Lucene search

K

2926 matches found

CVE
CVE
added 2025/05/01 2:15 p.m.54 views

CVE-2025-37761

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix an out-of-bounds shift when invalidating TLB When the size of the range invalidated is larger thanrounddown_pow_of_two(ULONG_MAX),The function macro roundup_pow_of_two(length) will hit an out-of-boundsshift [1]. Use a f...

6.5AI score0.00025EPSS
CVE
CVE
added 2025/05/01 2:15 p.m.54 views

CVE-2025-37765

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: prime: fix ttm_bo_delayed_delete oops Fix an oops in ttm_bo_delayed_delete which results from dererencing adangling pointer: Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6b7b: 0000 [...

6.5AI score0.00036EPSS
CVE
CVE
added 2025/05/01 2:15 p.m.54 views

CVE-2025-37786

In the Linux kernel, the following vulnerability has been resolved: net: dsa: free routing table on probe failure If complete = true in dsa_tree_setup(), it means that we are the lastswitch of the tree which is successfully probing, and we should besetting up all switches from our probe path. After...

6.5AI score0.00026EPSS
CVE
CVE
added 2025/05/01 2:15 p.m.54 views

CVE-2025-37791

In the Linux kernel, the following vulnerability has been resolved: ethtool: cmis_cdb: use correct rpl size in ethtool_cmis_module_poll() rpl is passed as a pointer to ethtool_cmis_module_poll(), so the correctsize of rpl is sizeof(*rpl) which should be just 1 byte. Using thepointer size instead ca...

6.4AI score0.00025EPSS
CVE
CVE
added 2025/05/08 7:15 a.m.54 views

CVE-2025-37805

In the Linux kernel, the following vulnerability has been resolved: sound/virtio: Fix cancel_sync warnings on uninitialized work_structs Betty reported hitting the following warning: [ 8.709131][ T221] WARNING: CPU: 2 PID: 221 at kernel/workqueue.c:4182...[ 8.713282][ T221] Call trace:[ 8.713365][ ...

5.5CVSS5.3AI score0.00018EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.54 views

CVE-2025-37836

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix reference leak in pci_register_host_bridge() If device_register() fails, call put_device() to give up the reference toavoid a memory leak, per the comment at device_register(). Found by code review. [bhelgaas: squash Dan C...

6.7AI score0.00036EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.54 views

CVE-2025-37851

In the Linux kernel, the following vulnerability has been resolved: fbdev: omapfb: Add 'plane' value check Function dispc_ovl_setup is not intended to work with the value OMAP_DSS_WBof the enum parameter plane. The value of this parameter is initialized in dss_init_overlays and in thecurrent state ...

6.7AI score0.00049EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.54 views

CVE-2025-37884

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock between rcu_tasks_trace and event_mutex. Fix the following deadlock:CPU A_free_event()perf_kprobe_destroy()mutex_lock(&event_mutex)perf_trace_event_unreg()synchronize_rcu_tasks_trace() There are several paths wher...

7AI score0.00027EPSS
CVE
CVE
added 2025/05/29 2:15 p.m.54 views

CVE-2025-37995

In the Linux kernel, the following vulnerability has been resolved: module: ensure that kobject_put() is safe for module type kobjects In 'lookup_or_create_module_kobject()', an internal kobject is createdusing 'module_ktype'. So call to 'kobject_put()' on error handlingpath causes an attempt to us...

6.5AI score0.00035EPSS
CVE
CVE
added 2025/04/18 7:15 a.m.54 views

CVE-2025-38049

In the Linux kernel, the following vulnerability has been resolved: x86/resctrl: Fix allocation of cleanest CLOSID on platforms with no monitors Commit 6eac36bb9eb0 ("x86/resctrl: Allocate the cleanest CLOSID by searching closid_num_dirty_rmid") added logic that causes resctrl to search for the CLO...

5.5CVSS6.6AI score0.00017EPSS
CVE
CVE
added 2025/02/26 7:0 a.m.53 views

CVE-2022-49094

In the Linux kernel, the following vulnerability has been resolved: net/tls: fix slab-out-of-bounds bug in decrypt_internal The memory size of tls_ctx->rx.iv for AES128-CCM is 12 setting intls_set_sw_offload(). The return value of crypto_aead_ivsize()for "ccm(aes)" is 16. So memcpy() require 16 ...

5.4AI score0.00047EPSS
CVE
CVE
added 2025/02/26 7:0 a.m.53 views

CVE-2022-49141

In the Linux kernel, the following vulnerability has been resolved: net: dsa: felix: fix possible NULL pointer dereference As the possible failure of the allocation, kzalloc() may return NULLpointer.Therefore, it should be better to check the 'sgi' in order to preventthe dereference of NULL pointer...

5.5CVSS5.3AI score0.00027EPSS
CVE
CVE
added 2025/02/26 7:0 a.m.53 views

CVE-2022-49161

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: Fix error handling in mt8183_da7219_max98357_dev_probe The device_node pointer is returned by of_parse_phandle() with refcountincremented. We should use of_node_put() on it when done. This function only calls of_nod...

5.4AI score0.00036EPSS
CVE
CVE
added 2025/02/26 7:1 a.m.53 views

CVE-2022-49245

In the Linux kernel, the following vulnerability has been resolved: ASoC: rockchip: Fix PM usage reference of rockchip_i2s_tdm_resume pm_runtime_get_sync will increment pm usage countereven it failed. Forgetting to putting operation willresult in reference leak here. We fix it by replacingit with p...

5.3AI score0.00028EPSS
CVE
CVE
added 2025/02/26 7:1 a.m.53 views

CVE-2022-49469

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix anon_dev leak in create_subvol() When btrfs_qgroup_inherit(), btrfs_alloc_tree_block, orbtrfs_insert_root() fail in create_subvol(), we return without freeinganon_dev. Reorganize the error handling in create_subvol() to ...

5.3AI score0.00038EPSS
CVE
CVE
added 2025/02/26 7:1 a.m.53 views

CVE-2022-49665

In the Linux kernel, the following vulnerability has been resolved: platform/x86: thinkpad_acpi: Fix a memory leak of EFCH MMIO resource Unlike release_mem_region(), a call to release_resource() does notfree the resource, so it has to be freed explicitly to avoid a memoryleak.

5.3AI score0.00036EPSS
CVE
CVE
added 2025/02/26 7:1 a.m.53 views

CVE-2022-49702

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix hang during unmount when block group reclaim task is running When we start an unmount, at close_ctree(), if we have the reclaim taskrunning and in the middle of a data block group relocation, we can triggera deadlock whe...

5.3AI score0.00028EPSS
CVE
CVE
added 2025/02/26 7:1 a.m.53 views

CVE-2022-49706

In the Linux kernel, the following vulnerability has been resolved: zonefs: fix zonefs_iomap_begin() for reads If a readahead is issued to a sequential zone file with an offsetexactly equal to the current file size, the iomap type is set toIOMAP_UNWRITTEN, which will prevent an IO, but the iomap le...

6.6AI score0.0003EPSS
CVE
CVE
added 2025/02/26 7:1 a.m.53 views

CVE-2022-49718

In the Linux kernel, the following vulnerability has been resolved: irqchip/apple-aic: Fix refcount leak in aic_of_ic_init of_get_child_by_name() returns a node pointer with refcountincremented, we should use of_node_put() on it when not need anymore.Add missing of_node_put() to avoid refcount leak...

5.5CVSS6.4AI score0.0002EPSS
CVE
CVE
added 2025/05/01 3:16 p.m.53 views

CVE-2022-49778

In the Linux kernel, the following vulnerability has been resolved: arm64/mm: fix incorrect file_map_count for non-leaf pmd/pud The page table check trigger BUG_ON() unexpectedly when collapse hugepage: ------------[ cut here ]------------kernel BUG at mm/page_table_check.c:82!Internal error: Oops ...

6.7AI score0.00027EPSS
CVE
CVE
added 2025/05/01 3:16 p.m.53 views

CVE-2022-49827

In the Linux kernel, the following vulnerability has been resolved: drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker() drm_vblank_init() call drmm_add_action_or_reset() withdrm_vblank_init_release() as action. If __drmm_add_action() failed, willdirectly call drm_vblank_init_release() ...

6.5AI score0.00094EPSS
CVE
CVE
added 2025/05/01 3:16 p.m.53 views

CVE-2022-49837

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix memory leaks in __check_func_call kmemleak reports this issue: unreferenced object 0xffff88817139d000 (size 2048):comm "test_progs", pid 33246, jiffies 4307381979 (age 45851.820s)hex dump (first 32 bytes):01 00 00 00 00 00...

5.5CVSS6.6AI score0.00017EPSS
CVE
CVE
added 2025/05/01 3:16 p.m.53 views

CVE-2022-49915

In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible memory leak in mISDN_register_device() Afer commit 1fa5ae857bb1 ("driver core: get rid of struct device'sbus_id string array"), the name of device is allocated dynamically,add put_device() to give up the referen...

5.5CVSS6.4AI score0.00046EPSS
CVE
CVE
added 2025/05/02 4:15 p.m.53 views

CVE-2023-53060

In the Linux kernel, the following vulnerability has been resolved: igb: revert rtnl_lock() that causes deadlock The commit 6faee3d4ee8b ("igb: Add lock to avoid data race") addsrtnl_lock to eliminate a false data race shown below (FREE from device detaching) | (USE from netdev core)igb_remove | ig...

6.5AI score0.00036EPSS
CVE
CVE
added 2025/05/02 4:15 p.m.53 views

CVE-2023-53085

In the Linux kernel, the following vulnerability has been resolved: drm/edid: fix info leak when failing to get panel id Make sure to clear the transfer buffer before fetching the EDID toavoid leaking slab data to the logs on errors that leave the bufferunchanged.

6.7AI score0.00027EPSS
CVE
CVE
added 2025/05/02 4:15 p.m.53 views

CVE-2023-53089

In the Linux kernel, the following vulnerability has been resolved: ext4: fix task hung in ext4_xattr_delete_inode Syzbot reported a hung task problem: INFO: task syz-executor232:5073 blocked for more than 143 seconds.Not tainted 6.2.0-rc2-syzkaller-00024-g512dee0c00ad #0"echo 0 > /proc/sys/kern...

6.5AI score0.00095EPSS
CVE
CVE
added 2025/05/02 4:15 p.m.53 views

CVE-2023-53090

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix an illegal memory access In the kfd_wait_on_events() function, the kfd_event_waiter structure isallocated by alloc_event_waiters(), but the event field of the waiterstructure is not initialized; When copy_from_user(...

6.5AI score0.00036EPSS
CVE
CVE
added 2025/03/12 10:15 a.m.53 views

CVE-2024-58088

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock when freeing cgroup storage The following commitbc235cdb423a ("bpf: Prevent deadlock from recursive bpf_task_storage_[get|delete]")first introduced deadlock prevention for fentry/fexit programs attachingon bpf_tas...

5.5CVSS6.6AI score0.00022EPSS
CVE
CVE
added 2025/04/16 3:15 p.m.53 views

CVE-2024-58096

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: add srng->lock for ath11k_hal_srng_* in monitor mode ath11k_hal_srng_* should be used with srng->lock to protect srng data. For ath11k_dp_rx_mon_dest_process() and ath11k_dp_full_mon_process_rx(),they use ath11k...

6.7AI score0.00027EPSS
CVE
CVE
added 2025/02/27 3:15 a.m.53 views

CVE-2025-21754

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion failure when splitting ordered extent after transaction abort If while we are doing a direct IO write a transaction abort happens, wemark all existing ordered extents with the BTRFS_ORDERED_IOERR flag (doneat b...

6.3AI score0.00041EPSS
CVE
CVE
added 2025/04/01 4:15 p.m.53 views

CVE-2025-21894

In the Linux kernel, the following vulnerability has been resolved: net: enetc: VFs do not support HWTSTAMP_TX_ONESTEP_SYNC Actually ENETC VFs do not support HWTSTAMP_TX_ONESTEP_SYNC because onlyENETC PF can access PMa_SINGLE_STEP registers. And there will be a crashif VFs are used to test one-step...

7AI score0.00026EPSS
CVE
CVE
added 2025/04/01 4:15 p.m.53 views

CVE-2025-21895

In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list Syskaller triggers a warning due to prev_epc->pmu != next_epc->pmu inperf_event_swap_task_ctx_data(). vmcore shows that two lists have the sameperf_eve...

7AI score0.00026EPSS
CVE
CVE
added 2025/04/01 4:15 p.m.53 views

CVE-2025-21944

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix bug on trap in smb2_lock If lock count is greater than 1, flags could be old value.It should be checked with flags of smb_lock, not flags.It will cause bug-on trap from locks_free_lock in error handlingroutine.

7.1AI score0.00039EPSS
CVE
CVE
added 2025/04/01 4:15 p.m.53 views

CVE-2025-21976

In the Linux kernel, the following vulnerability has been resolved: fbdev: hyperv_fb: Allow graceful removal of framebuffer When a Hyper-V framebuffer device is unbind, hyperv_fb driver tries torelease the framebuffer forcefully. If this framebuffer is in use itproduce the following WARN and hence ...

7.1AI score0.00025EPSS
CVE
CVE
added 2025/04/01 4:15 p.m.53 views

CVE-2025-21982

In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: npcm8xx: Add NULL check in npcm8xx_gpio_fw devm_kasprintf() calls can return null pointers on failure.But the return values were not checked in npcm8xx_gpio_fw().Add NULL check in npcm8xx_gpio_fw(), to handle kern...

5.5CVSS7AI score0.00017EPSS
CVE
CVE
added 2025/04/16 3:15 p.m.53 views

CVE-2025-22024

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix management of listener transports Currently, when no active threads are running, a root user using nfsdctlcommand can try to remove a particular listener from the list of previouslyadded ones, then start the server by inc...

5.5CVSS6.5AI score0.00017EPSS
CVE
CVE
added 2025/04/16 3:15 p.m.53 views

CVE-2025-22039

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix overflow in dacloffset bounds check The dacloffset field was originally typed as int and used in anunchecked addition, which could overflow and bypass the existingbounds check in both smb_check_perm_dacl() and smb_inheri...

6.7AI score0.00026EPSS
CVE
CVE
added 2025/04/16 3:15 p.m.53 views

CVE-2025-22046

In the Linux kernel, the following vulnerability has been resolved: uprobes/x86: Harden uretprobe syscall trampoline check Jann reported a possible issue when trampoline_check_ip returnsaddress near the bottom of the address space that is allowed tocall into the syscall if uretprobes are not set up...

6.5AI score0.00026EPSS
CVE
CVE
added 2025/04/16 3:15 p.m.53 views

CVE-2025-22047

In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix __apply_microcode_amd()'s return value When verify_sha256_digest() fails, __apply_microcode_amd() should propagatethe failure by returning false (and not -1 which is promoted to true).

6.5AI score0.00027EPSS
CVE
CVE
added 2025/04/16 3:16 p.m.53 views

CVE-2025-22078

In the Linux kernel, the following vulnerability has been resolved: staging: vchiq_arm: Fix possible NPR of keep-alive thread In case vchiq_platform_conn_state_changed() is never called or fails beforedriver removal, ka_thread won't be a valid pointer to a task_struct. Sodo the necessary checks bef...

6.5AI score0.00026EPSS
CVE
CVE
added 2025/04/16 3:16 p.m.53 views

CVE-2025-22103

In the Linux kernel, the following vulnerability has been resolved: net: fix NULL pointer dereference in l3mdev_l3_rcv When delete l3s ipvlan: ip link del link eth0 ipvlan1 type ipvlan mode l3s This may cause a null pointer dereference: Call trace: ip_rcv_finish+0x48/0xd0 ip_rcv+0x5c/0x100 __netif_...

6.4AI score0.00027EPSS
CVE
CVE
added 2025/05/01 1:15 p.m.53 views

CVE-2025-23151

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Fix race between unprepare and queue_buf A client driver may use mhi_unprepare_from_transfer() to quiesceincoming data during the client driver's tear down. The client drivermight also be processing data at the same...

6.5AI score0.00036EPSS
CVE
CVE
added 2025/05/01 1:15 p.m.53 views

CVE-2025-37747

In the Linux kernel, the following vulnerability has been resolved: perf: Fix hang while freeing sigtrap event Perf can hang while freeing a sigtrap event if a related deferredsignal hadn't managed to be sent before the file got closed: perf_event_overflow()task_work_add(perf_pending_task) fput()ta...

6.3AI score0.00026EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.53 views

CVE-2025-37839

In the Linux kernel, the following vulnerability has been resolved: jbd2: remove wrong sb->s_sequence check Journal emptiness is not determined by sb->s_sequence == 0 but rather bysb->s_start == 0 (which is set a few lines above). Furthermore 0 is avalid transaction ID so the check can spu...

6.5AI score0.00049EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.53 views

CVE-2025-37858

In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Prevent integer overflow in AG size calculation The JFS filesystem calculates allocation group (AG) size using 1 <2TBaggregates on 32-bit systems), this 32-bit shift operation causes undefinedbehavior and improper AG siz...

7.6AI score0.00049EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.53 views

CVE-2025-37859

In the Linux kernel, the following vulnerability has been resolved: page_pool: avoid infinite loop to schedule delayed worker We noticed the kworker in page_pool_release_retry() was wakenup repeatedly and infinitely in production because of thebuggy driver causing the inflight less than 0 and warni...

6.9AI score0.00049EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.53 views

CVE-2025-37864

In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d ("net: dsa:delete dsa_legacy_fdb_add and dsa_legacy_fdb_del"), DSA is written giventhe assumption that higher layers have b...

6.5AI score0.00026EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.53 views

CVE-2025-37887

In the Linux kernel, the following vulnerability has been resolved: pds_core: handle unsupported PDS_CORE_CMD_FW_CONTROL result If the FW doesn't support the PDS_CORE_CMD_FW_CONTROL commandthe driver might at the least print garbage and at the worstcrash when the user runs the "devlink dev info" de...

6.5AI score0.00026EPSS
CVE
CVE
added 2025/02/26 6:37 a.m.52 views

CVE-2021-47658

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix a potential gpu_metrics_table memory leak Memory is allocated for gpu_metrics_table in renoir_init_smc_tables(),but not freed in int smu_v12_0_fini_smc_tables(). Free it!

5.4AI score0.00026EPSS
CVE
CVE
added 2025/02/26 7:0 a.m.52 views

CVE-2022-49047

In the Linux kernel, the following vulnerability has been resolved: ep93xx: clock: Fix UAF in ep93xx_clk_register_gate() arch/arm/mach-ep93xx/clock.c:154:2: warning: Use of memory after it is freed [clang-analyzer-unix.Malloc]arch/arm/mach-ep93xx/clock.c:151:2: note: Taking true branchif (IS_ERR(cl...

7.8CVSS5.5AI score0.00027EPSS
Total number of security vulnerabilities2926