5 matches found
CVE-2024-57951
CVE-2024-57951 affects the Linux kernel and describes a race/state handling issue in hrtimers during CPU hotplug/unplug cycles. The vulnerability arises when a CPU transitions from ONLINE toward HOTUNPLUG and back, causing hrtimers_prepare_cpu() not to run and leaving cpu_base.hres_active at 1. A...
CVE-2025-22054
CVE-2025-22054: Linux kernel vulnerability in arcnet handling (com20020pci_probe) where devm_kasprintf() can return NULL, leading to a NULL pointer dereference. The fix adds a NULL check after devm_kasprintf() and ensures no resources are leaked. Connected docs (Ubuntu Unity/Linux advisories) con...
CVE-2025-21816
CVE-2025-21816 affects the Linux kernel hrtimers subsystem. The issue arises when hrtimers queued on an offline CPU can wake up and arm the deadline timer after CPU hotplug stage CPUHP_AP_HRTIMERS_DYING, potentially impacting bandwidth timer handling (notably RCU-related wakeups). The documented ...
CVE-2025-37889
CVE-2025-37889 : In the Linux kernel’s ASoC code, platform_max was inconsistently interpreted as a control value versus a register value. The patching effort reverts a previous +min shift and updates all code paths to consistently treat platform_max as a control value (customer-facing representat...
CVE-2024-35785
CVE-2024-35785 affects the Linux kernel: a bug in the error path when registering devices on the TEE bus could trigger a kernel panic due to an incorrect error handling flow, specifically following the supplicant-based device enumeration change (commit 7269cba53d90). The issue manifests as a tran...