VYPR

linux package

kernel

pkg:linux/kernel

Vulnerabilities (1,755)

  • CVE-2022-50663Dec 9, 2025
    affected >= 5.13.0, < 5.15.86fixed 5.15.86

    In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix possible memory leak in stmmac_dvr_probe() The bitmap_free() should be called to free priv->af_xdp_zc_qps when create_singlethread_workqueue() fails, otherwise there will be a memory leak, so w

  • CVE-2022-50662Dec 9, 2025
    affected >= 5.8.0, < 5.10.163fixed 5.10.163

    In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: fix memory leak in hns_roce_alloc_mr() When hns_roce_mr_enable() failed in hns_roce_alloc_mr(), mr_key is not released. Compiled test only.

  • CVE-2022-50661Dec 9, 2025
    affected >= 5.9.0, < 5.10.180fixed 5.10.180

    In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copy_seccomp() to no failure path. Our syzbot instance reported memory leaks in do_seccomp() [0], similar to the report [1]. It shows that we miss freeing struct seccomp_filter and some objects i

  • CVE-2022-50660Dec 9, 2025
    affected >= 2.6.33, < 4.14.308fixed 4.14.308

    In the Linux kernel, the following vulnerability has been resolved: wifi: ipw2200: fix memory leak in ipw_wdev_init() In the error path of ipw_wdev_init(), exception value is returned, and the memory applied for in the function is not released. Also the memory is not released i

  • CVE-2022-50659Dec 9, 2025
    affected >= 2.6.18, < 4.9.337fixed 4.9.337

    In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_device() says that it will increase the reference count for the returned pci_dev and als

  • CVE-2022-50658Dec 9, 2025
    affected >= 5.7.0, < 5.10.152fixed 5.10.152

    In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix memory leak in error path If for some reason the speedbin length is incorrect, then there is a memory leak in the error path because we never free the speedbin buffer. This commit fixes the e

  • CVE-2022-50657Dec 9, 2025
    affected >= 5.18.0, < 6.0.7fixed 6.0.7

    In the Linux kernel, the following vulnerability has been resolved: riscv: mm: add missing memcpy in kasan_init Hi Atish, It seems that the panic is due to the missing memcpy during kasan_init. Could you please check whether this patch is helpful? When doing kasan_populate, t

  • CVE-2023-53819Dec 9, 2025
    affected >= 4.2.0, < 4.19.313fixed 4.19.313

    In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offset_in_bo of drm_amdgpu_gem_va This is motivated by OOB access in amdgpu_vm_update_range when offset_in_bo+map_size overflows. v2: keep the validations in amdgpu_vm_bo_map v3: add the valid

  • CVE-2023-53818Dec 9, 2025
    affected >= 4.0.0, < 4.14.308fixed 4.14.308

    In the Linux kernel, the following vulnerability has been resolved: ARM: zynq: Fix refcount leak in zynq_early_slcr_init of_find_compatible_node() returns a node pointer with refcount incremented, we should use of_node_put() on error path. Add missing of_node_put() to avoid ref

  • CVE-2023-53817Dec 9, 2025
    affected >= 3.7.0, < 4.14.326fixed 4.14.326

    In the Linux kernel, the following vulnerability has been resolved: crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() During NVMeTCP Authentication a controller can trigger a kernel oops by specifying the 8192 bit Diffie Hellman group and passing a correctly sized, but

  • CVE-2023-53816Dec 9, 2025
    affected >= 3.19.0, < 6.1.23fixed 6.1.23

    In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: fix potential kgd_mem UAFs kgd_mem pointers returned by kfd_process_device_translate_handle are only guaranteed to be valid while p->mutex is held. As soon as the mutex is unlocked, another thread c

  • CVE-2023-53815Dec 9, 2025
    affected >= 5.4.0, < 5.10.188fixed 5.10.188

    In the Linux kernel, the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimer_delete() itimer_delete() has a retry loop when the timer is concurrently expired. On non-RT kernels this just spin-waits until the timer callback has completed, excep

  • CVE-2023-53814Dec 9, 2025
    affected >= 5.16.0, < 6.1.16fixed 6.1.16

    In the Linux kernel, the following vulnerability has been resolved: PCI: Fix dropping valid root bus resources with .end = zero On r8a7791/koelsch: kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) # cat /sys/kernel/debug/kmemleak unreferenced objec

  • CVE-2023-53813Dec 9, 2025
    affected >= 6.4.0, < 6.4.8fixed 6.4.8

    In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations, while looking for preallocations(PA) in the per inode rbtree, we can't do a direct traversal of the tree because ext4_mb_discard_gr

  • CVE-2023-53812Dec 9, 2025
    affected >= 5.18.0, < 6.1.28fixed 6.1.28

    In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix decoder disable pm crash Can't call pm_runtime_disable when the architecture support sub device for 'dev->pm.dev' is NUll, or will get below crash log. [ 10.771551] pc : _raw_spi

  • CVE-2023-53811Dec 9, 2025
    affected >= 5.14.0, < 5.15.99fixed 5.15.99

    In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Cap MSIX used to online CPUs + 1 The irdma driver can use a maximum number of msix vectors equal to num_online_cpus() + 1 and the kernel warning stack below is shown if that number is exceeded. The

  • CVE-2023-53810Dec 9, 2025
    affected >= 5.8.0, < 5.10.180fixed 5.10.180

    In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blk_crypto_key has completed, filesystems can call blk_crypto_evict_key(). However, the block layer currently doesn't call blk_

  • CVE-2023-53809Dec 9, 2025
    affected < 5.10.173fixed 5.10.173

    In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register() When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tp_tunnel_register(). Thi

  • CVE-2023-53808Dec 9, 2025
    affected >= 4.0.0, < 4.14.326fixed 4.14.326

    In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: fix memory leak in mwifiex_histogram_read() Always free the zeroed page on return from 'mwifiex_histogram_read()'.

  • CVE-2023-53807Dec 9, 2025
    affected >= 5.13.0, < 5.15.121fixed 5.15.121

    In the Linux kernel, the following vulnerability has been resolved: clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider() Smatch detected this potential error pointer dereference clk_wzrd_register_divider(). If devm_clk_hw_register() fails then it sets "hw" to an error

Page 62 of 88