8 matches found
CVE-2022-45885
CVE-2022-45885 : The Linux kernel (up to version 6.0.9) has a race in drivers/media/dvb-core/dvb_frontend.c that can cause a use-after-free when a device is disconnected. The vulnerability affects the DVB core frontend path and is rated high severity (CVSS 3.1: AV=L/AC=H/PR=L/UI=N/S=U/C=H/I=H/A=H...
CVE-2022-45887
CVE-2022-45887 affects the Linux kernel up to 6.0.9. The issue is a memory leak in drivers/media/usb/ttusb-dec/ttusb_dec.c caused by the absence of a dvb_frontend_detach call. Impact is potential denial of service via memory exhaustion (CVSS indicates HIGH availability impact). No remediation det...
CVE-2022-45884
CVE-2022-45884: Linux kernel vulnerability in media/dvb-core/dvbdev.c that causes a use-after-free due to a race around dvb_register_device() when it dynamically allocates fops. The issue is local and could allow memory corruption or instability on affected kernels (through 6.0.9 as stated). Conn...
CVE-2022-45888
CVE-2022-45888 affects the Linux kernel up to 6.0.9, specifically the xillybus/xillyusb.c driver, where a race condition and use-after-free can occur during physical removal of a USB device. Connected advisories confirm fixes in later kernel releases (e.g., Debian 6.1.x: 6.1.119-1~deb11u1; SUSE a...
CVE-2025-23133
The CVE-2025-23133 issue is in Linux kernel ath11k: when a new channel list is received, it updates cfg80211 and queues reg_work, but may immediately execute reg_update_chan_list() before cfg80211 finishes handling the list, causing a potential slab-out-of-bounds write (KASAN) in ath11k_reg_updat...
CVE-2025-38015
CVE-2025-38015 – Linux kernel (dmaengine idxd): The issue is a memory leak in the error path of idxd_alloc where memory allocated for idxd could be left unreleased if idxd_alloc() fails. The fix frees the allocated memory in the reverse order of allocation before exiting the function on error. Th...
CVE-2023-52941
CVE-2023-52941 affects the Linux kernel can:isotp subsystem. The bug arose from the tx timer handling for isotp PDUs, where the timer served two roles: sending two consecutive frames with a gap and monitoring timeouts for flow control and echo frames. This caused more complex txstate checks and e...
CVE-2023-52908
CVE-2023-52908 (Linux kernel): In drm/amdgpu, a potential NULL dereference could occur when the resource manager is NULL while printing debug information. The entry states this was fixed in the Linux kernel (drm/amdgpu: Fix potential NULL dereference). Concrete details in the connected docs point...