VYPR

linux package

kernel

pkg:linux/kernel

Vulnerabilities (1,755)

  • CVE-2023-54037Dec 24, 2025
    affected >= 6.3.0, < 6.4.7fixed 6.4.7

    In the Linux kernel, the following vulnerability has been resolved: ice: prevent NULL pointer deref during reload Calling ethtool during reload can lead to call trace, because VSI isn't configured for some time, but netdev is alive. To fix it add rtnl lock for VSI deconfig and

  • CVE-2023-54036Dec 24, 2025
    affected >= 5.5.0, < 5.10.173fixed 5.10.173

    In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: Fix memory leaks with RTL8723BU, RTL8192EU The wifi + bluetooth combo chip RTL8723BU can leak memory (especially?) when it's connected to a bluetooth audio device. The busy bluetooth traffic gen

  • CVE-2023-54035Dec 24, 2025
    affected >= 6.4.0, < 6.4.4fixed 6.4.4

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix underflow in chain reference counter Set element addition error path decrements reference counter on chains twice: once on element release and again via nft_data_release(). Then, d6b4

  • CVE-2023-54034Dec 24, 2025
    affected >= 6.2.0, < 6.2.3fixed 6.2.3

    In the Linux kernel, the following vulnerability has been resolved: iommufd: Make sure to zero vfio_iommu_type1_info before copying to user Missed a zero initialization here. Most of the struct is filled with a copy_from_user(), however minsz for that copy is smaller than the a

  • CVE-2023-54033Dec 24, 2025
    affected >= 5.11.0, < 5.15.115fixed 5.15.115

    In the Linux kernel, the following vulnerability has been resolved: bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps The LRU and LRU_PERCPU maps allocate a new element on update before locking the target hash table bucket. Right after that the maps try to lock the buc

  • CVE-2023-54032Dec 24, 2025
    affected >= 3.6.0, < 4.14.322fixed 4.14.322

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fs_info->dirty_cowonly_roots without taking the lock that protects it, w

  • CVE-2023-54031Dec 24, 2025
    affected >= 5.19.0, < 6.1.47fixed 6.1.47

    In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpa_nl_policy for nlattr length check The vdpa_nl_policy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described pro

  • CVE-2023-54030Dec 24, 2025
    affected >= 6.0.0, < 6.5.3fixed 6.5.3

    In the Linux kernel, the following vulnerability has been resolved: io_uring/net: don't overflow multishot recv Don't allow overflowing multishot recv CQEs, it might get out of hand, hurt performance, and in the worst case scenario OOM the task.

  • CVE-2023-54028Dec 24, 2025
    affected >= 4.8.0, < 6.1.32fixed 6.1.32

    In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix the error "trying to register non-static key in rxe_cleanup_task" In the function rxe_create_qp(), rxe_qp_from_init() is called to initialize qp, internally things like rxe_init_task are not setup

  • CVE-2023-54027Dec 24, 2025
    affected >= 5.19.0, < 6.1.46fixed 6.1.46

    In the Linux kernel, the following vulnerability has been resolved: iio: core: Prevent invalid memory access when there is no parent Commit 813665564b3d ("iio: core: Convert to use firmware node handle instead of OF node") switched the kind of nodes to use for label retrieval i

  • CVE-2023-54026Dec 24, 2025
    affected >= 5.12.0, < 5.15.121fixed 5.15.121

    In the Linux kernel, the following vulnerability has been resolved: opp: Fix use-after-free in lazy_opp_tables after probe deferral When dev_pm_opp_of_find_icc_paths() in _allocate_opp_table() returns -EPROBE_DEFER, the opp_table is freed again, to wait until all the interconne

  • CVE-2023-54025Dec 24, 2025
    affected >= 5.7.0, < 5.10.188fixed 5.10.188

    In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled In case WoWlan was never configured during the operation of the system, the hw->wiphy->wowlan_config will be NULL. rsi_config_wowlan() checks w

  • CVE-2023-54024Dec 24, 2025
    affected < 5.4.235fixed 5.4.235

    In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy target device if coalesced MMIO unregistration fails Destroy and free the target coalesced MMIO device if unregistering said device fails. As clearly noted in the code, kvm_io_bus_unregister_dev()

  • CVE-2023-54023Dec 24, 2025
    affected >= 3.3.0, < 6.1.42fixed 6.1.42

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race between balance and cancel/pause Syzbot reported a panic that looks like this: assertion failed: fs_info->exclusive_operation == BTRFS_EXCLOP_BALANCE_PAUSED, in fs/btrfs/ioctl.c:465 -------

  • CVE-2023-54022Dec 24, 2025
    affected >= 6.5.0, < 6.5.3fixed 6.5.3

    In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential memory leaks at error path for UMP open The allocation and initialization errors at alloc_midi_urbs() that is called at MIDI 2.0 / UMP device are supposed to be handled at the cal

  • CVE-2023-54021Dec 24, 2025
    affected >= 2.6.25, < 4.14.316fixed 4.14.316

    In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4_mb_normalize_request We need to set ac_g_ex to notify the goal start used in ext4_mb_find_by_goal. Set ac_g_ex instead of ac_f_ex in ext4_mb_normalize_request. Besides we

  • CVE-2023-54020Dec 24, 2025
    affected < 5.15.99fixed 5.15.99

    In the Linux kernel, the following vulnerability has been resolved: dmaengine: sf-pdma: pdma_desc memory leak fix Commit b2cc5c465c2c ("dmaengine: sf-pdma: Add multithread support for a DMA channel") changed sf_pdma_prep_dma_memcpy() to unconditionally allocate a new sf_pdma_de

  • CVE-2023-54019Dec 24, 2025
    affected >= 5.2.0, < 6.1.42fixed 6.1.42

    In the Linux kernel, the following vulnerability has been resolved: sched/psi: use kernfs polling functions for PSI trigger polling Destroying psi trigger in cgroup_file_release causes UAF issues when a cgroup is removed from under a polling process. This is happening because c

  • CVE-2023-54018Dec 24, 2025
    affected >= 4.3.0, < 4.14.308fixed 4.14.308

    In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: Add missing check for alloc_ordered_workqueue Add check for the return value of alloc_ordered_workqueue as it may return NULL pointer and cause NULL pointer dereference in `hdmi_hdcp.c` and `hdmi_

  • CVE-2023-54017Dec 24, 2025
    affected >= 2.6.16, < 4.14.326fixed 4.14.326

    In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: fix possible memory leak in ibmebus_bus_init() If device_register() returns error in ibmebus_bus_init(), name of kobject which is allocated in dev_set_name() called in device_add() is leaked.

Page 46 of 88