10 matches found
CVE-2023-53028
CVE-2023-53028 : Linux kernel vulnerability in wifi/mac80211 processing where reverting the memory-leak fix for ieee80211_if_add() (and the related path ieee80211_if_free called from free_netdev) can trigger a null-ptr-deref/GPF as shown by syzbot. Affected component is the wireless stack (mac802...
CVE-2024-50280
CVE-2024-50280 : In the Linux kernel, the dm cache feature was fixed to avoid warning in flush_work() when cache creation fails due to destroying an uninitialized delayed_work waker. Root cause: cancel_delayed_work_sync() remained in the error path of cache_create(), risking a WARN_ON in certain ...
CVE-2023-52977
CVE-2023-52977 is a kernel vulnerability in the Linux kernel’s net/openvswitch path where a memory leak occurs in ovs_flow_cmd_new when key allocation fails. The issue is triggered during netlink/genl handling as shown in the provided trace, and the remediation described in the patch is to reorde...
CVE-2023-53124
VULNERABILITY SUMMARY: CVE-2023-53124 fixes a NULL pointer dereference in the Linux kernel SCSI driver mpt3sas during transport_port_add. The port is created by sas_port_alloc_num() and rphy by sas_end_device_alloc() or sas_expander_alloc(), any of which may return NULL, and the code would access...
CVE-2024-40947
CVE-2024-40947 affects the Linux kernel IMA subsystem. The root cause was sleeping in an RCU read-side critical section caused by kmalloc(GFP_KERNEL) inside ima_lsm_copy_rule (via ima_filter_rule_match) leading to potential use-after-free and NULL pointer dereference during file operations. The i...
CVE-2025-38226
CVE-2025-38226 targets the Linux kernel, specifically the media/v4l2-tpg path used by vivid. The issue is a KASAN-detected vmalloc-out-of-bounds access in tpg_fill_plane_pattern and tpg_fill_plane_buffer (v4l2-tpg-core.c:2608 and 2705), causing a write of size 1440 to a kernel address during vivi...
CVE-2023-52745
CVE-2023-52745 (LINUX KERNEL) describes a crash in legacy IPoIB caused by an erroneous queue count when creating child PKEY interfaces via netlink. The root cause is a commit that allows multiple TX/RX queues for child interfaces while some devices support only 1 TX and 1 RX queue, leading to a k...
CVE-2026-43232
Summary: CVE-2026-43232 is a Linux kernel vulnerability in the FarSync WAN driver (net: wan: farsync) that causes a use-after-free when detaching a FarSync T-series card. The issue arises from a race between tasklets/work queues and card removal: fst_card_info is freed in fst_remove_one() but fst...
CVE-2022-50546
The CVE-2022-50546 issue affects the Linux kernel ext4 subsystem, specifically ext4_alloc_inode() and the __ext4_new_inode() path. Syzbot reported a KMSAN uninitialized value in ext4_evict_inode, caused by not initializing ei->i_flags during ext4_alloc_inode() when a new inode creation fails b...
CVE-2023-53683
Technical details about CVE-2023-53683 are not publicly provided in the connected documents. Monitor for updates from vendor advisories and security feeds to obtain affected products, versions, impact, and remediation when available.