Lucene search
K
LinuxLinux Kernel4.19.291

8 matches found

CVE
CVE
added 2023/07/05 6:35 p.m.446 views

CVE-2023-35001

CVE-2023-35001 is a Linux kernel nftables vulnerability where the nft_byteorder expression mishandles vm register contents when CAP_NET_ADMIN exists in any user or network namespace, causing an out-of-bounds read/write in the nf_tables nft_byteorder path. Public references in the provided documen...

7.8CVSS8.1AI score0.01508EPSS
CVE
CVE
added 2024/06/19 1:45 p.m.180 views

CVE-2024-38598

CVE-2024-38598 — Linux kernel (md/raid10) softlockup during resync Technical details from the provided documents indicate that the issue arises in the md bitmap synchronization path for raid10 during lvextend/lvchange --syncaction, leading to a soft lockup (CPU 3) due to a logic error in md_bitma...

5.5CVSS7.4AI score0.00197EPSS
CVE
CVE
added 2024/04/03 5:0 p.m.156 views

CVE-2024-26766

CVE-2024-26766 affects the Linux kernel’s IB/hfi1 path. The root cause is an off-by-one error in the sdma.h tx descriptor handling that, when a send consists of six descriptors and requires a seventh-dword padding, prevents proper expansion of the sdma_txreq descriptor array. This overflow can co...

5.5CVSS6.4AI score0.00259EPSS
CVE
CVE
added 2024/10/21 7:39 p.m.140 views

CVE-2024-50040

CVE-2024-50040 concerns the igb driver in the Linux kernel. The issue stemmed from igb_io_error_detected() treating transient non-fatal PCIe errors as non-fatal, which could lead igb_io_resume() to assume the device was still up and attempt a bring-up, causing a kernel panic during recovery from ...

5.5CVSS5AI score0.00258EPSS
CVE
CVE
added 2025/01/11 12:25 p.m.135 views

CVE-2024-48881

CVE-2024-48881 concerns the Linux kernel’s bcache implementation. The issue was a NULL pointer dereference risk in cache_set_flush() caused by a changed check: the code could access c->root when previous registration failed before c->root was allocated. The patch reverts the IS_ERR check to...

5.5CVSS6.6AI score0.00246EPSS
CVE
CVE
added 2024/05/21 3:31 p.m.88 views

CVE-2023-52838

CVE-2023-52838 – Linux kernel fbdev: imsttfb resource leak (probe) . The issue arises when init_imstt() fails and the code does not call iounmap(par->cmap_regs), leading to a resource leak in probe. The vulnerability is addressed by rewriting the error handling to ensure iounmap(par->cmap_r...

6.2CVSS6.5AI score0.00252EPSS
CVE
CVE
added 2025/09/19 3:26 p.m.33 views

CVE-2025-39860

CVE-2025-39860 – Linux kernel Bluetooth UAF in l2cap_sock_cleanup_listen() . The vulnerability arises from a race between bt_accept_dequeue() and l2cap_sock_cleanup_listen() where a socket could be freed while another path still holds a reference. The root cause is a race in the l2cap_sock_cleanu...

7.8CVSS6.1AI score0.00152EPSS
CVE
CVE
added 2026/05/27 12:18 p.m.24 views

CVE-2026-45954

CVE-2026-45954 concerns the Linux kernel fbdev driver (au1200fb). The issue arises when au1200fb_drv_probe fails at platform_get_irq: it returns an error without freeing allocated memory, causing a memory leak. A patch adds proper cleanup via a goto label to release resources. Red Hat notes the f...

5.5CVSS5.8AI score0.00122EPSS