6 matches found
CVE-2025-38373
CVE-2025-38373 concerns the Linux kernel’s mlx5_ib MR deregistration deadlock. The description shows a flow where holding the mutex umem_mutex during dereg_mr() can lead kzalloc() to trigger reclaim paths (fs_reclaim, mmu_notifier_invalidate_range_start), which in turn calls mlx5_ib_invalidate_ra...
CVE-2025-37814
CVE-2025-37814 : In the Linux kernel, the TIOCL_SELMOUSEREPORT ioctl now requires CAP_SYS_ADMIN for all usages. A prior patch loosened this for some modes, but it introduced inconsistent logic and a potential local risk: enabling mouse reports could allow injection-like input into terminal-report...
CVE-2024-58084
The CVE-2024-58084 issue in the Linux kernel relates to the Qualcomm SC M firmware (qcom_scm) read barriers. The advisory notes a missing read barrier in qcom_scm_get_tzmem_pool() and that a write barrier was previously added in probe. Access from concurrent contexts could fetch a stale __scm val...
CVE-2025-22006
CVE-2025-22006 affects the Linux kernel net/ethernet ti am65 cpsw driver: registering TX/RX DMA interrupts before their NAPI callbacks can cause a NULL pointer dereference. The issue has been fixed in kernel commits (see kernel.org references) and Astra/Oracle advisories indicate the vulnerabilit...
CVE-2026-53281
The CVE-2026-53281 entries describe a Linux kernel IOMMU VT-d issue where NULL pointer dereference or refcount corruption could occur during teardown if dev_pasid was not found in the dev_pasids list or if domain was never attached. The root cause was improper teardown execution after potential N...
CVE-2025-39948
The CVE-2025-39948 issue is in the Linux kernel ice driver’s RX path for multi-buffer/XDP frames. A zero-size descriptor could cause ice_put_rx_mbuf() to skip a buffer, preventing ice_put_rx_buf() and leaving a stale page in the RX ring. This could break page reuse/free logic (ice_reuse_rx_page) ...