13804 matches found
CVE-2024-49904
The CVE-2024-49904 issue affects the Linux kernel DRM/AMDGPU subsystem. The vulnerability arises from a missing list empty check in list_for_each_entry_safe, which can lead to a NULL pointer dereference in corner cases. The advisory notes that the fix is to add a list empty check to avoid the nul...
CVE-2023-52509
CVE-2023-52509 affects the Linux kernel ravb driver. The vulnerability arises when ravb_stop() does not cancel pending ravb_tx_timeout_work(), allowing ravb_tx_timeout_work() to access freed priv after ravb_remove() and unregister_netdev(), potentially using freed resources. The root cause is use...
CVE-2023-52675
Concretely tied to CVE-2023-52675 in the Linux kernel: the issue is twofold. (1) powerpc/imc-pmu: update_events_in_group() gained a null pointer check to prevent dereferencing NULL during event updates. (2) kasprintf() can return NULL if memory allocation fails, which could lead to a NULL pointer...
CVE-2023-52689
CVE-2023-52689 affects the Linux kernel ALSA scarlett2 meter control: scarlett2_meter_ctl_get() accesses meter_level_map[] without holding data_mutex. The fix adds a mutex around get_meter_levels to protect the shared data and prevent use of an uninitialized resource. References point to kernel p...
CVE-2023-53013
The CVE-2023-53013 issue in the Linux kernel relates to the ptdma driver: pt_core_irq_handler() could call pt_core_execute_cmd() from interrupt context, where acquiring a mutex is invalid and could cause a kernel panic. The fix replaces the mutex with a spinlock, addressing the interrupt-context ...
CVE-2024-26805
CVE-2024-26805 (Linux kernel) fixed a kernel-infoleak-after-free in netlink path. The issue occurred in __skb_datagram_iter via netlink_to_full_skb, where len was computed from skb->end (buffer offset) instead of skb->len (actual data length), causing uninit memory to be copied. The patch c...
CVE-2024-36014
CVE-2024-36014 affects the Linux kernel DRM Mali DP path (drm/arm/malidp). In malidp_mw_connector_reset, memory is allocated with kzalloc but the NULL return is not checked, risking a null pointer dereference when calling __drm_atomic_helper_connector_reset. The issue is addressed in the referenc...
CVE-2024-40902
CVE-2024-40902: Linux kernel vulnerability in jfs xattr handling where printing an oversized xattr in hex could read past the buffer, risking kernel memory. A fix restricts the debug hex dump size in kernel logs. Public-coverage in Astra Linux and CIRCL references confirms the same vulnerability ...
CVE-2024-40925
Technical details beyond the initial description are not provided in the connected documents. No public exploit/affected-products details are listed here. Monitor for updates.
CVE-2024-41932
CVE-2024-41932 affects the Linux kernel scheduling path, specifically sched_setaffinity. The issue is a race between per-task affinity updates and cpuset updates, which can cause the task affinity to become non-subset of the cpuset. The code falls back to using the cpuset mask, but a WARN is trig...
CVE-2024-46763
CVE-2024-46763 (Linux kernel) involves a NULL pointer dereference in fou_gro_receive() during host shutdown. The NULL pointer is sk->sk_user_data (offset 8 in struct fou), which may be NULL when udp_tunnel_sock_release() clears sk_user_data and the tunnel socket is destroyed after an RCU grace...
CVE-2024-46855
CVE-2024-46855 - In the Linux kernel, the vulnerability is in netfilter nft_socket where a reference-count leak on socket (sk) references could occur. The root cause is leaks in sk refcount handling during return, which is resolved by the patch in the Linux kernel. The impact is described as loca...
CVE-2024-47684
Technical details about CVE-2024-47684 are not publicly provided in the supplied documents; no affected products, versions, root cause, or fixes are disclosed here. Monitor for updates.
CVE-2024-47693
CVE-2024-47693 affects the Linux kernel’s IB/core path. The vulnerability arises when ib_cache_update fails and ib_cache_setup_one exits without cleaning gid_table_setup_one, potentially leaving inconsistent gid-table state and triggering a kernel WARN. The fix enforces proper cleanup by calling ...
CVE-2024-47699
CVE-2024-47699 relates to the Linux kernel nilfs2 filesystem. The issue is a potential NULL pointer dereference in nilfs_btree_insert() when the b-tree root is broken and has height > 1, even if the root has 0 children. The root cause is that, in certain corrupted images, nilfs_btree_do_lookup...
CVE-2024-47752
CVE-2024-47752 concerns the Linux kernel media/vcodec/mediatek H264 stateless decoder. The provided description states that a smatch static checker warning in vdec_h264_req_if.c led to a kernel crash when the framebuffer pointer (fb) was NULL. The vulnerability is within the Mediatek vcodec path ...
CVE-2024-48876
CVE-2024-48876 - Linux kernel : The issue affects stack_depot’s stack_depot_save_flags() when invoked in NMI context. It could deadlock if pool_lock is held during an NMI, so the fix ensures the lock is only taken if space permits and the operation is safe in NMI. The documentation was updated to...
CVE-2024-49997
CVE-2024-49997 is a Linux kernel vulnerability where padding was not zeroed, causing memory disclosure observable on the wire in the net: ethernet: lantiq_etop driver. The root cause is missing zeroing during padding; the patch adds skb_put_padto() to pad Ethernet frames and zero expanded buffers...
CVE-2024-50040
CVE-2024-50040 concerns the igb driver in the Linux kernel. The issue stemmed from igb_io_error_detected() treating transient non-fatal PCIe errors as non-fatal, which could lead igb_io_resume() to assume the device was still up and attempt a bring-up, causing a kernel panic during recovery from ...
CVE-2024-50090
The CVE-2024-50090 entry concerns the Linux kernel, specifically the drm/xe/oa path. The issue arises when OA reuses a batch buffer and appends MI_BATCH_BUFFER_END on every call, causing an overflow as bb->len * 4 + bb_prefetch(q->gt) grows beyond the allocated size. The provided connected ...
CVE-2024-50183
CVE-2024-50183 relates to the Linux kernel lpfc SCSI NPIV cleanup: deleting an NPIV instance must release all fabric ndlps, or a kref imbalance race occurs. The fix forces DA_ID to complete synchronously using a wait_queue, per the description in both the original CVE entry and Astra Linux securi...
CVE-2024-50211
Technical details about CVE-2024-50211 (affected component, root cause, impact, or fix) are not provided in the supplied connected documents. Monitor for updates from upstream advisories or security bulletins.
CVE-2024-50226
CVE-2024-50226 : Linux kernel vulnerability in the CXL port code. A use-after-free during teardown of a region with multiple endpoint decoders (example: decoders 7.0 and 14.0 sharing a switch-decoder 3.0) could allow out-of-order shutdown and leave stale references. The patch ensures: (1) proper ...
CVE-2024-56704
CVE-2024-56704 concerns a Linux kernel issue: in 9p/xen, an IRQ release could be double-freed due to an incorrect IRQ release path, with a fix described as “Pass correct device ID during IRQ release.” Kernel logs reportedly showed an IRQ double-free, and the remediation targets the IRQ release fl...
CVE-2024-57795
CVE-2024-57795: In the Linux kernel, a use-after-free was reported in RDMA/rxe when a net_device could be freed before an ib_cache_event_task execution. The root cause is the patch removing the direct link to net_device in RXE (and related SIW/RXE paths), which allows a freed net_device to be acc...
CVE-2024-58090
CVE-2024-58090 affects the Linux kernel: sched/core commit fixes a long-standing issue where rescheduling could be triggered with interrupts disabled during kexec-based reboot paths. The root cause involved a wakeup in a syscore_suspend()/resume path that set NEED_RESCHED, leading to cond_resched...
CVE-2025-21711
CVE-2025-21711 affects the Linux kernel in the Rose network stack (net/rose) via rose_setsockopt(). The vulnerability arises when handling large arguments for sockopt, where an integer overflow can occur if the input is unexpectedly large. The fix adds bounds checks on the contents of 'opt', retu...
CVE-2025-21863
CVE-2025-21863 — Linux kernel io_uring opcode speculation : The vulnerability arises from the io_uring path where sqe->opcode is used for different tables, allowing speculative execution issues. The fix sanitises sqe->opcode to prevent speculation. Affected product: Linux kernel with io_uri...
CVE-2025-21981
CVE-2025-21981 corresponds to a memory-leak in the Linux kernel ice driver (aRFS) triggered during VSI reconfiguration after reset. The leak arises when VSI reconfiguration allocates aRFS resources again without releasing prior allocations, leading to unreferenced kmemleak entries (e.g., 8192-byt...
CVE-2025-37757
CVE-2025-37757 : In the Linux kernel’s TIPC path, when the backlog transmit queue for system-importance messages is overloaded, tipc_link_xmit() may return -ENOBUFS without purging the skb list, causing a memory leak and potential failure when an skb is allocated. The provided documents indicate ...
CVE-2009-0676
The CVE-2009-0676 issue affects the Linux kernel prior to 2.6.28.6, where sock_getsockopt in net/core/sock.c fails to initialize a structure member, enabling local attackers to read potentially sensitive kernel memory via an SO_BSDCOMPAT getsockopt request. Publicly documented in multiple sources...
CVE-2010-2798
The CVE-2010-2798 entry concerns the Linux kernel prior to 2.6.35, where gfs2_dirent_find_space uses an incorrect size value in calculations related to sentinel directory entries. This can allow local attackers to trigger a denial of service via a NULL pointer dereference and kernel panic, with a...
CVE-2010-3432
CVE-2010-3432 affects the Linux kernel SCTP stack: sctp_packet_config in net/sctp/output.c initializes packet data structures too aggressively in kernels before 2.6.35.6, enabling remote attackers to trigger a denial of service (panic) via a specific SCTP traffic sequence. Affected component: ker...
CVE-2010-3858
CVE-2010-3858 is a Linux kernel vulnerability described in MiracleLinux advisories as affecting fs/exec.c with CONFIG_STACK_GROWSDOWN. On 64-bit platforms, for 32-bit applications, the setup_arg_pages function does not properly constrain stack usage of arguments and environment, enabling local us...
CVE-2010-4655
CVE-2010-4655 affects the Linux kernel’s net/core/ethtool.c, where uninitialized data structures in ethtool ioctl handling could allow a local user with CAP_NET_ADMIN to leak information from kernel heap memory. The initial description specifies the vulnerability exists in kernel builds before 2....
CVE-2012-0879
CVE-2012-0879 affects the Linux kernel prior to 2.6.33, where the I/O implementation for block devices mishandles the CLONE_IO feature. Local attackers can create multiple processes sharing an I/O context, causing I/O instability and a denial of service. The vulnerability is evidenced across mult...
CVE-2012-3400
CVE-2012-3400 describes a heap-based buffer overflow in the udf_load_logicalvol function (fs/udf/super.c) of the Linux kernel up to version 3.4.5. The flaw allows remote attackers to cause a denial of service (system crash) or potentially other impact via a crafted UDF filesystem. Connected advis...
CVE-2014-0069
The CVE-2014-0069 entry affects the Linux kernel (fs/cifs/file.c: cifs_iovec_write) up to version 3.13.5. The vulnerability stems from improper handling of uncached write operations that copy fewer bytes than requested, enabling local users to read kernel memory (information disclosure), cause me...
CVE-2014-4508
CVE-2014-4508 affects the Linux kernel on 32-bit x86 (arch/x86/kernel/entry_32.S) up to version 3.15.1. When syscall auditing is enabled and the sep CPU feature flag is set, a local user can trigger a denial-of-service (OOPS and crash) by using an invalid syscall number (demonstrated with number ...
CVE-2015-3212
CVE-2015-3212: Race condition in net/sctp/socket.c in the Linux kernel before 4.1.2 allows local users to cause a denial of service (list corruption and panic) via a rapid series of socket-related system calls (notably setsockopt). Affected component is the SCTP implementation in the kernel; impa...
CVE-2016-1576
CVE-2016-1576 concerns the Linux kernel overlayfs. The overlayfs implementation up to version 4.5.2 does not properly restrict the mount namespace, enabling a local user to gain privileges by mounting an overlay filesystem on top of a FUSE filesystem and then executing a crafted setuid program. T...
CVE-2016-6327
CVE-2016-6327 affects the Linux kernel: the infiniband ulp srpt driver (ib_srpt.c) before 4.5.1 is vulnerable to a local denial-of-service via an ABORT_TASK command that aborts a device write operation, leading to a NULL pointer dereference and system crash. Affected are kernels prior to 4.5.1; r...
CVE-2016-8632
CVE-2016-8632 affects the Linux kernel’s tipc_msg_build() in net/tipc/msg.c (up to version 4.8.11). The vulnerability stems from failing to validate the relationship between minimum fragment length and maximum packet size, enabling a local user with CAP_NET_ADMIN to gain privileges or cause a hea...
CVE-2016-9644
CVE-2016-9644 involves the Linux kernel, where the __get_user_asm_ex macro in arch/x86/include/asm/uaccess.h, for kernels 4.4.22–4.4.28, uses extended asm statements that are incompatible with the exception table. This misalignment can allow local attackers to obtain root on non-SMEP platforms by...
CVE-2017-11472
CVE-2017-11472 affects the Linux kernel via the acpi_ns_terminate() path in drivers/acpi/acpica/nsutils.c. The flaw does not flush the operand cache, enabling a local user to dump kernel memory and bypass KASLR by crafting an ACPI table, with impact described for kernels before 4.12 (and through ...
CVE-2017-7261
CVE-2017-7261 affects the Linux kernel driver vmwgfx. The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c does not check for a zero value of certain levels data, allowing a local user to cause a denial of service (ZERO_SIZE_PTR dereference, GP fault, and potentially a...
CVE-2018-13097
The CVE-2018-13097 entry affects the Linux kernel, specifically the f2fs filesystem code in fs/f2fs/super.c up to version 4.17.3. The vulnerability is an out-of-bounds read or divide-by-zero caused by an incorrect user_block_count in a corrupted f2fs image, leading to a denial of service. Connect...
CVE-2021-32078
Summary (CVE-2021-32078) An out-of-bounds read was found in the Linux kernel code path arch/arm/mach-footbridge/personal-pci.c, due to a missing check for a value that should not be negative (example: accessing element -2 of an array). The issue affects kernels up to at least 5.12.11. The descrip...
CVE-2021-47171
CVE-2021-47171 corresponds to a memory-leak fix in the Linux kernel’s USB SMSC75xx driver (net/usb/smsc75xx.c). The vulnerability arises when errors after memory allocation leave non-freed memory in smsc75xx_bind, causing a memory leak in the kernel upon probe/bind. The MiracleLinux advisories co...
CVE-2021-47461
CVE-2021-47461 (Linux kernel) describes a race between userfaultfd_writeprotect() and exit_mmap() when VMAs are removed during process exit. The fix uses mmget_not_zero() to guard the operation, addressing a potential local race condition that can affect kernel memory mappings. Public advisories ...