SB2025072897 - SUSE update for the Linux Kernel
Published: July 28, 2025 Updated: August 29, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 221 secuirty vulnerabilities.
1) NULL pointer dereference (CVE-ID: CVE-2021-47557)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the ets_qdisc_change() function in net/sched/sch_ets.c. A local user can perform a denial of service (DoS) attack.
2) Buffer overflow (CVE-ID: CVE-2021-47595)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the ets_qdisc_change() function in net/sched/sch_ets.c. A local user can perform a denial of service (DoS) attack.
3) Use-after-free (CVE-ID: CVE-2022-1679)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the ath9k_htc_wait_for_target() function in the Linux kernel’s Atheros wireless adapter driver. A local user can execute arbitrary code with elevated privileges.
4) Resource management error (CVE-ID: CVE-2022-2585)
The vulnerability allows a local user to perform a denial of service (DoS) attack or escalate privileges on the system.
The vulnerability exists due to improper management of internal resources in POSIX CPU timers when handling death of a process. A local user can crash the kernel or execute arbitrary code.
5) Use-after-free (CVE-ID: CVE-2022-2586)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the the netfilter subsystem implementation in Linux kernel when preventing one nft object from referencing an nft set in another nft table. A local user can trigger a use-after-free error and execute arbitrary code on the system with elevated privileges.
6) Out-of-bounds read (CVE-ID: CVE-2022-2905)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in the Linux kernel BPF subsystem. A local user can call the bpf_tail_call() function with a key larger than the max_entries of the map, trigger an out-of-bounds read and read parts of kernel memory.
7) Resource management error (CVE-ID: CVE-2022-3903)
The vulnerability allows an attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to an incorrect read request flaw in the Infrared Transceiver USB driver in Linux kernel. An attacker with physical access to the system can starve system resources and perform a denial of service (DoS) attack.
8) Double Free (CVE-ID: CVE-2022-4095)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error within the cmd_hdl_filter() function in drivers/staging/rtl8712/rtl8712_cmd.c. A local user can trigger a double free error and execute arbitrary code with escalated privileges.
9) Improper access control (CVE-ID: CVE-2022-4662)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper access restrictions in the Linux kernel USB core subsystem in the way user attaches usb device. A local user can perform a denial of service (DoS) attack.
10) Use-after-free (CVE-ID: CVE-2022-49934)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the __ieee80211_scan_completed() function in net/mac80211/scan.c. A local user can escalate privileges on the system.
11) Improper locking (CVE-ID: CVE-2022-49936)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the usb_reset_device() function in drivers/usb/core/hub.c. A local user can perform a denial of service (DoS) attack.
12) Improper locking (CVE-ID: CVE-2022-49937)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the mceusb_gen1_init() function in drivers/media/rc/mceusb.c. A local user can perform a denial of service (DoS) attack.
13) Memory leak (CVE-ID: CVE-2022-49938)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the SMB2_negotiate() function in fs/cifs/smb2pdu.c. A local user can perform a denial of service (DoS) attack.
14) NULL pointer dereference (CVE-ID: CVE-2022-49940)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the gsmld_receive_buf() function in drivers/tty/n_gsm.c. A local user can perform a denial of service (DoS) attack.
15) Improper error handling (CVE-ID: CVE-2022-49942)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the ieee80211_ibss_finish_csa() function in net/mac80211/ibss.c. A local user can perform a denial of service (DoS) attack.
16) Out-of-bounds read (CVE-ID: CVE-2022-49945)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the gpio_fan_set_cur_state() function in drivers/hwmon/gpio-fan.c. A local user can perform a denial of service (DoS) attack.
17) Out-of-bounds read (CVE-ID: CVE-2022-49946)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the raspberrypi_discover_clocks() function in drivers/clk/bcm/clk-raspberrypi.c. A local user can perform a denial of service (DoS) attack.
18) Out-of-bounds read (CVE-ID: CVE-2022-49948)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the con_font_set() and con_font_default() functions in drivers/tty/vt/vt.c. A local user can perform a denial of service (DoS) attack.
19) Buffer overflow (CVE-ID: CVE-2022-49950)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the nft_set_elem_expr_clone() function in net/netfilter/nf_tables_api.c. A local user can escalate privileges on the system.
20) Buffer overflow (CVE-ID: CVE-2022-49952)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the fastrpc_cb_probe() function in drivers/misc/fastrpc.c. A local user can escalate privileges on the system.
21) Improper locking (CVE-ID: CVE-2022-49954)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the __iforce_usb_xmit() and iforce_usb_out() functions in drivers/input/joystick/iforce/iforce-usb.c, within the iforce_serio_xmit() and iforce_serio_irq() functions in drivers/input/joystick/iforce/iforce-serio.c. A local user can perform a denial of service (DoS) attack.
22) NULL pointer dereference (CVE-ID: CVE-2022-49956)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the r871x_internal_cmd_hdl() and cmd_hdl_filter() functions in drivers/staging/rtl8712/rtl8712_cmd.c. A local user can perform a denial of service (DoS) attack.
23) Improper locking (CVE-ID: CVE-2022-49957)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the kcm_attach() function in net/kcm/kcmsock.c. A local user can perform a denial of service (DoS) attack.
24) Memory leak (CVE-ID: CVE-2022-49958)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the dev_graft_qdisc(), attach_default_qdiscs() and dev_init_scheduler() functions in net/sched/sch_generic.c. A local user can perform a denial of service (DoS) attack.
25) NULL pointer dereference (CVE-ID: CVE-2022-49960)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the tgl_get_bw_info() function in drivers/gpu/drm/i915/display/intel_bw.c. A local user can perform a denial of service (DoS) attack.
26) Resource management error (CVE-ID: CVE-2022-49964)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the ci_leaf_init() and init_cache_level() functions in arch/arm64/kernel/cacheinfo.c. A local user can perform a denial of service (DoS) attack.
27) Memory leak (CVE-ID: CVE-2022-49966)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the drivers/gpu/drm/amd/pm/swsmu/smu11/sienna_cichlid_ppt.c. A local user can perform a denial of service (DoS) attack.
28) Use-after-free (CVE-ID: CVE-2022-49968)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the r871x_internal_cmd_hdl() and cmd_hdl_filter() functions in drivers/staging/rtl8712/rtl8712_cmd.c. A local user can escalate privileges on the system.
29) Integer underflow (CVE-ID: CVE-2022-49969)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer underflow within the optc1_enable_optc_clock() function in drivers/gpu/drm/amd/display/dc/dcn10/dcn10_optc.c. A local user can execute arbitrary code.
30) NULL pointer dereference (CVE-ID: CVE-2022-49977)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the ftrace_startup() function in kernel/trace/ftrace.c. A local user can perform a denial of service (DoS) attack.
31) Input validation error (CVE-ID: CVE-2022-49978)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the fastrpc_cb_probe() function in drivers/misc/fastrpc.c. A local user can perform a denial of service (DoS) attack.
32) Memory leak (CVE-ID: CVE-2022-49981)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the hidraw_release() function in drivers/hid/hidraw.c. A local user can perform a denial of service (DoS) attack.
33) Memory leak (CVE-ID: CVE-2022-49982)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the pvr2_hdw_create() function in drivers/media/usb/pvrusb2/pvrusb2-hdw.c. A local user can perform a denial of service (DoS) attack.
34) Resource management error (CVE-ID: CVE-2022-49983)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the udmabuf_dev_init() function in drivers/dma-buf/udmabuf.c. A local user can perform a denial of service (DoS) attack.
35) NULL pointer dereference (CVE-ID: CVE-2022-49984)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the steam_recv_report() and steam_send_report() functions in drivers/hid/hid-steam.c. A local user can perform a denial of service (DoS) attack.
36) Out-of-bounds read (CVE-ID: CVE-2022-49985)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the record_func_key() function in kernel/bpf/verifier.c. A local user can perform a denial of service (DoS) attack.
37) Use-after-free (CVE-ID: CVE-2022-49986)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the storvsc_probe() function in drivers/scsi/storvsc_drv.c. A local user can escalate privileges on the system.
38) Input validation error (CVE-ID: CVE-2022-49987)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the md_stop() function in drivers/md/md.c. A local user can perform a denial of service (DoS) attack.
39) NULL pointer dereference (CVE-ID: CVE-2022-49989)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the lock_pages() and privcmd_ioctl_dm_op() functions in drivers/xen/privcmd.c. A local user can perform a denial of service (DoS) attack.
40) Use-after-free (CVE-ID: CVE-2022-49990)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the arch_dup_task_struct() and copy_thread() functions in arch/s390/kernel/process.c. A local user can escalate privileges on the system.
41) Infinite loop (CVE-ID: CVE-2022-49993)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop within the loop_set_status_from_info() function in drivers/block/loop.c. A local user can perform a denial of service (DoS) attack.
42) Use-after-free (CVE-ID: CVE-2022-49995)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the wb_inode_writeback_start() and wb_inode_writeback_end() functions in mm/page-writeback.c, within the wb_wakeup_delayed() and cgwb_remove_from_bdi_list() functions in mm/backing-dev.c, within the inode_io_list_move_locked(), wb_queue_work() and get_next_work_item() functions in fs/fs-writeback.c. A local user can escalate privileges on the system.
43) Use-after-free (CVE-ID: CVE-2022-49999)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the btrfs_pin_extent_for_log_replay(), __exclude_logged_extent(), btrfs_block_group_done() and btrfs_trim_fs() functions in fs/btrfs/extent-tree.c, within the btrfs_wait_block_group_cache_progress(), btrfs_put_block_group(), btrfs_cache_block_group() and btrfs_update_block_group() functions in fs/btrfs/block-group.c. A local user can escalate privileges on the system.
44) Use-after-free (CVE-ID: CVE-2022-50005)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the pn532_uart_remove() function in drivers/nfc/pn533/uart.c. A local user can escalate privileges on the system.
45) Memory leak (CVE-ID: CVE-2022-50006)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __nfs42_ssc_open() function in fs/nfs/nfs4file.c. A local user can perform a denial of service (DoS) attack.
46) Improper locking (CVE-ID: CVE-2022-50008)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the __disable_kprobe() function in kernel/kprobes.c. A local user can perform a denial of service (DoS) attack.
47) Division by zero (CVE-ID: CVE-2022-50010)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a division by zero error within the i740fb_decode_var() function in drivers/video/fbdev/i740fb.c. A local user can perform a denial of service (DoS) attack.
48) Resource management error (CVE-ID: CVE-2022-50011)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the vcodec_domains_get() and core_get_v4() functions in drivers/media/platform/qcom/venus/pm_helpers.c. A local user can perform a denial of service (DoS) attack.
49) Resource management error (CVE-ID: CVE-2022-50012)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the early_init_devtree() function in arch/powerpc/kernel/prom.c. A local user can perform a denial of service (DoS) attack.
50) Memory leak (CVE-ID: CVE-2022-50019)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the soc_info() function in drivers/tty/serial/ucc_uart.c. A local user can perform a denial of service (DoS) attack.
51) Buffer overflow (CVE-ID: CVE-2022-50020)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the ext4_resize_fs() function in fs/ext4/resize.c. A local user can escalate privileges on the system.
52) Improper locking (CVE-ID: CVE-2022-50021)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the ext4_mb_clear_bb(), EXT4_C2B(), put_bh() and ext4_free_blocks() functions in fs/ext4/mballoc.c. A local user can perform a denial of service (DoS) attack.
53) Use-after-free (CVE-ID: CVE-2022-50022)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the raid5_end_write_request() function in drivers/md/raid5.c. A local user can escalate privileges on the system.
54) Input validation error (CVE-ID: CVE-2022-50023)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the axi_chan_block_xfer_complete() function in drivers/dma/dw-axi-dmac/dw-axi-dmac-platform.c. A local user can perform a denial of service (DoS) attack.
55) NULL pointer dereference (CVE-ID: CVE-2022-50024)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the dw_axi_dma_chan_slave_config() function in drivers/dma/dw-axi-dmac/dw-axi-dmac-platform.c. A local user can perform a denial of service (DoS) attack.
56) Out-of-bounds read (CVE-ID: CVE-2022-50026)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the gaudi_parse_cb_no_ext_queue() function in drivers/misc/habanalabs/gaudi/gaudi.c. A local user can perform a denial of service (DoS) attack.
57) Memory leak (CVE-ID: CVE-2022-50027)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the lpfc_sli4_issue_wqe() function in drivers/scsi/lpfc/lpfc_sli.c. A local user can perform a denial of service (DoS) attack.
58) Improper locking (CVE-ID: CVE-2022-50028)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the drivers/usb/gadget/legacy/inode.c. A local user can perform a denial of service (DoS) attack.
59) Improper resource shutdown or release (CVE-ID: CVE-2022-50029)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to failure to properly release resources within the drivers/clk/qcom/gcc-ipq8074.c. A local user can perform a denial of service (DoS) attack.
60) Buffer overflow (CVE-ID: CVE-2022-50030)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the lpfc_debugfs_multixripools_write(), lpfc_debugfs_nvmestat_write(), lpfc_debugfs_ioktime_write(), lpfc_debugfs_nvmeio_trc_write() and lpfc_debugfs_hdwqstat_write() functions in drivers/scsi/lpfc/lpfc_debugfs.c. A local user can escalate privileges on the system.
61) Use-after-free (CVE-ID: CVE-2022-50031)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the iscsi_iter_destroy_conn_fn() function in drivers/scsi/scsi_transport_iscsi.c. A local user can escalate privileges on the system.
62) Memory leak (CVE-ID: CVE-2022-50032)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the usbhs_rza1_hardware_init() function in drivers/usb/renesas_usbhs/rza.c. A local user can perform a denial of service (DoS) attack.
63) Memory leak (CVE-ID: CVE-2022-50033)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ohci_hcd_ppc_of_probe() function in drivers/usb/host/ohci-ppc-of.c. A local user can perform a denial of service (DoS) attack.
64) Use-after-free (CVE-ID: CVE-2022-50034)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the cdns3_wa2_remove_old_request() function in drivers/usb/cdns3/gadget.c. A local user can escalate privileges on the system.
65) Integer underflow (CVE-ID: CVE-2022-50036)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer underflow within the sun6i_dsi_setup_timings() function in drivers/gpu/drm/sun4i/sun6i_mipi_dsi.c. A local user can execute arbitrary code.
66) Memory leak (CVE-ID: CVE-2022-50038)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the meson_vpu_has_available_connectors() function in drivers/gpu/drm/meson/meson_drv.c. A local user can perform a denial of service (DoS) attack.
67) Input validation error (CVE-ID: CVE-2022-50039)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the intel_eth_pci_remove() function in drivers/net/ethernet/stmicro/stmmac/dwmac-intel.c. A local user can perform a denial of service (DoS) attack.
68) Buffer overflow (CVE-ID: CVE-2022-50040)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the sja1105_setup_devlink_regions() function in drivers/net/dsa/sja1105/sja1105_devlink.c. A local user can escalate privileges on the system.
69) Improper locking (CVE-ID: CVE-2022-50045)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the set_pci_dma_ops(), get_phb_number() and pcibios_alloc_controller() functions in arch/powerpc/kernel/pci-common.c. A local user can perform a denial of service (DoS) attack.
70) Memory leak (CVE-ID: CVE-2022-50046)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the rpc_sysfs_xprt_state_change() function in net/sunrpc/sysfs.c. A local user can perform a denial of service (DoS) attack.
71) NULL pointer dereference (CVE-ID: CVE-2022-50047)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the mv88e6060_setup_port() function in drivers/net/dsa/mv88e6060.c. A local user can perform a denial of service (DoS) attack.
72) Buffer overflow (CVE-ID: CVE-2022-50051)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the emit_copy(), scatter_list_length() and intel_context_migrate_copy() functions in drivers/gpu/drm/i915/gt/intel_migrate.c. A local user can perform a denial of service (DoS) attack.
73) Improper locking (CVE-ID: CVE-2022-50053)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the drivers/net/ethernet/intel/iavf/iavf_main.c. A local user can perform a denial of service (DoS) attack.
74) Memory leak (CVE-ID: CVE-2022-50055)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the iavf_config_arq_regs(), iavf_init_asq() and iavf_init_arq() functions in drivers/net/ethernet/intel/iavf/iavf_adminq.c. A local user can perform a denial of service (DoS) attack.
75) Memory leak (CVE-ID: CVE-2022-50059)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the handle_cap_grant() function in fs/ceph/caps.c. A local user can perform a denial of service (DoS) attack.
76) Memory leak (CVE-ID: CVE-2022-50060)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the npc_enadis_default_entries() and rvu_npc_enable_mcam_by_entry_index() functions in drivers/net/ethernet/marvell/octeontx2/af/rvu_npc.c, within the __rvu_flr_handler() function in drivers/net/ethernet/marvell/octeontx2/af/rvu.c. A local user can perform a denial of service (DoS) attack.
77) Memory leak (CVE-ID: CVE-2022-50061)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nmk_pinctrl_dt_subnode_to_map() function in drivers/pinctrl/nomadik/pinctrl-nomadik.c. A local user can perform a denial of service (DoS) attack.
78) Improper error handling (CVE-ID: CVE-2022-50062)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the bgmac_dma_tx_add() function in drivers/net/ethernet/broadcom/bgmac.c. A local user can perform a denial of service (DoS) attack.
79) Memory leak (CVE-ID: CVE-2022-50065)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the receive_mergeable() function in drivers/net/virtio_net.c. A local user can perform a denial of service (DoS) attack.
80) Out-of-bounds read (CVE-ID: CVE-2022-50066)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the aq_nic_service_timer_cb(), aq_nic_get_regs_count(), aq_nic_get_stats(), aq_nic_set_loopback() and aq_nic_stop() functions in drivers/net/ethernet/aquantia/atlantic/aq_nic.c. A local user can perform a denial of service (DoS) attack.
81) Use-after-free (CVE-ID: CVE-2022-50067)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the prepare_to_relocate() function in fs/btrfs/relocation.c. A local user can escalate privileges on the system.
82) Use-after-free (CVE-ID: CVE-2022-50068)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the ttm_bo_validate() function in drivers/gpu/drm/ttm/ttm_bo.c. A local user can escalate privileges on the system.
83) Use-after-free (CVE-ID: CVE-2022-50072)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the _nfs4_open_and_get_state() function in fs/nfs/nfs4proc.c. A local user can escalate privileges on the system.
84) NULL pointer dereference (CVE-ID: CVE-2022-50073)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the tap_get_user() function in drivers/net/tap.c. A local user can perform a denial of service (DoS) attack.
85) Memory leak (CVE-ID: CVE-2022-50074)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the aa_simple_write_to_buffer() function in security/apparmor/apparmorfs.c. A local user can perform a denial of service (DoS) attack.
86) Memory leak (CVE-ID: CVE-2022-50076)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the cifs_close_deferred_file(), cifs_close_all_deferred_files() and cifs_close_deferred_file_under_dentry() functions in fs/cifs/misc.c. A local user can perform a denial of service (DoS) attack.
87) Memory leak (CVE-ID: CVE-2022-50077)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the aa_pivotroot() function in security/apparmor/mount.c. A local user can perform a denial of service (DoS) attack.
88) Out-of-bounds read (CVE-ID: CVE-2022-50079)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the dcn303_stream_encoder_create() function in drivers/gpu/drm/amd/display/dc/dcn303/dcn303_resource.c. A local user can perform a denial of service (DoS) attack.
89) Use-after-free (CVE-ID: CVE-2022-50083)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the fs/ext4/xattr.h. A local user can escalate privileges on the system.
90) Out-of-bounds read (CVE-ID: CVE-2022-50084)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the raid_status() function in drivers/md/dm-raid.c. A local user can perform a denial of service (DoS) attack.
91) Infinite loop (CVE-ID: CVE-2022-50085)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop within the attempt_restore_of_faulty_devices() function in drivers/md/dm-raid.c. A local user can perform a denial of service (DoS) attack.
92) Use-after-free (CVE-ID: CVE-2022-50087)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the scpi_init_versions() and scpi_probe() functions in drivers/firmware/arm_scpi.c. A local user can escalate privileges on the system.
93) Use-after-free (CVE-ID: CVE-2022-50092)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the pool_ctr() function in drivers/md/dm-thin.c, within the dm_pool_register_metadata_threshold() function in drivers/md/dm-thin-metadata.c. A local user can escalate privileges on the system.
94) Input validation error (CVE-ID: CVE-2022-50093)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the dmar_parse_one_rhsa() function in drivers/iommu/intel/dmar.c. A local user can perform a denial of service (DoS) attack.
95) Out-of-bounds read (CVE-ID: CVE-2022-50094)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the include/trace/events/spmi.h. A local user can perform a denial of service (DoS) attack.
96) Use-after-free (CVE-ID: CVE-2022-50095)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the begin_new_exec() function in fs/exec.c. A local user can escalate privileges on the system.
97) Input validation error (CVE-ID: CVE-2022-50097)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the s3fb_set_par() function in drivers/video/fbdev/s3fb.c. A local user can perform a denial of service (DoS) attack.
98) Improper locking (CVE-ID: CVE-2022-50098)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the qla2xxx_eh_abort(), qla2x00_eh_wait_for_pending_commands(), qla2xxx_eh_device_reset() and qla2xxx_eh_target_reset() functions in drivers/scsi/qla2xxx/qla_os.c. A local user can perform a denial of service (DoS) attack.
99) Input validation error (CVE-ID: CVE-2022-50099)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the arkfb_set_par() function in drivers/video/fbdev/arkfb.c. A local user can perform a denial of service (DoS) attack.
100) Improper locking (CVE-ID: CVE-2022-50100)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the cpus_share_cache() and ttwu_queue_cond() functions in kernel/sched/core.c. A local user can perform a denial of service (DoS) attack.
101) Input validation error (CVE-ID: CVE-2022-50101)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the vt8623fb_set_par() function in drivers/video/fbdev/vt8623fb.c. A local user can perform a denial of service (DoS) attack.
102) Division by zero (CVE-ID: CVE-2022-50102)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a division by zero error within the arkfb_set_par() function in drivers/video/fbdev/arkfb.c. A local user can perform a denial of service (DoS) attack.
103) Out-of-bounds read (CVE-ID: CVE-2022-50103)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the cpuset_cpumask_can_shrink() and task_can_attach() functions in kernel/sched/core.c, within the cpuset_can_attach() function in kernel/cgroup/cpuset.c. A local user can perform a denial of service (DoS) attack.
104) Memory leak (CVE-ID: CVE-2022-50104)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the xive_get_max_prio() function in arch/powerpc/sysdev/xive/spapr.c. A local user can perform a denial of service (DoS) attack.
105) Memory leak (CVE-ID: CVE-2022-50108)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the max77620_initialise_fps() function in drivers/mfd/max77620.c. A local user can perform a denial of service (DoS) attack.
106) Memory leak (CVE-ID: CVE-2022-50109)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the clcdfb_of_init_display() function in drivers/video/fbdev/amba-clcd.c. A local user can perform a denial of service (DoS) attack.
107) Memory leak (CVE-ID: CVE-2022-50110)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the iounmap() function in drivers/watchdog/sp5100_tco.c. A local user can perform a denial of service (DoS) attack.
108) Memory leak (CVE-ID: CVE-2022-50111)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mt6359_parse_dt() function in sound/soc/codecs/mt6359.c, within the mt6359_accdet_parse_dt() function in sound/soc/codecs/mt6359-accdet.c. A local user can perform a denial of service (DoS) attack.
109) Memory leak (CVE-ID: CVE-2022-50112)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the qcom_smd_parse_edge() function in drivers/rpmsg/qcom_smd.c. A local user can perform a denial of service (DoS) attack.
110) Improper locking (CVE-ID: CVE-2022-50116)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the gsm_queue(), gsmld_output(), gsm_stuff_frame(), gsm_data_alloc(), gsm_is_flow_ctrl_msg(), __gsm_data_queue(), gsm_dlci_modem_output(), gsm_control_message(), gsm_control_wait(), gsm_dlci_close(), gsm_dlci_open(), gsm1_receive(), gsm_cleanup_mux(), gsm_activate_mux(), gsm_alloc_mux() and gsmld_open() functions in drivers/tty/n_gsm.c. A local user can perform a denial of service (DoS) attack.
111) Infinite loop (CVE-ID: CVE-2022-50118)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop within the power_pmu_disable() function in arch/powerpc/perf/core-book3s.c. A local user can perform a denial of service (DoS) attack.
112) Memory leak (CVE-ID: CVE-2022-50120)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the imx_rproc_addr_init() function in drivers/remoteproc/imx_rproc.c. A local user can perform a denial of service (DoS) attack.
113) Memory leak (CVE-ID: CVE-2022-50121)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the k3_r5_cluster_of_init() function in drivers/remoteproc/ti_k3_r5_remoteproc.c. A local user can perform a denial of service (DoS) attack.
114) Memory leak (CVE-ID: CVE-2022-50124)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mt6797_mt6351_dev_probe() function in sound/soc/mediatek/mt6797/mt6797-mt6351.c. A local user can perform a denial of service (DoS) attack.
115) Memory leak (CVE-ID: CVE-2022-50125)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the cros_ec_codec_platform_probe() function in sound/soc/codecs/cros_ec_codec.c. A local user can perform a denial of service (DoS) attack.
116) Reachable assertion (CVE-ID: CVE-2022-50126)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to reachable assertion within the jbd2_journal_dirty_metadata() function in fs/jbd2/transaction.c. A local user can perform a denial of service (DoS) attack.
117) Improper locking (CVE-ID: CVE-2022-50127)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the rxe_qp_init_misc(), rxe_qp_init_req() and rxe_qp_init_resp() functions in drivers/infiniband/sw/rxe/rxe_qp.c. A local user can perform a denial of service (DoS) attack.
118) Use-after-free (CVE-ID: CVE-2022-50129)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the srpt_refresh_port(), srpt_cm_req_recv(), srpt_release_sport(), __srpt_lookup_wwn(), srpt_add_one(), srpt_wwn_to_sport_id() and srpt_make_tport() functions in drivers/infiniband/ulp/srpt/ib_srpt.c. A local user can escalate privileges on the system.
119) Buffer overflow (CVE-ID: CVE-2022-50131)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the mcp_smbus_write() function in drivers/hid/hid-mcp2221.c. A local user can escalate privileges on the system.
120) NULL pointer dereference (CVE-ID: CVE-2022-50132)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the cdns3_gadget_ep_enable() and cdns3_gadget_ep_dequeue() functions in drivers/usb/cdns3/gadget.c. A local user can perform a denial of service (DoS) attack.
121) Memory leak (CVE-ID: CVE-2022-50134)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the setup_base_ctxt() function in drivers/infiniband/hw/hfi1/file_ops.c. A local user can perform a denial of service (DoS) attack.
122) Improper error handling (CVE-ID: CVE-2022-50136)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the siw_proc_mpareply() function in drivers/infiniband/sw/siw/siw_cm.c. A local user can perform a denial of service (DoS) attack.
123) Use-after-free (CVE-ID: CVE-2022-50137)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the irdma_destroy_cq() function in drivers/infiniband/hw/irdma/verbs.c. A local user can escalate privileges on the system.
124) Memory leak (CVE-ID: CVE-2022-50138)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __qedr_alloc_mr() function in drivers/infiniband/hw/qedr/verbs.c. A local user can perform a denial of service (DoS) attack.
125) Memory leak (CVE-ID: CVE-2022-50139)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ast_vhub_init_desc() function in drivers/usb/gadget/udc/aspeed-vhub/hub.c. A local user can perform a denial of service (DoS) attack.
126) Memory leak (CVE-ID: CVE-2022-50140)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the msb_data_clear() function in drivers/memstick/core/ms_block.c. A local user can perform a denial of service (DoS) attack.
127) Memory leak (CVE-ID: CVE-2022-50141)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the esdhc_signal_voltage_switch() function in drivers/mmc/host/sdhci-of-esdhc.c. A local user can perform a denial of service (DoS) attack.
128) Incorrect calculation (CVE-ID: CVE-2022-50142)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the msc_buffer_set_uc(), __msc_buffer_win_free() and for_each_sg() functions in drivers/hwtracing/intel_th/msu.c. A local user can perform a denial of service (DoS) attack.
129) Memory leak (CVE-ID: CVE-2022-50143)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the intel_th_pci_probe() function in drivers/hwtracing/intel_th/pci.c. A local user can perform a denial of service (DoS) attack.
130) NULL pointer dereference (CVE-ID: CVE-2022-50145)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the to_sf_pdma_desc(), sf_pdma_prep_dma_memcpy(), sf_pdma_desc_residue(), sf_pdma_enable_request(), sf_pdma_issue_pending() and sf_pdma_donebh_tasklet() functions in drivers/dma/sf-pdma/sf-pdma.c. A local user can perform a denial of service (DoS) attack.
131) Memory leak (CVE-ID: CVE-2022-50146)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the dw_pcie_ep_init() function in drivers/pci/controller/dwc/pcie-designware-ep.c. A local user can perform a denial of service (DoS) attack.
132) Use-after-free (CVE-ID: CVE-2022-50149)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the __driver_attach_async_helper() and __driver_attach() functions in drivers/base/dd.c. A local user can escalate privileges on the system.
133) Use-after-free (CVE-ID: CVE-2022-50151)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the cdns3_allocate_trb_pool() function in drivers/usb/cdns3/cdns3-gadget.c. A local user can escalate privileges on the system.
134) Memory leak (CVE-ID: CVE-2022-50152)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ohci_hcd_nxp_probe() function in drivers/usb/host/ohci-nxp.c. A local user can perform a denial of service (DoS) attack.
135) Memory leak (CVE-ID: CVE-2022-50153)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ehci_hcd_ppc_of_probe() function in drivers/usb/host/ehci-ppc-of.c. A local user can perform a denial of service (DoS) attack.
136) Memory leak (CVE-ID: CVE-2022-50154)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mtk_pcie_init_irq_domains() and irq_domain_remove() functions in drivers/pci/controller/pcie-mediatek-gen3.c. A local user can perform a denial of service (DoS) attack.
137) Memory leak (CVE-ID: CVE-2022-50155)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the bcm4908_partitions_fw_offset() function in drivers/mtd/parsers/ofpart_bcm4908.c. A local user can perform a denial of service (DoS) attack.
138) Buffer overflow (CVE-ID: CVE-2022-50156)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the cp2112_xfer() function in drivers/hid/hid-cp2112.c. A local user can escalate privileges on the system.
139) Memory leak (CVE-ID: CVE-2022-50157)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mc_pcie_init_irq_domains() function in drivers/pci/controller/pcie-microchip-host.c. A local user can perform a denial of service (DoS) attack.
140) Memory leak (CVE-ID: CVE-2022-50158)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the parse_redboot_of() function in drivers/mtd/parsers/redboot.c. A local user can perform a denial of service (DoS) attack.
141) Memory leak (CVE-ID: CVE-2022-50160)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ap_flash_init() function in drivers/mtd/maps/physmap-versatile.c. A local user can perform a denial of service (DoS) attack.
142) Memory leak (CVE-ID: CVE-2022-50161)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the of_flash_probe_versatile() function in drivers/mtd/maps/physmap-versatile.c. A local user can perform a denial of service (DoS) attack.
143) Memory leak (CVE-ID: CVE-2022-50162)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the if_usb_probe() function in drivers/net/wireless/marvell/libertas/if_usb.c. A local user can perform a denial of service (DoS) attack.
144) Improper error handling (CVE-ID: CVE-2022-50164)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the iwl_mvm_disable_sta_queues() function in drivers/net/wireless/intel/iwlwifi/mvm/sta.c. A local user can perform a denial of service (DoS) attack.
145) Use of uninitialized resource (CVE-ID: CVE-2022-50165)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to use of uninitialized resource within the wil_write_file_wmi() function in drivers/net/wireless/ath/wil6210/debugfs.c. A local user can perform a denial of service (DoS) attack.
146) Memory leak (CVE-ID: CVE-2022-50169)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the wil_write_file_wmi() function in drivers/net/wireless/ath/wil6210/debugfs.c. A local user can perform a denial of service (DoS) attack.
147) Improper locking (CVE-ID: CVE-2022-50171)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the sec_alloc_req_id(), sec_free_req_id(), sec_bd_send(), sec_create_qp_ctx() and sec_back_req_clear() functions in drivers/crypto/hisilicon/sec2/sec_crypto.c. A local user can perform a denial of service (DoS) attack.
148) Memory leak (CVE-ID: CVE-2022-50172)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __mt76x02u_mcu_send_msg() function in drivers/net/wireless/mediatek/mt76/mt76x02_usb_mcu.c. A local user can perform a denial of service (DoS) attack.
149) Improper locking (CVE-ID: CVE-2022-50173)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the mdp5_pipe_release() function in drivers/gpu/drm/msm/disp/mdp5/mdp5_pipe.c. A local user can perform a denial of service (DoS) attack.
150) Memory leak (CVE-ID: CVE-2022-50175)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the tw686x_video_init() function in drivers/media/pci/tw686x/tw686x-video.c. A local user can perform a denial of service (DoS) attack.
151) Memory leak (CVE-ID: CVE-2022-50176)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mcde_dsi_bind() function in drivers/gpu/drm/mcde/mcde_dsi.c. A local user can perform a denial of service (DoS) attack.
152) Improper error handling (CVE-ID: CVE-2022-50178)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the _dpk_pas_read() function in drivers/net/wireless/realtek/rtw89/rtw8852a_rfk.c. A local user can perform a denial of service (DoS) attack.
153) Use-after-free (CVE-ID: CVE-2022-50179)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the ath9k_htc_probe_device() function in drivers/net/wireless/ath/ath9k/htc_drv_init.c. A local user can escalate privileges on the system.
154) NULL pointer dereference (CVE-ID: CVE-2022-50181)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the virtio_gpu_get_caps_ioctl() function in drivers/gpu/drm/virtio/virtgpu_ioctl.c. A local user can perform a denial of service (DoS) attack.
155) Buffer overflow (CVE-ID: CVE-2022-50185)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the ni_set_mc_special_registers() function in drivers/gpu/drm/radeon/ni_dpm.c. A local user can escalate privileges on the system.
156) Improper error handling (CVE-ID: CVE-2022-50187)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the ath11k_core_pdev_create() function in drivers/net/wireless/ath/ath11k/core.c. A local user can perform a denial of service (DoS) attack.
157) Use-after-free (CVE-ID: CVE-2022-50190)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the EXPORT_SYMBOL_GPL() and devm_spi_unregister() functions in drivers/spi/spi.c. A local user can escalate privileges on the system.
158) Memory leak (CVE-ID: CVE-2022-50191)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the of_get_regulation_constraints() function in drivers/regulator/of_regulator.c. A local user can perform a denial of service (DoS) attack.
159) Use-after-free (CVE-ID: CVE-2022-50192)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the tegra_slink_remove() function in drivers/spi/spi-tegra20-slink.c. A local user can escalate privileges on the system.
160) Memory leak (CVE-ID: CVE-2022-50194)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the qmp_cooling_devices_register() function in drivers/soc/qcom/qcom_aoss.c. A local user can perform a denial of service (DoS) attack.
161) Memory leak (CVE-ID: CVE-2022-50196)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the of_get_ocmem() function in drivers/soc/qcom/ocmem.c. A local user can perform a denial of service (DoS) attack.
162) Memory leak (CVE-ID: CVE-2022-50197)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the zynq_get_revision() function in arch/arm/mach-zynq/common.c. A local user can perform a denial of service (DoS) attack.
163) Memory leak (CVE-ID: CVE-2022-50198)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the omap3xxx_prm_late_init() function in arch/arm/mach-omap2/prm3xxx.c. A local user can perform a denial of service (DoS) attack.
164) Memory leak (CVE-ID: CVE-2022-50199)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the omapdss_init_of() function in arch/arm/mach-omap2/display.c. A local user can perform a denial of service (DoS) attack.
165) Out-of-bounds read (CVE-ID: CVE-2022-50200)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the security/selinux/ss/policydb.h. A local user can perform a denial of service (DoS) attack.
166) Memory leak (CVE-ID: CVE-2022-50201)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the security_read_policy() and security_read_state_kernel() functions in security/selinux/ss/services.c. A local user can perform a denial of service (DoS) attack.
167) Improper locking (CVE-ID: CVE-2022-50202)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the snapshot_open(), snapshot_write() and snapshot_ioctl() functions in kernel/power/user.c. A local user can perform a denial of service (DoS) attack.
168) Memory leak (CVE-ID: CVE-2022-50203)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the omapdss_init_fbdev() function in arch/arm/mach-omap2/display.c. A local user can perform a denial of service (DoS) attack.
169) Memory leak (CVE-ID: CVE-2022-50204)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the pdata_quirks_init_clocks() function in arch/arm/mach-omap2/pdata-quirks.c. A local user can perform a denial of service (DoS) attack.
170) NULL pointer dereference (CVE-ID: CVE-2022-50206)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the LIST_HEAD(), emulation_proc_handler() and register_insn_emulation_sysctl() functions in arch/arm64/kernel/armv8_deprecated.c. A local user can perform a denial of service (DoS) attack.
171) Memory leak (CVE-ID: CVE-2022-50207)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the bcm_kona_smc_init() function in arch/arm/mach-bcm/bcm_kona_smc.c. A local user can perform a denial of service (DoS) attack.
172) Memory leak (CVE-ID: CVE-2022-50208)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the meson_secure_pwrc_probe() function in drivers/soc/amlogic/meson-secure-pwrc.c. A local user can perform a denial of service (DoS) attack.
173) Memory leak (CVE-ID: CVE-2022-50209)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the meson_mx_socinfo_init() function in drivers/soc/amlogic/meson-mx-socinfo.c. A local user can perform a denial of service (DoS) attack.
174) Use-after-free (CVE-ID: CVE-2022-50211)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the raid10_remove_disk() function in drivers/md/raid10.c. A local user can escalate privileges on the system.
175) Use-after-free (CVE-ID: CVE-2022-50212)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the nft_chain_lookup_byid(), nf_tables_newrule() and nft_verdict_init() functions in net/netfilter/nf_tables_api.c. A local user can escalate privileges on the system.
176) Use-after-free (CVE-ID: CVE-2022-50213)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the nft_set_lookup_byhandle(), nft_set_lookup_byid() and nft_set_lookup_global() functions in net/netfilter/nf_tables_api.c. A local user can escalate privileges on the system.
177) Use-after-free (CVE-ID: CVE-2022-50215)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the sg_link_reserve(), sg_read(), sg_ioctl_common(), sg_unlink_reserve() and sg_remove_request() functions in drivers/scsi/sg.c. A local user can escalate privileges on the system.
178) NULL pointer dereference (CVE-ID: CVE-2022-50218)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the isl29028_probe() function in drivers/iio/light/isl29028.c. A local user can perform a denial of service (DoS) attack.
179) Use-after-free (CVE-ID: CVE-2022-50220)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the drivers/net/usb/usbnet.c. A local user can escalate privileges on the system.
180) Buffer overflow (CVE-ID: CVE-2022-50222)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the vc_uniscr_alloc() function in drivers/tty/vt/vt.c. A local user can perform a denial of service (DoS) attack.
181) Memory leak (CVE-ID: CVE-2022-50226)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the sev_ioctl_do_platform_status(), sev_ioctl_do_pek_csr(), sev_ioctl_do_get_id2() and sev_ioctl_do_pdh_export() functions in drivers/crypto/ccp/sev-dev.c. A local user can perform a denial of service (DoS) attack.
182) Improper error handling (CVE-ID: CVE-2022-50228)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the svm_set_irq() function in arch/x86/kvm/svm.c. A local user can perform a denial of service (DoS) attack.
183) Use-after-free (CVE-ID: CVE-2022-50229)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the bcd2000_init_midi() function in sound/usb/bcd2000/bcd2000.c. A local user can escalate privileges on the system.
184) Use-after-free (CVE-ID: CVE-2022-50231)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the neon_poly1305_blocks() function in arch/arm64/crypto/poly1305-glue.c. A local user can escalate privileges on the system.
185) Use-after-free (CVE-ID: CVE-2023-3111)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the prepare_to_relocate() function in fs/btrfs/relocation.c in btrfs in the Linux Kernel. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.
186) Memory leak (CVE-ID: CVE-2023-52924)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nft_rbtree_walk() function in net/netfilter/nft_set_rbtree.c, within the nft_rhash_walk() function in net/netfilter/nft_set_hash.c, within the nf_tables_dump_setelem() function in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.
187) Resource management error (CVE-ID: CVE-2023-52925)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the nft_pipapo_get(), nft_pipapo_activate() and nft_pipapo_remove() functions in net/netfilter/nft_set_pipapo.c. A local user can perform a denial of service (DoS) attack.
188) Resource management error (CVE-ID: CVE-2023-53048)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the tcpm_ams_start() and vdm_run_state_machine() functions in drivers/usb/typec/tcpm/tcpm.c. A local user can perform a denial of service (DoS) attack.
189) Resource management error (CVE-ID: CVE-2023-53076)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the replace_barrier() and i915_active_add_request() functions in drivers/gpu/drm/i915/i915_active.c. A local user can perform a denial of service (DoS) attack.
190) Memory leak (CVE-ID: CVE-2023-53097)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the iommu_debugfs_add() function in arch/powerpc/kernel/iommu.c. A local user can perform a denial of service (DoS) attack.
191) Expired pointer dereference (CVE-ID: CVE-2024-26808)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a stale reference within the nf_tables_netdev_event() function in net/netfilter/nft_chain_filter.c. A local user can perform a denial of service (DoS) attack.
192) Resource management error (CVE-ID: CVE-2024-26924)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper management of internal resources within the nft_pipapo_remove() function in net/netfilter/nft_set_pipapo.c. A local user can perform a denial of service (DoS) attack.
193) Information disclosure (CVE-ID: CVE-2024-26935)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to information disclosure within the scsi_host_dev_release() function in drivers/scsi/hosts.c. A local user can gain access to sensitive information.
194) Improper locking (CVE-ID: CVE-2024-27397)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the __nft_rbtree_insert(), nft_rbtree_deactivate() and nft_rbtree_gc() functions in net/netfilter/nft_set_rbtree.c, within the pipapo_get(), nft_pipapo_get(), nft_pipapo_insert(), pipapo_gc() and pipapo_deactivate() functions in net/netfilter/nft_set_pipapo.c, within the nft_rhash_key(), nft_rhash_cmp(), nft_rhash_lookup(), nft_rhash_get(), nft_rhash_update(), nft_rhash_insert() and nft_rhash_deactivate() functions in net/netfilter/nft_set_hash.c, within the nft_trans_gc_catchall_sync() and nf_tables_valid_genid() functions in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.
195) Resource management error (CVE-ID: CVE-2024-35840)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper management of internal resources within the subflow_finish_connect() function in net/mptcp/subflow.c. A local user can perform a denial of service (DoS) attack.
196) Out-of-bounds read (CVE-ID: CVE-2024-36978)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the multiq_tune() function in net/sched/sch_multiq.c. A local user can perform a denial of service (DoS) attack.
197) Use-after-free (CVE-ID: CVE-2024-46800)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the qdisc_enqueue() function in net/sched/sch_netem.c. A local user can escalate privileges on the system.
198) Use-after-free (CVE-ID: CVE-2024-53057)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the qdisc_tree_reduce_backlog() function in net/sched/sch_api.c. A local user can escalate privileges on the system.
199) Resource management error (CVE-ID: CVE-2024-53125)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the find_equal_scalars() function in kernel/bpf/verifier.c. A local user can perform a denial of service (DoS) attack.
200) Input validation error (CVE-ID: CVE-2024-53141)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the bitmap_ip_uadt() function in net/netfilter/ipset/ip_set_bitmap_ip.c. A local user can perform a denial of service (DoS) attack.
201) Resource management error (CVE-ID: CVE-2024-56770)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the tfifo_reset(), tfifo_enqueue(), netem_enqueue() and netem_dequeue() functions in net/sched/sch_netem.c. A local user can perform a denial of service (DoS) attack.
202) Memory leak (CVE-ID: CVE-2024-57947)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nft_pipapo_avx2_lookup_slow() function in net/netfilter/nft_set_pipapo_avx2.c, within the nft_pipapo_lookup() and pipapo_get() functions in net/netfilter/nft_set_pipapo.c. A local user can perform a denial of service (DoS) attack.
203) Improper locking (CVE-ID: CVE-2024-57999)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the enable_ddw() and spapr_tce_create_table() functions in arch/powerpc/platforms/pseries/iommu.c, within the iommu_table_clear() function in arch/powerpc/kernel/iommu.c. A local user can perform a denial of service (DoS) attack.
204) Use-after-free (CVE-ID: CVE-2025-21700)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the qdisc_lookup() function in net/sched/sch_api.c. A local user can escalate privileges on the system.
205) Resource management error (CVE-ID: CVE-2025-21702)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the pfifo_tail_enqueue() function in net/sched/sch_fifo.c. A local user can perform a denial of service (DoS) attack.
206) Use-after-free (CVE-ID: CVE-2025-21703)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the net/sched/sch_netem.c. A local user can escalate privileges on the system.
207) Use-after-free (CVE-ID: CVE-2025-21756)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the EXPORT_SYMBOL_GPL() and __vsock_release() functions in net/vmw_vsock/af_vsock.c. A local user can escalate privileges on the system.
208) Improper locking (CVE-ID: CVE-2025-23141)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the kvm_arch_vcpu_ioctl_get_mpstate() function in arch/x86/kvm/x86.c. A local user can perform a denial of service (DoS) attack.
209) NULL pointer dereference (CVE-ID: CVE-2025-23145)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the subflow_hmac_valid() and subflow_syn_recv_sock() functions in net/mptcp/subflow.c. A local user can perform a denial of service (DoS) attack.
210) Out-of-bounds read (CVE-ID: CVE-2025-37752)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the sfq_change() function in net/sched/sch_sfq.c. A local user can perform a denial of service (DoS) attack.
211) Input validation error (CVE-ID: CVE-2025-37797)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the hfsc_change_class() function in net/sched/sch_hfsc.c. A local user can perform a denial of service (DoS) attack.
212) Input validation error (CVE-ID: CVE-2025-37798)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the qdisc_bstats_update() function in net/sched/sch_fq_codel.c, within the codel_qdisc_dequeue() function in net/sched/sch_codel.c. A local user can perform a denial of service (DoS) attack.
213) Input validation error (CVE-ID: CVE-2025-37823)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the hfsc_dequeue() function in net/sched/sch_hfsc.c. A local user can perform a denial of service (DoS) attack.
214) Use-after-free (CVE-ID: CVE-2025-37890)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the hfsc_enqueue() function in net/sched/sch_hfsc.c. A local user can escalate privileges on the system.
215) Resource management error (CVE-ID: CVE-2025-37932)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the htb_qlen_notify() function in net/sched/sch_htb.c. A local user can perform a denial of service (DoS) attack.
216) NULL pointer dereference (CVE-ID: CVE-2025-37953)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the htb_add_to_wait_tree(), htb_activate(), htb_qlen_notify(), htb_delete() and htb_change_class() functions in net/sched/sch_htb.c. A local user can perform a denial of service (DoS) attack.
217) Improper locking (CVE-ID: CVE-2025-37997)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the net/netfilter/ipset/ip_set_hash_gen.h. A local user can perform a denial of service (DoS) attack.
218) Use-after-free (CVE-ID: CVE-2025-38000)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the hfsc_enqueue() function in net/sched/sch_hfsc.c. A local user can escalate privileges on the system.
219) Use-after-free (CVE-ID: CVE-2025-38001)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the cl_in_el_or_vttree(), hfsc_change_class() and hfsc_enqueue() functions in net/sched/sch_hfsc.c. A local user can escalate privileges on the system.
220) Input validation error (CVE-ID: CVE-2025-38014)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the f2fs_new_node_page() function in fs/f2fs/node.c. A local user can perform a denial of service (DoS) attack.
221) Race condition (CVE-ID: CVE-2025-38083)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a race condition within the prio_tune() function in net/sched/sch_prio.c. A local user can escalate privileges on the system.
Remediation
Install update from vendor's website.