6 matches found
CVE-2024-26581
CVE-2024-26581 affects the Linux kernel netfilter nft_set_rbtree end-interval GC logic, where rbtree lazy GC on insert could skip an end-interval element just added in the same transaction, potentially enabling privilege/escalation impact for local attackers. Affected: Linux kernel versions with ...
CVE-2024-36928
The CVE-2024-36928 issue affects the Linux kernel on s390/qeth: after the hsuid attribute is set for an IQD Layer3 device while the network interface is UP, the kernel may dereference a NULL napi function pointer, causing a kernel panic. Root cause described: modern qeth flow no longer calls dev_...
CVE-2024-27414
CVE-2024-27414 affects the Linux kernel. The issue was in rtnetlink: the error handling logic when writing back IFLA_BRIDGE_FLAGS could use a broken pointer due to the loop modification that checked IFLA_BRIDGE_MODE length and removed a break. This caused the code path to select the last NLA, pot...
CVE-2023-52564
CVE-2023-52564 is a Linux kernel issue related to the GSM tty driver. The advisory states that reverting the patch “tty: n_gsm: fix UAF in gsm_cleanup_mux” did not solve the original problem. The root cause described is that gsm_cleanup_mux() could call gsm_dlci_release() (via dlci_put()/tty_port...
CVE-2022-49801
CVE-2022-49801 is a Linux kernel vulnerability tied to the tracing subsystem, specifically a memory leak in tracing_read_pipe() that can trigger a kmemleak-unreferenced-object issue. The linked OpenVAS/Nessus entries and EulerOS advisories (EulerOS-SA-2025-2546, EulerOS-SA-2025-2296, etc.) list t...
CVE-2025-39860
CVE-2025-39860 – Linux kernel Bluetooth UAF in l2cap_sock_cleanup_listen() . The vulnerability arises from a race between bt_accept_dequeue() and l2cap_sock_cleanup_listen() where a socket could be freed while another path still holds a reference. The root cause is a race in the l2cap_sock_cleanu...