3 matches found
CVE-2024-0193
CVE-2024-0193 is a Linux kernel netfilter NFT_TABLES use-after-free flaw. The issue arises when the catchall element is garbage-collected during removal of the pipapo set, enabling double deactivation of the element and a use-after-free on NFT_CHAIN or NFT_OBJECT. This could allow a local unprivi...
CVE-2026-43289
CVE-2026-43289 relates to the Linux kernel kexec flow. The patch fixes kexec_load_purgatory() so image->start is derived from the purgatory_start symbol when present, rather than blindly locating e_entry within an SHF_EXECINSTR section. This prevents the entrypoint check from matching multiple...
CVE-2023-53580
CVE-2023-53580 : In the Linux kernel, a deadlock could occur when unbinding a UVC gadget driver because gadget_unbind_driver() holds udc->connect_lock while invoking the driver’s unbind(), while usb_gadget_deactivate() also tries to acquire that lock. The fix removes the mutex around the unbin...