VYPR

linux package

kernel

pkg:linux/kernel

Vulnerabilities (1,755)

  • CVE-2023-54016Dec 24, 2025
    affected >= 6.3.0, < 6.5.5fixed 6.5.5

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix memory leak in rx_desc and tx_desc Currently when ath12k_dp_cc_desc_init() is called we allocate memory to rx_descs and tx_descs. In ath12k_dp_cc_cleanup(), during descriptor cleanup rx_descs

  • CVE-2023-54015Dec 24, 2025
    affected >= 5.0.0, < 5.4.244fixed 5.4.244

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device In case devcom allocation is failed, mlx5 is always freeing the priv. However, this priv might have been allocated by a different thread, and free

  • CVE-2023-54014Dec 24, 2025
    affected >= 4.10.0, < 4.14.322fixed 4.14.322

    In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport() Klocwork reported warning of rport maybe NULL and will be dereferenced. rport returned by call to fc_bsg_to_rport() could be NULL and dereferenced.

  • CVE-2023-54013Dec 24, 2025
    affected >= 5.1.0, < 6.5.5fixed 6.5.5

    In the Linux kernel, the following vulnerability has been resolved: interconnect: Fix locking for runpm vs reclaim For cases where icc_bw_set() can be called in callbaths that could deadlock against shrinker/reclaim, such as runpm resume, we need to decouple the icc locking. I

  • CVE-2023-54012Dec 24, 2025
    affected >= 4.4.0, < 5.4.244fixed 5.4.244

    In the Linux kernel, the following vulnerability has been resolved: net: fix stack overflow when LRO is disabled for virtual interfaces When the virtual interface's feature is updated, it synchronizes the updated feature for its own lower interface. This propagation logic shoul

  • CVE-2023-54011Dec 24, 2025
    affected >= 6.1.0, < 6.1.18fixed 6.1.18

    In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix an issue found by KASAN Write only correct size (32 instead of 64 bytes).

  • CVE-2023-54010Dec 24, 2025
    affected >= 4.4.0, < 4.14.316fixed 4.14.316

    In the Linux kernel, the following vulnerability has been resolved: ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in acpi_db_display_objects ACPICA commit 0d5f467d6a0ba852ea3aad68663cbcbd43300fd4 ACPI_ALLOCATE_ZEROED may fails, object_info might be null and will ca

  • CVE-2023-54009Dec 24, 2025
    affected >= 5.8.0, < 5.10.180fixed 5.10.180

    In the Linux kernel, the following vulnerability has been resolved: i2c: cadence: cdns_i2c_master_xfer(): Fix runtime PM leak on error path The cdns_i2c_master_xfer() function gets a runtime PM reference when the function is entered. This reference is released when the function

  • CVE-2023-54008Dec 24, 2025
    affected >= 6.4.0, < 6.4.16fixed 6.4.16

    In the Linux kernel, the following vulnerability has been resolved: virtio_vdpa: build affinity masks conditionally We try to build affinity mask via create_affinity_masks() unconditionally which may lead several issues: - the affinity mask is not used for parent without affin

  • CVE-2023-54007Dec 24, 2025
    affected >= 3.9.0, < 4.19.283fixed 4.19.283

    In the Linux kernel, the following vulnerability has been resolved: vmci_host: fix a race condition in vmci_host_poll() causing GPF During fuzzing, a general protection fault is observed in vmci_host_poll(). general protection fault, probably for non-canonical address 0xdffffc

  • CVE-2023-54006Dec 24, 2025
    affected >= 2.6.24, < 4.14.326fixed 4.14.326

    In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix data-race around unix_tot_inflight. unix_tot_inflight is changed under spin_lock(unix_gc_lock), but unix_release_sock() reads it locklessly. Let's use READ_ONCE() for unix_tot_inflight. Note that

  • CVE-2023-54005Dec 24, 2025
    affected >= 4.14.0, < 4.14.324fixed 4.14.324

    In the Linux kernel, the following vulnerability has been resolved: binder: fix memory leak in binder_init() In binder_init(), the destruction of binder_alloc_shrinker_init() is not performed in the wrong path, which will cause memory leaks. So this commit introduces binder_all

  • CVE-2023-54004Dec 24, 2025
    affected >= 4.10.0, < 4.19.284fixed 4.19.284

    In the Linux kernel, the following vulnerability has been resolved: udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated(). syzbot reported [0] a null-ptr-deref in sk_get_rmem0() while using IPPROTO_UDPLITE (0x88): 14:25:52 executing program 1: r0 = socket$ine

  • CVE-2023-54003Dec 24, 2025
    affected >= 4.19.0, < 5.4.241fixed 5.4.241

    In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix GID entry ref leak when create_ah fails If AH create request fails, release sgid_attr to avoid GID entry referrence leak reported while releasing GID table

  • CVE-2023-54002Dec 24, 2025
    affected >= 5.17.0, < 6.1.29fixed 6.1.29

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some things more complicated. The assertion of valid state

  • CVE-2023-54001Dec 24, 2025
    affected >= 2.6.37, < 5.10.190fixed 5.10.190

    In the Linux kernel, the following vulnerability has been resolved: staging: r8712: Fix memory leak in _r8712_init_xmit_priv() In the above mentioned routine, memory is allocated in several places. If the first succeeds and a later one fails, the routine will leak memory. This

  • CVE-2023-54000Dec 24, 2025
    affected >= 6.1.0, < 6.1.46fixed 6.1.46

    In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix deadlock issue when externel_lb and reset are executed together When externel_lb and reset are executed together, a deadlock may occur: [ 3147.217009] INFO: task kworker/u321:0:7 blocked for more

  • CVE-2023-53999Dec 24, 2025
    affected >= 5.18.0, < 6.4.11fixed 6.4.11

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: TC, Fix internal port memory leak The flow rule can be splited, and the extra post_act rules are added to post_act table. It's possible to trigger memleak when the rule forwards packets from internal

  • CVE-2023-53998Dec 24, 2025
    affected >= 2.6.26, < 4.19.291fixed 4.19.291

    In the Linux kernel, the following vulnerability has been resolved: hwrng: virtio - Fix race on data_avail and actual data The virtio rng device kicks off a new entropy request whenever the data available reaches zero. When a new request occurs at the end of a read operation,

  • CVE-2023-53997Dec 24, 2025
    affected >= 6.4.0, < 6.4.8fixed 6.4.8

    In the Linux kernel, the following vulnerability has been resolved: thermal: of: fix double-free on unregistration Since commit 3d439b1a2ad3 ("thermal/core: Alloc-copy-free the thermal zone parameters structure"), thermal_zone_device_register() allocates a copy of the tzp argum

Page 47 of 88