3 matches found
CVE-2024-56662
CVE-2024-56662: Linux kernel ACPI NFIT vmalloc-out-of-bounds Read in acpi_nfit_ctl. Root cause: cmd_to_func accesses call_pkg->nd_reserved2 without ensuring the buffer is sized as a struct nd_cmd_pkg, causing out-of-bounds access. The fix adds checks in acpi_nfit_ctl to require buf != NULL and...
CVE-2025-22028
CVE-2025-22028 affects the Linux kernel media/v4l2 subsystem, specifically the vimc video capture path. The issue arises in vimc_streamer_pipeline_terminate() where .s_stream() could be invoked for subdevs that were not started or are stopped. The root cause is an unnecessary .s_stream() operatio...
CVE-2022-49089
CVE-2022-49089 (Linux kernel) resolves a race condition in IB/rdmavt code by adding a lock around a call to rvt_error_qp, which the function’s documentation requires both r_lock and s_lock to be held. The issue occurred because a commit in Fixes left the rvt_error_qp call in rvt_ruc_loopback unco...