Lucene search
K
LinuxLinux Kernel6.1.57

7 matches found

CVE
CVE
added 2024/10/29 12:50 a.m.284 views

CVE-2024-50087

The connected Astra Linux advisory & the CVE entry describe a Linux kernel vulnerability in btrfs: read_alloc_one_name() may leave fscrypt_str.name uninitialized if kmalloc fails, so freeing fscrypt_str can access an uninitialized pointer. This is a local (L) issue with LOW initial access but HIG...

5.5CVSS5.6AI score0.00206EPSS
CVE
CVE
added 2024/11/09 10:14 a.m.151 views

CVE-2024-50235

The CVE affects the Linux kernel wifi stack, specifically the cfg80211 path. The root cause is not clearing wdev->cqm_config on free during unregister, which enables a double-free if the same wdev/netdev is re-registered in another network namespace and destroyed later. The documented impact i...

7.8CVSS7.3AI score0.00243EPSS
CVE
CVE
added 2025/04/01 3:47 p.m.142 views

CVE-2025-21979

CVE-2025-21979 affects the Linux kernel wifi stack (cfg80211). A wiphy_work can be queued as soon as the wiphy is allocated (wiphy_new_nm). If wiphy_free runs before the rdev::wiphy_work executes, the wiphy memory is freed and later accessed, leading to a use-after-free. The fix is to cancel the ...

7.8CVSS7.1AI score0.00187EPSS
CVE
CVE
added 2024/04/03 5:0 p.m.134 views

CVE-2024-26752

CVE-2024-26752 affects the Linux kernel L2TP/IP6 path: a miscalculated ulen in l2tp_ip6_sendmsg (ulen = len + skb_queue_empty(...) ? transhdrlen : 0) due to operator precedence caused incorrect transport-header accounting, leading to corrupted packets on the wire. The fix adds parentheses to alig...

5.5CVSS6.5AI score0.00252EPSS
CVE
CVE
added 2024/10/29 12:50 a.m.130 views

CVE-2024-50088

CVE-2024-50088 affects the Linux kernel’s Btrfs filesystem code. The issue is in add_inode_ref(), where a name struct is not initialized when declared; if read_one_inode() returns NULL for either parent or inode, name.name is freed during cleanup without being initialized. This uninitialized free...

7.8CVSS7.4AI score0.00214EPSS
CVE
CVE
added 2025/07/25 12:53 p.m.79 views

CVE-2025-38382

CVE-2025-38382 corresponds to a Linux kernel (btrfs) issue fixed in the log replay extref iteration. The root cause was an uninitialized victim_name.len when we jump to the next loop iteration from __inode_add_ref() while processing extrefs, leading to invalid memory access. The fix initializes v...

5.5CVSS6.3AI score0.00156EPSS
CVE
CVE
added 2026/01/31 11:42 a.m.32 views

CVE-2026-23025

CVE-2026-23025 : In the Linux kernel, drain_page_zone() could corrupt per-CPU pages (pcp) when an interrupt occurs and code path uses spin_lock(&pcp->lock) with SMP=n, because spin_trylock() may fail. The issue enables potential pcp structure corruption. The fix adds local wrappers that conver...

7.8CVSS5.8AI score0.00184EPSS