Lucene search

K
LinuxLinux Kernel

8330 matches found

CVE
CVE
added 2024/02/28 9:15 a.m.4509 views

CVE-2021-46995

In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: mcp251xfd_probe(): fix an error pointer dereference in probe When we converted this code to use dev_err_probe() we accidentallyremoved a return. It means that if devm_clk_get() it will lead to anOops when we call cl...

5.5CVSS6.6AI score0.00037EPSS
CVE
CVE
added 2024/02/28 9:15 a.m.4490 views

CVE-2021-46991

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix use-after-free in i40e_client_subtask() Currently the call to i40e_client_del_instance frees the objectpf->cinst, however pf->cinst->lan_info is being accessed afterthe free. Fix this by adding the missing return...

7.8CVSS6.3AI score0.00013EPSS
CVE
CVE
added 2024/05/14 3:12 p.m.4447 views

CVE-2024-27396

In the Linux kernel, the following vulnerability has been resolved: net: gtp: Fix Use-After-Free in gtp_dellink Since call_rcu, which is called in the hlist_for_each_entry_rcu traversalof gtp_dellink, is not part of the RCU read critical section, itis possible that the RCU grace period will pass du...

7.8CVSS6.5AI score0.00014EPSS
CVE
CVE
added 2024/04/17 11:15 a.m.4382 views

CVE-2024-26892

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921e: fix use-after-free in free_irq() From commit a304e1b82808 ("[PATCH] Debug shared irqs"), there is a testto make sure the shared irq handler should be able to handle the unexpectedevent after deregistration. For...

7.8CVSS6.6AI score0.00013EPSS
CVE
CVE
added 2024/05/19 9:15 a.m.4382 views

CVE-2024-35915

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet syzbot reported the following uninit-value access issue [1][2]: nci_rx_work() parses and processes received packet. When the payloadlength is zero, each message type handl...

5.5CVSS6.7AI score0.00016EPSS
CVE
CVE
added 2024/04/17 11:15 a.m.4280 views

CVE-2024-26865

In the Linux kernel, the following vulnerability has been resolved: rds: tcp: Fix use-after-free of net in reqsk_timer_handler(). syzkaller reported a warning of netns tracker [0] followed by KASANsplat [1] and another ref tracker warning [1]. syzkaller could not find a repro, but in the log, the o...

7.8CVSS6.4AI score0.0002EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.4212 views

CVE-2024-26944

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after-free in do_zone_finish() Shinichiro reported the following use-after-free triggered by the devicereplace operation in fstests btrfs/070. BTRFS info (device nullb1): scrub: finished on devid 1 with status...

7.8CVSS6.3AI score0.00012EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.4198 views

CVE-2024-26941

In the Linux kernel, the following vulnerability has been resolved: drm/dp: Fix divide-by-zero regression on DP MST unplug with nouveau Fix a regression when using nouveau and unplugging a StarTech MSTDP122DPDisplayPort 1.2 MST hub (the same regression does not appear when usinga Cable Matters Disp...

5.5CVSS6.8AI score0.00017EPSS
CVE
CVE
added 2024/03/06 7:15 a.m.4075 views

CVE-2023-52601

In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in dbAdjTree Currently there is a bound check missing in the dbAdjTree whileaccessing the dmt_stree. To add the required check added the bool is_ctlwhich is required to determine the size as sugge...

7.8CVSS7.4AI score0.00012EPSS
CVE
CVE
added 2024/04/28 12:15 p.m.4042 views

CVE-2024-26928

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_debug_files_proc_show() Skip sessions that are being teared down (status == SES_EXITING) toavoid UAF.

7.8CVSS6.7AI score0.00017EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.4038 views

CVE-2024-26993

In the Linux kernel, the following vulnerability has been resolved: fs: sysfs: Fix reference leak in sysfs_break_active_protection() The sysfs_break_active_protection() routine has an obvious referenceleak in its error path. If the call to kernfs_find_and_get() fails thenkn will be NULL, so the com...

5.5CVSS6.1AI score0.00013EPSS
CVE
CVE
added 2024/04/05 9:15 a.m.4036 views

CVE-2024-26810

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Lock external INTx masking ops Mask operations through config space changes to DisINTx may race INTxconfiguration changes via ioctl. Create wrappers that add locking forpaths outside of the core interrupt code. In particu...

4.4CVSS7.2AI score0.00007EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3988 views

CVE-2024-27043

In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvb_register_device, *pdvbdev is set equal to dvbdev, which is freedin several error-handling paths. However, *pdvbdev is not set to NULLafter dvbdev's deallocation, causing use-after-fr...

7.8CVSS6.2AI score0.00011EPSS
CVE
CVE
added 2024/03/06 7:15 a.m.3985 views

CVE-2023-52585

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper() Return invalid error code -EINVAL for invalid block id. Fixes the below: drivers/gpu/drm/amd/amdgpu/amdgpu_ras.c:1183 amdgpu_ras_query_error_status...

5.5CVSS7.2AI score0.00013EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3983 views

CVE-2024-26981

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix OOB in nilfs_set_de_type The size of the nilfs_type_by_mode array in the fs/nilfs2/dir.c file isdefined as "S_IFMT >> S_SHIFT", but the nilfs_set_de_type() function,which uses this array, specifies the index to re...

7.8CVSS6.1AI score0.00011EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3980 views

CVE-2024-27038

In the Linux kernel, the following vulnerability has been resolved: clk: Fix clk_core_get NULL dereference It is possible for clk_core_get to dereference a NULL in the followingsequence: clk_core_get()of_clk_get_hw_from_clkspec()__of_clk_get_hw_from_provider()__clk_get_hw() __clk_get_hw() can retur...

5.5CVSS6.3AI score0.00007EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3977 views

CVE-2024-27074

In the Linux kernel, the following vulnerability has been resolved: media: go7007: fix a memleak in go7007_load_encoder In go7007_load_encoder, bounce(i.e. go->boot_fw), is allocated withouta deallocation thereafter. After the following call chain: saa7134_go7007_init|-> go7007_boot_encoder|-...

5.5CVSS6.3AI score0.00011EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3975 views

CVE-2024-26966

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with anempty element. Add such entry to the end of the arrays where itis missing in order to avoid possible...

5.5CVSS6.4AI score0.00007EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3973 views

CVE-2024-26961

In the Linux kernel, the following vulnerability has been resolved: mac802154: fix llsec key resources release in mac802154_llsec_key_del mac802154_llsec_key_del() can free resources of a key directly withoutfollowing the RCU rules for waiting before the end of a grace period. Thismay lead to use-a...

7.8CVSS6.3AI score0.00011EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3964 views

CVE-2024-27078

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-tpg: fix some memleaks in tpg_alloc In tpg_alloc, resources should be deallocated in each and everyerror-handling paths, since they are allocated in for statements.Otherwise there would be memleaks because tpg_free is c...

5.5CVSS6.4AI score0.00011EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3960 views

CVE-2024-27076

In the Linux kernel, the following vulnerability has been resolved: media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak Free the memory allocated in v4l2_ctrl_handler_init on release.

5.5CVSS6.5AI score0.00011EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3958 views

CVE-2024-26974

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - resolve race condition during AER recovery During the PCI AER system's error recovery process, the kernel drivermay encounter a race condition with freeing the reset_data structure'smemory. If the device restart will ...

7CVSS6.3AI score0.00037EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3948 views

CVE-2024-27044

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential NULL pointer dereferences in 'dcn10_set_output_transfer_func()' The 'stream' pointer is used in dcn10_set_output_transfer_func() beforethe check if 'stream' is NULL. Fixes the below:drivers/gpu/drm/am...

5.5CVSS6.5AI score0.00007EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3939 views

CVE-2024-26989

In the Linux kernel, the following vulnerability has been resolved: arm64: hibernate: Fix level3 translation fault in swsusp_save() On arm64 machines, swsusp_save() faults if it attempts to accessMEMBLOCK_NOMAP memory ranges. This can be reproduced in QEMU using UEFIwhen booting with rodata=off deb...

7.8CVSS5.9AI score0.00015EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3934 views

CVE-2023-52650

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: dsi: Add missing check for of_find_device_by_node Add check for the return value of of_find_device_by_node() and returnthe error if it fails in order to avoid NULL pointer dereference.

5.5CVSS6.3AI score0.00011EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3933 views

CVE-2024-27077

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity The entity->name (i.e. name) is allocated in v4l2_m2m_register_entitybut isn't freed in its following error-handling paths. This patchadds such deallocation to preve...

5.5CVSS6.3AI score0.00008EPSS
CVE
CVE
added 2024/03/21 11:15 a.m.3926 views

CVE-2023-52620

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow timeout for anonymous sets Never used from userspace, disallow these parameters.

2.5CVSS7.1AI score0.00009EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3921 views

CVE-2024-27046

In the Linux kernel, the following vulnerability has been resolved: nfp: flower: handle acti_netdevs allocation failure The kmalloc_array() in nfp_fl_lag_do_work() will return null, ifthe physical memory has run out. As a result, if we dereferencethe acti_netdevs, the null pointer dereference bugs ...

5.5CVSS6.1AI score0.00007EPSS
CVE
CVE
added 2024/05/23 7:15 a.m.3917 views

CVE-2024-36012

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: msft: fix slab-use-after-free in msft_do_close() Tying the msft->data lifetime to hdev by freeing it inhci_release_dev() to fix the following case: [use]msft_do_close()msft = hdev->msft_data;if (!msft) ...(1) filte...

7.8CVSS6.7AI score0.00027EPSS
CVE
CVE
added 2024/02/28 9:15 a.m.3909 views

CVE-2021-47006

In the Linux kernel, the following vulnerability has been resolved: ARM: 9064/1: hw_breakpoint: Do not directly check the event's overflow_handler hook The commit 1879445dfa7b ("perf/core: Set event's default::overflow_handler()") set a default event->overflow_handler inperf_event_alloc(), and r...

5.5CVSS6.1AI score0.00007EPSS
Web
CVE
CVE
added 2024/05/01 6:15 a.m.3898 views

CVE-2024-26969

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with anempty element. Add such entry to the end of the arrays where itis missing in order to avoid possible ...

5.5CVSS6.4AI score0.00008EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3898 views

CVE-2024-27051

In the Linux kernel, the following vulnerability has been resolved: cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value cpufreq_cpu_get may return NULL. To avoid NULL-dereference check itand return 0 in case of error. Found by Linux Verification Center (linuxtesting.org) with...

5.5CVSS6.5AI score0.00007EPSS
CVE
CVE
added 2024/05/23 7:15 a.m.3893 views

CVE-2024-36011

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HCI: Fix potential null-ptr-deref Fix potential null-ptr-deref in hci_le_big_sync_established_evt().

5.5CVSS6.7AI score0.00019EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3882 views

CVE-2024-27030

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Use separate handlers for interrupts For PF to AF interrupt vector and VF to AF vector sameinterrupt handler is registered which is causing race condition.When two interrupts are raised to two CPUs at same timethen tw...

6.3CVSS6.5AI score0.00009EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3864 views

CVE-2024-26958

In the Linux kernel, the following vulnerability has been resolved: nfs: fix UAF in direct writes In production we have been hitting the following warning consistently ------------[ cut here ]------------refcount_t: underflow; use-after-free.WARNING: CPU: 17 PID: 1800359 at lib/refcount.c:28 refcou...

7.8CVSS6.7AI score0.00012EPSS
CVE
CVE
added 2024/02/28 9:15 a.m.3847 views

CVE-2021-47044

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix shift-out-of-bounds in load_balance() Syzbot reported a handful of occurrences where an sd->nr_balance_failed cangrow to much higher values than one would expect. A successful load_balance() resets it to 0; a fai...

7.7CVSS7.3AI score0.00011EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3847 views

CVE-2024-27047

In the Linux kernel, the following vulnerability has been resolved: net: phy: fix phy_get_internal_delay accessing an empty array The phy_get_internal_delay function could try to access to an emptyarray in the case that the driver is calling phy_get_internal_delaywithout defining delay_values and r...

5.5CVSS6.1AI score0.00007EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3822 views

CVE-2024-26967

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: camcc-sc8280xp: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with anempty element. Add such entry to the end of the arrays where itis missing in order to avoid possib...

5.5CVSS6.7AI score0.00018EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3819 views

CVE-2024-27002

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: Do a runtime PM get on controllers during probe mt8183-mfgcfg has a mutual dependency with genpd during the probingstage, which leads to a deadlock in the following call stack: CPU0: genpd_lock --> clk_prepare_loc...

5.5CVSS6.2AI score0.00011EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3811 views

CVE-2024-27011

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix memleak in map from abort path The delete set command does not rely on the transaction object forelement removal, therefore, a combination of delete element + delete setfrom the abort path could result in ...

5.5CVSS6.5AI score0.00009EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3810 views

CVE-2024-27010

In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix mirred deadlock on device recursion When the mirred action is used on a classful egress qdisc and a packet ismirrored or redirected to self we hit a qdisc lock deadlock.See trace below. [..... other info removed for ...

5.5CVSS6.4AI score0.00006EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3793 views

CVE-2024-27003

In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walking tree for clk_summary Similar to the previous commit, we should make sure that all devices areruntime resumed before printing the clk_summary through debugfs. Failureto do so would result in a dead...

5.5CVSS6.3AI score0.00011EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3784 views

CVE-2024-27392

In the Linux kernel, the following vulnerability has been resolved: nvme: host: fix double-free of struct nvme_id_ns in ns_update_nuse() When nvme_identify_ns() fails, it frees the pointer to the structnvme_id_ns before it returns. However, ns_update_nuse() calls kfree()for the pointer even when nv...

7.8CVSS6.4AI score0.00043EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3771 views

CVE-2024-27045

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix a potential buffer overflow in 'dp_dsc_clock_en_read()' Tell snprintf() to store at most 10 bytes in the output bufferinstead of 30. Fixes the below:drivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm_deb...

7.8CVSS6.8AI score0.00015EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3754 views

CVE-2024-26964

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Add error handling in xhci_map_urb_for_dma Currently xhci_map_urb_for_dma() creates a temporary buffer and copiesthe SG list to the new linear buffer. But if the kzalloc_node() fails,then the following sg_pcopy_to_buffer...

5.5CVSS6.7AI score0.00007EPSS
CVE
CVE
added 2024/05/01 6:15 a.m.3747 views

CVE-2024-26983

In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblock_free_late to free xbc memory to buddy On the time to free xbc memory in xbc_exit(), memblock may has handedover memory to buddy allocator. So it doesn't make sense to free memoryback to memblock. memblock_f...

7.8CVSS6.1AI score0.00012EPSS
CVE
CVE
added 2024/02/28 9:15 a.m.3724 views

CVE-2021-47034

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix pte update for kernel memory on radix When adding a PTE a ptesync is needed to order the update of the PTEwith subsequent accesses otherwise a spurious fault may be raised. radix__set_pte_at() does not do this for ...

4.4CVSS5.7AI score0.00006EPSS
CVE
CVE
added 2024/05/01 1:15 p.m.3719 views

CVE-2024-27070

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid use-after-free issue in f2fs_filemap_fault syzbot reports a f2fs bug as below: BUG: KASAN: slab-use-after-free in f2fs_filemap_fault+0xd1/0x2c0 fs/f2fs/file.c:49Read of size 8 at addr ffff88807bb22680 by task syz...

7.8CVSS6.7AI score0.00019EPSS
CVE
CVE
added 2024/03/06 7:15 a.m.3714 views

CVE-2024-26627

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Move scsi_host_busy() out of host lock for waking up EH handler Inside scsi_eh_wakeup(), scsi_host_busy() is called & checked with hostlock every time for deciding if error handler kthread needs to be waken up. This can...

5.5CVSS6.4AI score0.00013EPSS
CVE
CVE
added 2024/05/19 11:15 a.m.3707 views

CVE-2024-35933

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: Fix null ptr deref in btintel_read_version If hci_cmd_sync_complete() is triggered and skb is NULL, thenhdev->req_skb is NULL, which will cause this issue.

5.5CVSS6.7AI score0.00016EPSS
Total number of security vulnerabilities8330