12 matches found
CVE-2023-53060
CVE-2023-53060 concerns the igb driver in the Linux kernel. The description shows a data-race concern was introduced by a patch that added a lock via rtnl_lock to avoid a race between igb_remove/igb_ndo_get_vf_config and igb_disable_sriov paths, but this lock created a deadlock scenario during de...
CVE-2025-38107
CVE-2025-38107: In the Linux kernel, a race in net_sched:ets (ets_qdisc_change) was fixed. The race occurs when a SFQ perturb timer fires at an inopportune moment, enabling underflow of a parent qlen during qdisc operations. The corrective action is to purge the qdisc with qdisc_purge_queue() bef...
CVE-2023-53258
CVE-2023-53258 (Linux kernel) relates to drm/amd/display underflow when using displays with large vblank regions at low refresh rates. The issue was fixed by simplifying the vblank_nom calculation and increasing VBlankNomDefaultUS to 800µs. Public advisories indicate patches were applied in Linux...
CVE-2026-23346
CVE-2026-23346 affects the Linux kernel (arm64) in the ioremap_prot pathway. The root cause is that ioremap_prot() may extract non-address bits from a user mapping’s pgprot_t (including permissions) and generate a new user mapping, which can be accessed by the kernel when PAN is enabled. This can...
CVE-2026-31566
CVE-2026-31566 concerns the Linux kernel amdgpu driver (amdgpu_amdkfd_submit_ib). The issue arises when a fence reference is dma_fence_put()’ed before dma_fence_wait() completes, which can free the fence prematurely and trigger a use-after-free during job completion. Publicly documented fixes sho...
CVE-2026-43309
The CVE-2026-43309 issue affects the Linux kernel’s md raid and device-mapper (dm-raid) components. When stopping a RAID array managed by dm-raid, the system could hang because md_stop() attempted to flush the write-intent bitmap to metadata sub-devices that were already suspended. The fix preven...
CVE-2022-50323
CVE-2022-50323 (Linux kernel) : The vulnerability stems from skb_append_pagefrags() sensing pfmemalloc status for pages owned by user space, triggering a data race reported by KCSAN in the swap/LRU paths. The fix/mitigation is to stop sensing pfmemalloc status for these pages and to use skb_fill_...
CVE-2026-23296
CVE-2026-23296 affects the Linux kernel SCSI core, specifically a refcount leak in tagset_refcnt that can cause a hang when tearing down a SCSI host (e.g., iscsid hang during SCSI scanning). The vulnerability is local in nature with a base score of 5.5 (MEDIUM); exploitation details are not provi...
CVE-2026-23319
Summary (CVE-2026-23319) : In the Linux kernel, a use-after-free (UAF) vulnerability in bpf_trampoline_link_cgroup_shim was fixed. The root cause was a race window where, after bpf_link_put reduces the refcount of shim_link->link.link to zero, the resource is considered released but may still ...
CVE-2026-23383
CVE-2026-23383 affects the Linux kernel’s BPF JIT path on arm64. The root cause was 4-byte alignment in bpf_jit_binary_pack_alloc() causing the JIT buffer’s base to be only 4-byte aligned, which could misalign the 64-bit target field in struct bpf_plt. Consequences include UBSAN misaligned-access...
CVE-2026-23426
CVE-2026-23426 concerns the Linux kernel component drm/logicvc, where logicvc_drm_config_parse() creates a reference to a device node via of_get_child_by_name() but fails to release it, causing a device node reference leak. The issue is mitigated by applying a cleanup using the __free(device_node...
CVE-2022-50404
CVE-2022-50404 is a Linux kernel vulnerability affecting fbdev/fbcon where a memory leak could occur in fbcon_do_set_font() due to buffer handling when vc_resize() fails; the buffer might be newly allocated by fbcon_set_font() and released only partially. The issue was fixed in the kernel (as not...