VYPR

linux package

kernel

pkg:linux/kernel

Vulnerabilities (1,755)

  • CVE-2023-53806Dec 9, 2025
    affected >= 4.15.0, < 6.1.30fixed 6.1.30

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: populate subvp cmd info only for the top pipe [Why] System restart observed while changing the display resolution to 8k with extended mode. Sytem restart was caused by a page fault. [How] When

  • CVE-2023-53804Dec 9, 2025
    affected >= 2.6.37, < 4.14.316fixed 4.14.316

    In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() During unmount process of nilfs2, nothing holds nilfs_root structure after nilfs2 detaches its writer in nilfs_detach_log_writer(). However,

  • CVE-2023-53803Dec 9, 2025
    affected >= 2.6.32, < 4.14.308fixed 4.14.308

    In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process() A fix for: BUG: KASAN: slab-out-of-bounds in ses_enclosure_data_process+0x949/0xe30 [ses] Read of size 1 at addr ffff88a1b043a451 by task syste

  • CVE-2023-53802Dec 9, 2025
    affected >= 2.6.35, < 4.14.308fixed 4.14.308

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function It is stated that ath9k_htc_rx_msg() either frees the provided skb or passes its management to another callback function. Ho

  • CVE-2023-53801Dec 9, 2025
    affected >= 5.13.0, < 5.15.113fixed 5.15.113

    In the Linux kernel, the following vulnerability has been resolved: iommu/sprd: Release dma buffer to avoid memory leak When attaching to a domain, the driver would alloc a DMA buffer which is used to store address mapping table, and it need to be released when the IOMMU domain

  • CVE-2023-53800Dec 9, 2025
    affected >= 2.6.22, < 4.14.308fixed 4.14.308

    In the Linux kernel, the following vulnerability has been resolved: ubi: Fix use-after-free when volume resizing failed There is an use-after-free problem reported by KASAN: ================================================================== BUG: KASAN: use-after-free in ubi

  • CVE-2023-53799Dec 9, 2025
    affected >= 2.6.19, < 5.10.195fixed 5.10.195

    In the Linux kernel, the following vulnerability has been resolved: crypto: api - Use work queue in crypto_destroy_instance The function crypto_drop_spawn expects to be called in process context. However, when an instance is unregistered while it still has active users, the la

  • CVE-2023-53798Dec 9, 2025
    affected >= 5.12.0, < 5.15.112fixed 5.15.112

    In the Linux kernel, the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when setting link modes using the legacy IOCTL ethtool interface. Since 'struct ethtool_link_ksettings' is not initialize

  • CVE-2023-53797Dec 9, 2025
    affected < 5.4.251fixed 5.4.251

    In the Linux kernel, the following vulnerability has been resolved: HID: wacom: Use ktime_t rather than int when dealing with timestamps Code which interacts with timestamps needs to use the ktime_t type returned by functions like ktime_get. The int type does not offer enough s

  • CVE-2023-53796Dec 9, 2025
    affected >= 4.3.0, < 4.14.308fixed 4.14.308

    In the Linux kernel, the following vulnerability has been resolved: f2fs: fix information leak in f2fs_move_inline_dirents() When converting an inline directory to a regular one, f2fs is leaking uninitialized memory to disk because it doesn't initialize the entire directory blo

  • CVE-2023-53795Dec 9, 2025
    affected >= 6.2.0, < 6.4.8fixed 6.4.8

    In the Linux kernel, the following vulnerability has been resolved: iommufd: IOMMUFD_DESTROY should not increase the refcount syzkaller found a race where IOMMUFD_DESTROY increments the refcount: obj = iommufd_get_object(ucmd->ictx, cmd->id, IOMMUFD_OBJ_ANY); if

  • CVE-2023-53794Dec 9, 2025
    affected >= 4.7.0, < 6.1.47fixed 6.1.47

    In the Linux kernel, the following vulnerability has been resolved: cifs: fix session state check in reconnect to avoid use-after-free issue Don't collect exiting session in smb2_reconnect_server(), because it will be released soon. Note that the exiting session will stay in s

  • CVE-2023-53793Dec 9, 2025
    affected >= 6.1.0, < 6.1.39fixed 6.1.39

    In the Linux kernel, the following vulnerability has been resolved: perf tool x86: Fix perf_env memory leak Found by leak sanitizer: ``` ==1632594==ERROR: LeakSanitizer: detected memory leaks Direct leak of 21 byte(s) in 1 object(s) allocated from: #0 0x7f2953a7077b in __i

  • CVE-2023-53792Dec 9, 2025
    affected >= 6.0.0, < 6.1.39fixed 6.1.39

    In the Linux kernel, the following vulnerability has been resolved: nvme-core: fix memory leak in dhchap_ctrl_secret Free dhchap_secret in nvme_ctrl_dhchap_ctrl_secret_store() before we return when nvme_auth_generate_key() returns error.

  • CVE-2023-53791Dec 9, 2025
    affected >= 6.5.0, < 6.5.5fixed 6.5.5

    In the Linux kernel, the following vulnerability has been resolved: md: fix warning for holder mismatch from export_rdev() Commit a1d767191096 ("md: use mddev->external to select holder in export_rdev()") fix the problem that 'claim_rdev' is used for blkdev_get_by_dev() while '

  • CVE-2023-53790Dec 9, 2025
    affected >= 6.1.0, < 6.1.16fixed 6.1.16

    In the Linux kernel, the following vulnerability has been resolved: bpf: Zeroing allocated object from slab in bpf memory allocator Currently the freed element in bpf memory allocator may be immediately reused, for htab map the reuse will reinitialize special fields in map valu

  • CVE-2023-53789Dec 9, 2025
    affected >= 5.16.0, < 6.1.16fixed 6.1.16

    In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Improve page fault error reporting If IOMMU domain for device group is not setup properly then we may hit IOMMU page fault. Current page fault handler assumes that domain is always setup and it will

  • CVE-2023-53788Dec 9, 2025
    affected >= 3.9.0, < 4.14.312fixed 4.14.312

    In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set() tuning_ctl_set() might have buffer overrun at (X) if it didn't break from loop by matching (A). static int tuning_ctl_set(...) { for (i = 0; i < T

  • CVE-2023-53787Dec 9, 2025
    affected >= 6.4.0, < 6.4.7fixed 6.4.7

    In the Linux kernel, the following vulnerability has been resolved: regulator: da9063: fix null pointer deref with partial DT config When some of the da9063 regulators do not have corresponding DT nodes a null pointer dereference occurs on boot because such regulators have no i

  • CVE-2023-53786Dec 9, 2025
    affected >= 3.1.0, < 4.14.315fixed 4.14.315

    In the Linux kernel, the following vulnerability has been resolved: dm flakey: fix a crash with invalid table line This command will crash with NULL pointer dereference: dmsetup create flakey --table \ "0 `blockdev --getsize /dev/ram0` flakey /dev/ram0 0 0 1 2 corrupt_bio_by

Page 63 of 88