9 matches found
CVE-2024-50280
CVE-2024-50280 : In the Linux kernel, the dm cache feature was fixed to avoid warning in flush_work() when cache creation fails due to destroying an uninitialized delayed_work waker. Root cause: cancel_delayed_work_sync() remained in the error path of cache_create(), risking a WARN_ON in certain ...
CVE-2023-52977
CVE-2023-52977 is a kernel vulnerability in the Linux kernel’s net/openvswitch path where a memory leak occurs in ovs_flow_cmd_new when key allocation fails. The issue is triggered during netlink/genl handling as shown in the provided trace, and the remediation described in the patch is to reorde...
CVE-2023-53124
VULNERABILITY SUMMARY: CVE-2023-53124 fixes a NULL pointer dereference in the Linux kernel SCSI driver mpt3sas during transport_port_add. The port is created by sas_port_alloc_num() and rphy by sas_end_device_alloc() or sas_expander_alloc(), any of which may return NULL, and the code would access...
CVE-2024-40947
CVE-2024-40947 affects the Linux kernel IMA subsystem. The root cause was sleeping in an RCU read-side critical section caused by kmalloc(GFP_KERNEL) inside ima_lsm_copy_rule (via ima_filter_rule_match) leading to potential use-after-free and NULL pointer dereference during file operations. The i...
CVE-2025-38226
CVE-2025-38226 targets the Linux kernel, specifically the media/v4l2-tpg path used by vivid. The issue is a KASAN-detected vmalloc-out-of-bounds access in tpg_fill_plane_pattern and tpg_fill_plane_buffer (v4l2-tpg-core.c:2608 and 2705), causing a write of size 1440 to a kernel address during vivi...
CVE-2023-53119
CVE-2023-53119 : In the Linux kernel, the pn533 NFC driver (pn533_out_arg) uses a temporary context for out_urb that is not fully initialized; the uninitialized field ‘phy’ may be dereferenced in error paths inside pn533_out_complete(), causing a general protection fault and a KASAN null-deref. T...
CVE-2023-52745
CVE-2023-52745 (LINUX KERNEL) describes a crash in legacy IPoIB caused by an erroneous queue count when creating child PKEY interfaces via netlink. The root cause is a commit that allows multiple TX/RX queues for child interfaces while some devices support only 1 TX and 1 RX queue, leading to a k...
CVE-2026-43232
Summary: CVE-2026-43232 is a Linux kernel vulnerability in the FarSync WAN driver (net: wan: farsync) that causes a use-after-free when detaching a FarSync T-series card. The issue arises from a race between tasklets/work queues and card removal: fst_card_info is freed in fst_remove_one() but fst...
CVE-2023-53683
Technical details about CVE-2023-53683 are not publicly provided in the connected documents. Monitor for updates from vendor advisories and security feeds to obtain affected products, versions, impact, and remediation when available.