.20 views

CVE-2023-53473

The CVE-2023-53473 entry concerns Linux kernel ext4_dirhash() and its error handling when the hash tree feature is used with encrypted/casefolded file names. The vulnerability arises because ext4_dirhash() can fail and callers must propagate the error back up. Public documents provided do not inc...

7.8CVSS6.1AI score0.00154EPSS
CVE
CVE
added 2025/10/01 11:42 a.m.20 views

CVE-2023-53481

CVE-2023-53481: Linux kernel UBI wear-leveling code (ubi_wl_put_peb) can loop infinitely when wear-leveling work fails. The issue stems from a NULL-lookuptbl entry path that is not rechecked, causing an endless retry. The advisory in connected docs notes fixes: (1) ubi_wl_put_peb should return di...

5.5CVSS6.2AI score0.00143EPSS
CVE
CVE
added 2025/10/01 11:42 a.m.20 views

CVE-2023-53485

CVE-2023-53485 affects the Linux kernel JFS code path. The UBSAN out-of-bounds access in fs/jfs/jfs_dmap.c:1965 was triggered when dbAllocDmapLev accessed dp->tree.stree[leafidx + LEAFIND] with a negative leafidx. The patch adds a guard in dbAllocDmapLev to return an I/O error if leafidx is ne...

7.8CVSS6.2AI score0.00173EPSS
CVE
CVE
added 2025/10/01 11:45 a.m.20 views

CVE-2023-53494

CVE-2023-53494 affects the Linux kernel xts code. Root cause: EBUSY is not consistently treated like EINPROGRESS for MAY_BACKLOG callers, risking use-after-free on backlogged requests. Public advisories (EulerOS/MiracleLinux/OpenVAS/Nessus) reference this CVE; no patched version or remediation de...

7.8CVSS6.1AI score0.0015EPSS
CVE
CVE
added 2025/10/01 11:46 a.m.20 views

CVE-2023-53514

CVE-2023-53514 concerns the Linux kernel gpu: host1x memory leak of device names. Root cause: device names allocated by dev_set_name() were not freed because the kobject refcount set in device_initialize() wasn’t decreased to 0; cleanup relied on put_device() and device_del() semantics, but freei...

5.5CVSS6AI score0.00135EPSS
CVE
CVE
added 2025/10/01 11:46 a.m.20 views

CVE-2023-53518

CVE-2023-53518 affects the Linux kernel: a leak in PM / devfreq handling due to an unreleased resources path. Specifically, srcu_init_notifier_head() allocates resources that must be released with srcu_cleanup_notifier_head(), and the devfreq subsystem leak was reported by kmemleak. The available...

5.5CVSS6AI score0.00139EPSS
CVE
CVE
added 2025/10/01 11:46 a.m.20 views

CVE-2023-53522

CVE-2023-53522 concerns the Linux kernel, specifically the cgroup/freezer path. The data show a circular locking dependency between cpu_hotplug_lock and freezer_mutex triggered by a rewrite of core freezer logic (commit f5d39b020809) that replaced atomic_inc() with static_branch_inc() in freezer_...

7.8CVSS6.1AI score0.00141EPSS
CVE
CVE
added 2025/10/04 3:16 p.m.20 views

CVE-2023-53543

Technical details for CVE-2023-53543 are not publicly provided in the supplied documents; monitor SUSE/kernel advisories for updates.

7.8CVSS5.3AI score0.00154EPSS
CVE
CVE
added 2025/10/04 3:17 p.m.20 views

CVE-2023-53559

CVE-2023-53559 affects the Linux kernel ip_vti path when an ip_vti device is using the sfb qdisc. The cb field of the skb may be modified during enqueuing, causing slab-use-after-free on IPv6 packet transmission. The root cause is that IP6CB(skb)->nhoff is not set during transmit, as described...

7.8CVSS6.1AI score0.00139EPSS
CVE
CVE
added 2025/10/04 3:44 p.m.20 views

CVE-2023-53585

CVE-2023-53585 : In the Linux kernel, a bug in bpf_sk_assign could leak a refcount when a newly created unhashed UDP socket is bound after being added to a sockmap. The issue arises because bpf_sk_assign may be invoked in an RCU-critical section before the sk’s final state (SOCK_RCU_FREE) is appl...

5.5CVSS6AI score0.00147EPSS
CVE
CVE
added 2025/10/04 3:44 p.m.20 views

CVE-2023-53588

CVE-2023-53588: In the Linux kernel, the wifi/mac80211 code fix ensures we verify station presence before checking the channel context during client probes, preventing the warning when the AP isn’t started yet. The issue was resolved in the kernel, with a Local attack vector, Low privileges requi...

5.5CVSS6.3AI score0.00145EPSS
CVE
CVE
added 2025/10/04 3:44 p.m.20 views

CVE-2023-53602

CVE-2023-53602 affects the Linux kernel driver stack for wifi (ath11k). The issue is a memory leak where firmware statistics for pdev, vdev and beacon were allocated but not released on module removal, prompting a fix implemented by calling ath11k_fw_stats_free() before hardware unregister. Addit...

5.5CVSS5.9AI score0.00135EPSS
CVE
CVE
added 2025/10/04 3:44 p.m.20 views

CVE-2023-53607

CVE-2023-53607 involves the Linux kernel ALSA ymfpci driver. The bug is caused by snd_ymfpci_probe using snd_BUG_ON() with snd_dma_buffer.bytes that were not accounting for the aligned size, leading to a faulty check and a kernel warning in snd_ymfpci_create. The issue manifests as a local, low-p...

5.5CVSS6.2AI score0.00144EPSS
CVE
CVE
added 2025/10/04 3:44 p.m.20 views

CVE-2023-53610

The CVE-2023-53610 issue affects the Linux kernel and is tied to irqchip/refcount handling in platform_irqchip_probe. Specifically, of_irq_find_parent() returns a node pointer with an incremented refcount, and the advisory notes that of_node_put() must be invoked when the node is no longer needed...

5.5CVSS6AI score0.00135EPSS
CVE
CVE
added 2025/10/07 3:19 p.m.20 views

CVE-2023-53621

CVE-2023-53621: Linux kernel memcg/memcontrol bug could cause a NULL pointer dereference during eviction if the memcg retrieved by the stored id is not the original one. Impact is local, with a high base score (7.8) and local access required. The issue stems from eviction recency checks in mem_cg...

7.8CVSS5.7AI score0.0019EPSS
CVE
CVE
added 2025/10/07 3:19 p.m.20 views

CVE-2023-53637

CVE-2023-53637 affects the Linux kernel ov772x I2C driver. The root cause is in ov772x_probe: when priv->hdl.error is set, the code jumps to error_mutex_destroy without calling v4l2_ctrl_handler_free(), leaking resources allocated by v4l2_ctrl_handler_init() and v4l2_ctrl_new_std(). The memlea...

5.5CVSS6.1AI score0.00185EPSS
CVE
CVE
added 2025/10/07 3:19 p.m.20 views

CVE-2023-53642

The CVE-2023-53642 entry relates to the Linux kernel (x86) where the clear_user_rep_good() exception handling annotation was fixed. The issue stemmed from an incorrect exception-table annotation that pointed to the wrong instruction, which could turn a user-space fault into a kernel oops rather t...

5.5CVSS6.2AI score0.00145EPSS
CVE
CVE
added 2025/10/07 3:21 p.m.20 views

CVE-2023-53661

CVE-2023-53661 affects the Linux kernel bnxt driver. The issue is an arithmetic overflow in bnxt_get_nvram_directory() caused by the use of a multiplication macro instead of casting operands to a larger type when performing arithmetic. The vulnerability could enable an overflow condition within t...

5.5CVSS6.5AI score0.00145EPSS
CVE
CVE
added 2025/10/07 3:21 p.m.20 views

CVE-2023-53662

CVE-2023-53662 affects the Linux kernel ext4 filesystem. The issue is a memory leak in ext4_fname_setup_filename() and ext4_fname_prepare_lookup() when filename casefolding fails, leaking fscrypt_name.name. The patch adds freeing of the allocated memory in the error paths of both functions. Affec...

5.5CVSS6.2AI score0.00147EPSS
CVE
CVE
added 2025/10/07 3:21 p.m.20 views

CVE-2023-53667

CVE-2023-53667 affects the Linux kernel net/cdc_ncm path. The vulnerability arises when dwNtbOutMaxSize is lower than the calculated minimum but greater than zero, causing skb allocation in cdc_ncm_fill_tx_frame() to run out of space and potentially panic due to skb bounds checks. The patch/clamp...

5.5CVSS6.1AI score0.00137EPSS
CVE
CVE
added 2025/10/07 3:21 p.m.20 views

CVE-2023-53674

Technical details about CVE-2023-53674 are not provided in the supplied documents. The initial description mentions a Linux kernel clock notifier devm resource leak fix, but no vendor/version specifics are included here. Monitor for updates.

5.5CVSS6AI score0.00135EPSS
CVE
CVE
added 2025/12/30 12:23 p.m.20 views

CVE-2023-54285

CVE-2023-54285 : In the Linux kernel, a vulnerability in iomap_write_delalloc_scan could overflow when folio_next_index() (unsigned long) is left shifted by PAGE_SHIFT on 32-bit systems. The fix replaces the overflow-prone calculation with folio_pos(folio) + folio_size(folio), ensuring correct ov...

7.8CVSS6.4AI score0.00161EPSS
CVE
CVE
added 2025/07/25 2:24 p.m.20 views

CVE-2025-38432

CVE-2025-38432 relates to the Linux kernel netpoll path, where the UDP checksum field (udph->check) was not initialized before checksumming. This followed a commit (f1fce08e63fe) that eliminated a redundant initialization, which inadvertently broke IPv6 netpoll transmission due to incorrect ch...

5.5CVSS6.4AI score0.00137EPSS
CVE
CVE
added 2025/09/04 3:32 p.m.20 views

CVE-2025-38689

CVE-2025-38689 affects the Linux kernel’s x86 FPU code. When CONFIG_X86_DEBUG_FPU is enabled, AVX-512 timestamp handling calls x86_task_fpu() without a NULL check, returning NULL for kernel threads (PF_KTHREAD) and triggering a NULL pointer dereference when reading /proc/[kthread]/arch_status. Th...

5.5CVSS6AI score0.00128EPSS
CVE
CVE
added 2025/09/11 4:52 p.m.20 views

CVE-2025-39741

The CVE-2025-39741 issue affects the Linux kernel DRM Xe migrator (drm/xe/migrate) where copying with non-page-aligned data could overflow the max copy size since the calculated copy dimensions could exceed the S16_MAX limit. The root cause is not fully described in the Initial document alone, bu...

5.5CVSS6.4AI score0.00128EPSS
CVE
CVE
added 2025/09/11 4:56 p.m.20 views

CVE-2025-39768

CVE-2025-39768 relates to the Linux kernel driver net/mlx5. The issue is described as a faulty error flow when moving complex rules during rehash, which could lead to broken steering rules and risk of soft lock-ups. The fix compresses the error-handling logic across the complex rule rehash path: ...

5.5CVSS6AI score0.00119EPSS
CVE
CVE
added 2025/09/16 1:0 p.m.20 views

CVE-2025-39821

CVE-2025-39821 (Linux kernel perf - UBSAN risk) The issue is a logic flaw in perf event throttling where a group’s disabled member in PERF_EVENT_STATE_OFF could be throttle-started/stoppped, causing PMU drivers to receive an event with hw.idx = -1. This negative index is used as a shift exponent ...

7.8CVSS6AI score0.00148EPSS
CVE
CVE
added 2025/10/01 7:44 a.m.20 views

CVE-2025-39909

CVE-2025-39909 concerns the Linux kernel’s DAMON module (mm/damon/lru_sort). The issue arises during the calculation of hot_thres and cold_thres when either sample_interval or aggr_interval is used as a divisor, risking division-by-zero. The fix adds validation and directly returns -EINVAL in suc...

5.5CVSS6.1AI score0.00137EPSS
CVE
CVE
added 2025/10/04 7:30 a.m.20 views

CVE-2025-39932

Summary of CVE-2025-39932 (Linux kernel) : The issue affects the SMB/CIFS path in the Linux kernel where smbd_destroy() could destroy memory if post_send_credits_work is still pending. The root cause is that rxe_post_recv could be invoked after rdma_destroy_qp() due to put_receive_buffer() trigge...

5.5CVSS6.2AI score0.00135EPSS
CVE
CVE
added 2025/10/04 7:30 a.m.20 views

CVE-2025-39933

CVE-2025-39933 affects the Linux kernel SMB client: recv_done verification of data_offset, data_length and remaining_data_length (a local‑vector issue). The vulnerability is acknowledged in multiple advisories (e.g., RHSA-2026:1727, ALSA-2026:0793, RLSA advisories) and is linked to kernel fixes i...

5.5CVSS6.2AI score0.0012EPSS
CVE
CVE
added 2025/10/04 7:31 a.m.20 views

CVE-2025-39938

The CVE-2025-39938 issue is a NULL pointer dereference in ASoC/qcom: q6apm-lpass-dais when the source graph fails (e.g., ADSP/topology rejection). The bug can cause a crash during snd_soc_pcm_dai_prepare due to dai_data->graph[dai->id] being NULL. The Linux kernel has been updated to fix th...

5.5CVSS6AI score0.00136EPSS
CVE
CVE
added 2025/10/04 7:31 a.m.20 views

CVE-2025-39948

The CVE-2025-39948 issue is in the Linux kernel ice driver’s RX path for multi-buffer/XDP frames. A zero-size descriptor could cause ice_put_rx_mbuf() to skip a buffer, preventing ice_put_rx_buf() and leaving a stale page in the RX ring. This could break page reuse/free logic (ice_reuse_rx_page) ...

5.5CVSS5.9AI score0.00135EPSS
CVE
CVE
added 2025/10/09 9:47 a.m.20 views

CVE-2025-39956

Mode C: The CVE-2025-39956 entry concerns the Linux kernel igc driver: if igc_led_setup() fails during igc_probe(), the probe previously failed and could trigger a kernel panic in free_netdev() due to unregister_netdev() not being called. The published fixes treat LED setup failures as non-fatal,...

5.5CVSS6AI score0.00151EPSS
CVE
CVE
added 2025/10/20 3:26 p.m.20 views

CVE-2025-40005

The CVE-2025-40005 entry concerns the Linux kernel’s cadence-quadspi driver. Technical detail from connected documents shows that the vulnerability arises when the indirect read/write path and force device removal (unbind) could crash the kernel during operation. The fix implements a refcount to ...

5.5CVSS6AI score0.00181EPSS
Total number of security vulnerabilities14088