6 matches found
CVE-2023-52459
CVE-2023-52459 concerns the Linux kernel, specifically the media: v4l: async path. The vulnerability is caused by a duplicated list deletion: a second list_del() is performed after the list item was already removed, which can lead to list_del corruption (LIST_POISON) when CONFIG_DEBUG_LIST is ena...
CVE-2024-26604
CVE-2024-26604 concerns the Linux kernel. The issue arises from reverting the change that removed redundant NULL checks for ktype in kobject handling. The description and connected docs indicate this revert was done because of reported problems, and there is no publicly provided fix or patch deta...
CVE-2024-53130
CVE-2024-53130 affects the Linux kernel nilfs2 code. The issue is a NULL pointer dereference in the block_dirty_buffer tracepoint when using mark_buffer_dirty(), caused by bh->b_bdev->bd_dev being dereferenced even if the buffer head lacks a block_device pointer. The kernel fix makes nilfs_...
CVE-2024-53131
CVE-2024-53131 concerns the Linux kernel nilfs2 subsystem. The issue manifests as a NULL pointer dereference when the tracepoint block_touch_buffer is exercised from __nilfs_get_folio_block() via touch_buffer(), which accesses bh->b_bdev->bd_dev even if the buffer head lacks a valid block_d...
CVE-2024-53126
In CVE-2024-53126, the Linux kernel fixes a UB bug in vdpa/solidrun code where a string placed on the stack in psnet_open_pf_bar() and snet_open_vf_bar() could be used after the stack frame disappeared. The string is not copied by pcim_iomap_regions() or its callees, leading to undefined behavior...
CVE-2024-53129
CVE-2024-53129 affects the Linux kernel DRM Rockchip VOP as described. The root cause was a NULL-dereference in vop_plane_atomic_async_check() where 'state' could be dereferenced before a NULL check; patch fixes crtc_state validation (rockchip_drm_vop.c:1096). Connected advisories confirm the iss...