8 matches found
CVE-2024-35957
The CVE-2024-35957 vuln in the Linux kernel/IOMMU VT-d path arises from probing code that tracked all probed devices in an rbtree by source ID, assuming uniqueness that VT-d does not guarantee. The fix, per the linked advisories, is to only track devices that have PCI ATS capabilities in the iomm...
CVE-2024-36002
Linux kernel CVE-2024-36002 details a crash in dpll_pin_on_pin_register/dpll_pin_on_pin_unregister when a pin is registered with multiple parent pins on the same dpll device. A crash trace occurs during ice driver removal (ICE/ice_dpll_deinit_pins). The fix adds a cookie-like parent pointer when ...
CVE-2025-37799
CVE-2025-37799 : Linux kernel vmxnet3 driver XDP handling is fixed for malformed packet sizing in vmxnet3_process_xdp. The issue caused MTU-related connectivity problems when using XDP load balancing with IPIP encapsulation, where some packets (e.g., HTTP GET) could be oversized and, in rare case...
CVE-2024-47712
CVE-2024-47712: In the Linux kernel, a RCU usage issue in wifi/wilc1000 was fixed. In wilc_parse_join_bss_param, the code accessed the ies TSF field after the RCU read-side section, which is illegal. The TSF value is now stored in a local variable (ies_tsf) before releasing the RCU lock, and para...
CVE-2024-50238
CVE-2024-50238 affects the Linux kernel Qualcomm qmp-usb/qmp-usbc drivers. The issue was a NULL-pointer dereference during runtime suspend caused by removing the initialisation of platform driver data in probe, after a commit cleaned up probe initialisation. The bug reproduced when the driver was...
CVE-2024-38542
CVE-2024-38542: In the Linux kernel’s RDMA mana_ib driver, a boundary check was added inside mana_ib_install_cq_cb to prevent index overflow. Affected component: mana_ib_install_cq_cb (RDMA). Potential impact is local with high confidentiality and availability implications (CVSSv3.1: 7.1, HIGH). ...
CVE-2026-31714
The CVE-2026-31714 issue affects the Linux kernel F2FS component, where a memory leak occurs in f2fs_rename() due to an unpaired call to f2fs_free_filename() after f2fs_setup_filename() was added in commit 40b2d55e0452. Exploitation details are local (AV:L/AC:L) with a high availability impact (A...
CVE-2026-43130
The CVE-2026-43130 issue affects the Linux kernel iommu/vt-d path, where flushing the dev-IOTLB can occur during resource release in scalable PCIe mode. The root cause is a path that attempted ATS invalidation without adequately verifying whether the PCIe device is still accessible after a link-d...