linux package
kernel
pkg:linux/kernel
Vulnerabilities (1,755)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-50663 | — | >= 5.13.0, < 5.15.86 | 5.15.86 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix possible memory leak in stmmac_dvr_probe() The bitmap_free() should be called to free priv->af_xdp_zc_qps when create_singlethread_workqueue() fails, otherwise there will be a memory leak, so w | ||
| CVE-2022-50662 | — | >= 5.8.0, < 5.10.163 | 5.10.163 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: fix memory leak in hns_roce_alloc_mr() When hns_roce_mr_enable() failed in hns_roce_alloc_mr(), mr_key is not released. Compiled test only. | ||
| CVE-2022-50661 | — | >= 5.9.0, < 5.10.180 | 5.10.180 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copy_seccomp() to no failure path. Our syzbot instance reported memory leaks in do_seccomp() [0], similar to the report [1]. It shows that we miss freeing struct seccomp_filter and some objects i | ||
| CVE-2022-50660 | — | >= 2.6.33, < 4.14.308 | 4.14.308 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: wifi: ipw2200: fix memory leak in ipw_wdev_init() In the error path of ipw_wdev_init(), exception value is returned, and the memory applied for in the function is not released. Also the memory is not released i | ||
| CVE-2022-50659 | — | >= 2.6.18, < 4.9.337 | 4.9.337 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_device() says that it will increase the reference count for the returned pci_dev and als | ||
| CVE-2022-50658 | — | >= 5.7.0, < 5.10.152 | 5.10.152 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix memory leak in error path If for some reason the speedbin length is incorrect, then there is a memory leak in the error path because we never free the speedbin buffer. This commit fixes the e | ||
| CVE-2022-50657 | — | >= 5.18.0, < 6.0.7 | 6.0.7 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: riscv: mm: add missing memcpy in kasan_init Hi Atish, It seems that the panic is due to the missing memcpy during kasan_init. Could you please check whether this patch is helpful? When doing kasan_populate, t | ||
| CVE-2023-53819 | — | >= 4.2.0, < 4.19.313 | 4.19.313 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offset_in_bo of drm_amdgpu_gem_va This is motivated by OOB access in amdgpu_vm_update_range when offset_in_bo+map_size overflows. v2: keep the validations in amdgpu_vm_bo_map v3: add the valid | ||
| CVE-2023-53818 | — | >= 4.0.0, < 4.14.308 | 4.14.308 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: ARM: zynq: Fix refcount leak in zynq_early_slcr_init of_find_compatible_node() returns a node pointer with refcount incremented, we should use of_node_put() on error path. Add missing of_node_put() to avoid ref | ||
| CVE-2023-53817 | — | >= 3.7.0, < 4.14.326 | 4.14.326 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() During NVMeTCP Authentication a controller can trigger a kernel oops by specifying the 8192 bit Diffie Hellman group and passing a correctly sized, but | ||
| CVE-2023-53816 | — | >= 3.19.0, < 6.1.23 | 6.1.23 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: fix potential kgd_mem UAFs kgd_mem pointers returned by kfd_process_device_translate_handle are only guaranteed to be valid while p->mutex is held. As soon as the mutex is unlocked, another thread c | ||
| CVE-2023-53815 | — | >= 5.4.0, < 5.10.188 | 5.10.188 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimer_delete() itimer_delete() has a retry loop when the timer is concurrently expired. On non-RT kernels this just spin-waits until the timer callback has completed, excep | ||
| CVE-2023-53814 | — | >= 5.16.0, < 6.1.16 | 6.1.16 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: PCI: Fix dropping valid root bus resources with .end = zero On r8a7791/koelsch: kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) # cat /sys/kernel/debug/kmemleak unreferenced objec | ||
| CVE-2023-53813 | — | >= 6.4.0, < 6.4.8 | 6.4.8 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations, while looking for preallocations(PA) in the per inode rbtree, we can't do a direct traversal of the tree because ext4_mb_discard_gr | ||
| CVE-2023-53812 | — | >= 5.18.0, < 6.1.28 | 6.1.28 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix decoder disable pm crash Can't call pm_runtime_disable when the architecture support sub device for 'dev->pm.dev' is NUll, or will get below crash log. [ 10.771551] pc : _raw_spi | ||
| CVE-2023-53811 | — | >= 5.14.0, < 5.15.99 | 5.15.99 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Cap MSIX used to online CPUs + 1 The irdma driver can use a maximum number of msix vectors equal to num_online_cpus() + 1 and the kernel warning stack below is shown if that number is exceeded. The | ||
| CVE-2023-53810 | — | >= 5.8.0, < 5.10.180 | 5.10.180 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blk_crypto_key has completed, filesystems can call blk_crypto_evict_key(). However, the block layer currently doesn't call blk_ | ||
| CVE-2023-53809 | — | < 5.10.173 | 5.10.173 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register() When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tp_tunnel_register(). Thi | ||
| CVE-2023-53808 | — | >= 4.0.0, < 4.14.326 | 4.14.326 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: fix memory leak in mwifiex_histogram_read() Always free the zeroed page on return from 'mwifiex_histogram_read()'. | ||
| CVE-2023-53807 | — | >= 5.13.0, < 5.15.121 | 5.15.121 | Dec 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider() Smatch detected this potential error pointer dereference clk_wzrd_register_divider(). If devm_clk_hw_register() fails then it sets "hw" to an error |
- CVE-2022-50663Dec 9, 2025affected >= 5.13.0, < 5.15.86fixed 5.15.86
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix possible memory leak in stmmac_dvr_probe() The bitmap_free() should be called to free priv->af_xdp_zc_qps when create_singlethread_workqueue() fails, otherwise there will be a memory leak, so w
- CVE-2022-50662Dec 9, 2025affected >= 5.8.0, < 5.10.163fixed 5.10.163
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: fix memory leak in hns_roce_alloc_mr() When hns_roce_mr_enable() failed in hns_roce_alloc_mr(), mr_key is not released. Compiled test only.
- CVE-2022-50661Dec 9, 2025affected >= 5.9.0, < 5.10.180fixed 5.10.180
In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copy_seccomp() to no failure path. Our syzbot instance reported memory leaks in do_seccomp() [0], similar to the report [1]. It shows that we miss freeing struct seccomp_filter and some objects i
- CVE-2022-50660Dec 9, 2025affected >= 2.6.33, < 4.14.308fixed 4.14.308
In the Linux kernel, the following vulnerability has been resolved: wifi: ipw2200: fix memory leak in ipw_wdev_init() In the error path of ipw_wdev_init(), exception value is returned, and the memory applied for in the function is not released. Also the memory is not released i
- CVE-2022-50659Dec 9, 2025affected >= 2.6.18, < 4.9.337fixed 4.9.337
In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_device() says that it will increase the reference count for the returned pci_dev and als
- CVE-2022-50658Dec 9, 2025affected >= 5.7.0, < 5.10.152fixed 5.10.152
In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix memory leak in error path If for some reason the speedbin length is incorrect, then there is a memory leak in the error path because we never free the speedbin buffer. This commit fixes the e
- CVE-2022-50657Dec 9, 2025affected >= 5.18.0, < 6.0.7fixed 6.0.7
In the Linux kernel, the following vulnerability has been resolved: riscv: mm: add missing memcpy in kasan_init Hi Atish, It seems that the panic is due to the missing memcpy during kasan_init. Could you please check whether this patch is helpful? When doing kasan_populate, t
- CVE-2023-53819Dec 9, 2025affected >= 4.2.0, < 4.19.313fixed 4.19.313
In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offset_in_bo of drm_amdgpu_gem_va This is motivated by OOB access in amdgpu_vm_update_range when offset_in_bo+map_size overflows. v2: keep the validations in amdgpu_vm_bo_map v3: add the valid
- CVE-2023-53818Dec 9, 2025affected >= 4.0.0, < 4.14.308fixed 4.14.308
In the Linux kernel, the following vulnerability has been resolved: ARM: zynq: Fix refcount leak in zynq_early_slcr_init of_find_compatible_node() returns a node pointer with refcount incremented, we should use of_node_put() on error path. Add missing of_node_put() to avoid ref
- CVE-2023-53817Dec 9, 2025affected >= 3.7.0, < 4.14.326fixed 4.14.326
In the Linux kernel, the following vulnerability has been resolved: crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() During NVMeTCP Authentication a controller can trigger a kernel oops by specifying the 8192 bit Diffie Hellman group and passing a correctly sized, but
- CVE-2023-53816Dec 9, 2025affected >= 3.19.0, < 6.1.23fixed 6.1.23
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: fix potential kgd_mem UAFs kgd_mem pointers returned by kfd_process_device_translate_handle are only guaranteed to be valid while p->mutex is held. As soon as the mutex is unlocked, another thread c
- CVE-2023-53815Dec 9, 2025affected >= 5.4.0, < 5.10.188fixed 5.10.188
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimer_delete() itimer_delete() has a retry loop when the timer is concurrently expired. On non-RT kernels this just spin-waits until the timer callback has completed, excep
- CVE-2023-53814Dec 9, 2025affected >= 5.16.0, < 6.1.16fixed 6.1.16
In the Linux kernel, the following vulnerability has been resolved: PCI: Fix dropping valid root bus resources with .end = zero On r8a7791/koelsch: kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) # cat /sys/kernel/debug/kmemleak unreferenced objec
- CVE-2023-53813Dec 9, 2025affected >= 6.4.0, < 6.4.8fixed 6.4.8
In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations, while looking for preallocations(PA) in the per inode rbtree, we can't do a direct traversal of the tree because ext4_mb_discard_gr
- CVE-2023-53812Dec 9, 2025affected >= 5.18.0, < 6.1.28fixed 6.1.28
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix decoder disable pm crash Can't call pm_runtime_disable when the architecture support sub device for 'dev->pm.dev' is NUll, or will get below crash log. [ 10.771551] pc : _raw_spi
- CVE-2023-53811Dec 9, 2025affected >= 5.14.0, < 5.15.99fixed 5.15.99
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Cap MSIX used to online CPUs + 1 The irdma driver can use a maximum number of msix vectors equal to num_online_cpus() + 1 and the kernel warning stack below is shown if that number is exceeded. The
- CVE-2023-53810Dec 9, 2025affected >= 5.8.0, < 5.10.180fixed 5.10.180
In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blk_crypto_key has completed, filesystems can call blk_crypto_evict_key(). However, the block layer currently doesn't call blk_
- CVE-2023-53809Dec 9, 2025affected < 5.10.173fixed 5.10.173
In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register() When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tp_tunnel_register(). Thi
- CVE-2023-53808Dec 9, 2025affected >= 4.0.0, < 4.14.326fixed 4.14.326
In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: fix memory leak in mwifiex_histogram_read() Always free the zeroed page on return from 'mwifiex_histogram_read()'.
- CVE-2023-53807Dec 9, 2025affected >= 5.13.0, < 5.15.121fixed 5.15.121
In the Linux kernel, the following vulnerability has been resolved: clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider() Smatch detected this potential error pointer dereference clk_wzrd_register_divider(). If devm_clk_hw_register() fails then it sets "hw" to an error
Page 62 of 88