VYPR

linux package

kernel

pkg:linux/kernel

Vulnerabilities (1,755)

  • CVE-2025-40161Nov 12, 2025
    affected >= 6.10.0, < 6.12.54fixed 6.12.54

    In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix SGI cleanup on unbind The driver incorrectly determines SGI vs SPI interrupts by checking IRQ number < 16, which fails with dynamic IRQ allocation. During unbind, this causes improper S

  • CVE-2025-40160Nov 12, 2025
    affected >= 3.2.0, < 6.6.113fixed 6.6.113

    In the Linux kernel, the following vulnerability has been resolved: xen/events: Return -EEXIST for bound VIRQs Change find_virq() to return -EEXIST when a VIRQ is bound to a different CPU than the one passed in. With that, remove the BUG_ON() from bind_virq_to_irq() to propoga

  • CVE-2025-40159Nov 12, 2025
    affected >= 6.8.0, < 6.12.54fixed 6.12.54

    In the Linux kernel, the following vulnerability has been resolved: xsk: Harden userspace-supplied xdp_desc validation Turned out certain clearly invalid values passed in xdp_desc from userspace can pass xp_{,un}aligned_validate_desc() and then lead to UBs or just invalid frame

  • CVE-2025-40158Nov 12, 2025
    affected >= 4.13.0, < 6.17.3fixed 6.17.3

    In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6_output() Use RCU in ip6_output() in order to use dst_dev_rcu() to prevent possible UAF. We can remove rcu_read_lock()/rcu_read_unlock() pairs from ip6_finish_output2().

  • CVE-2025-40157Nov 12, 2025
    affected >= 6.3.0, < 6.6.112fixed 6.6.112

    In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller When loading the i10nm_edac driver on some Intel Granite Rapids servers, a call trace may appear as follows: UBSAN: shift-out-of-bounds in dr

  • CVE-2025-40156Nov 12, 2025
    affected >= 6.1.0, < 6.1.156fixed 6.1.156

    In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fix potential error pointer dereference in probe() The drv->sram_reg pointer could be set to ERR_PTR(-EPROBE_DEFER) which would lead to a error pointer dereference. Use IS_ERR_OR_NULL()

  • CVE-2025-40155Nov 12, 2025
    affected >= 6.7.0, < 6.12.53fixed 6.12.53

    In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general p

  • CVE-2025-40154Nov 12, 2025
    affected >= 4.18.0, < 5.4.301fixed 5.4.301

    In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcr_rt5640 driver only shows an error message but leaves as is. This may lead to unepxect

  • CVE-2025-40153Nov 12, 2025
    affected >= 2.6.17, < 5.4.301fixed 5.4.301

    In the Linux kernel, the following vulnerability has been resolved: mm: hugetlb: avoid soft lockup when mprotect to large memory area When calling mprotect() to a large hugetlb memory area in our customer's workload (~300GB hugetlb memory), soft lockup was observed: watchdog:

  • CVE-2025-40152Nov 12, 2025
    affected >= 6.17.0, < 6.17.3fixed 6.17.3

    In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix bootup splat with separate_gpu_drm modparam The drm_gem_for_each_gpuvm_bo() call from lookup_vma() accesses drm_gem_obj.gpuva.list, which is not initialized when the drm driver does not support DRI

  • CVE-2025-40151Nov 12, 2025
    affected >= 6.17.0, < 6.17.3fixed 6.17.3

    In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: No support of struct argument in trampoline programs The current implementation does not support struct argument. This causes a oops when running bpf selftest: $ ./test_progs -a tracing_struc

  • CVE-2025-40150Nov 12, 2025
    affected < 6.6.130fixed 6.6.130

    In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid migrating empty section It reports a bug from device w/ zufs: F2FS-fs (dm-64): Inconsistent segment (173822) type [1, 0] in SSA and SIT F2FS-fs (dm-64): Stopped filesystem due to reason: 4

  • CVE-2025-40148Nov 12, 2025
    affected >= 6.16.0, < 6.17.3fixed 6.17.3

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL pointer checks in dc_stream cursor attribute functions The function dc_stream_set_cursor_attributes() currently dereferences the `stream` pointer and nested members `stream->ctx->dc->c

  • CVE-2025-40147Nov 12, 2025
    affected >= 6.10.0, < 6.12.78fixed 6.12.78

    In the Linux kernel, the following vulnerability has been resolved: blk-throttle: fix access race during throttle policy activation On repeated cold boots we occasionally hit a NULL pointer crash in blk_should_throtl() when throttling is consulted before the throttle policy is

  • CVE-2025-40146Nov 12, 2025
    affected >= 3.16.0, < 6.17.3fixed 6.17.3

    In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix potential deadlock while nr_requests grown Allocate and free sched_tags while queue is freezed can deadlock[1], this is a long term problem, hence allocate memory before freezing queue and free memo

  • CVE-2025-40145Nov 12, 2025
    affected >= 6.15.0, < 6.17.3fixed 6.17.3

    In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Fix double cleanup on devm_add_action_or_reset() failure When devm_add_action_or_reset() fails, it calls the passed cleanup function. Hence the caller must not repeat that cleanup. Replace the "g

  • CVE-2025-40143Nov 12, 2025
    affected >= 6.17.0, < 6.17.3fixed 6.17.3

    In the Linux kernel, the following vulnerability has been resolved: bpf: dont report verifier bug for missing bpf_scc_visit on speculative path Syzbot generated a program that triggers a verifier_bug() call in maybe_exit_scc(). maybe_exit_scc() assumes that, when called for a s

  • CVE-2025-40142Nov 12, 2025
    affected >= 6.12.0, < 6.12.53fixed 6.12.53

    In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Disable bottom softirqs as part of spin_lock_irq() on PREEMPT_RT snd_pcm_group_lock_irq() acquires a spinlock_t and disables interrupts via spin_lock_irq(). This also implicitly disables the handling

  • CVE-2025-40141Nov 12, 2025
    affected >= 6.0.0, < 6.1.156fixed 6.1.156

    In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix possible UAF on iso_conn_free This attempt to fix similar issue to sco_conn_free where if the conn->sk is not set to NULL may lead to UAF on iso_conn_free.

  • CVE-2025-40140Nov 12, 2025
    affected >= 2.6.12, < 5.4.301fixed 5.4.301

    In the Linux kernel, the following vulnerability has been resolved: net: usb: Remove disruptive netif_wake_queue in rtl8150_set_multicast syzbot reported WARNING in rtl8150_start_xmit/usb_submit_urb. This is the sequence of events that leads to the warning: rtl8150_start_xmit(

Page 76 of 88