SB2025101769 - SUSE update for the Linux Kernel
Published: October 17, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 326 secuirty vulnerabilities.
1) Use-after-free (CVE-ID: CVE-2022-2602)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error caused by an io_uring request, which is being processed on a registered file. The Unix GC runs and frees the io_uring file descriptor and all the registered file descriptors in a specific order that may allow a local user to win a race and execute arbitrary code with elevated privileges.
2) Use-after-free (CVE-ID: CVE-2022-2978)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the Linux kernel NILFS file system. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.
3) Out-of-bounds write (CVE-ID: CVE-2022-36280)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error within the vmw_kms_cursor_snoo() function in drivers/gpu/vmxgfx/vmxgfx_kms.c in vmwgfx VMWare driver. A local user can trigger an out-of-bounds write and perform a denial of service (DoS) attack.
4) Buffer overflow (CVE-ID: CVE-2022-43945)
The vulnerability allows a remote attacker to perform a denial of service attacl.
The vulnerability exists due to a boundary error within the Linux kernel NFSD implementation. A remote attacker can send the RPC message over TCP with garbage data added at the end of the message, trigger memory corruption and perform a denial of service (DoS) attack.
5) Buffer overflow (CVE-ID: CVE-2022-49138)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the hci_conn_complete_evt(), hci_sync_conn_complete_evt() and le_conn_complete_evt() functions in net/bluetooth/hci_event.c, within the hci_conn_add() function in net/bluetooth/hci_conn.c. A local user can escalate privileges on the system.
6) Use-after-free (CVE-ID: CVE-2022-49980)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the usb_udc_uevent() function in drivers/usb/gadget/udc/core.c. A local user can escalate privileges on the system.
7) Input validation error (CVE-ID: CVE-2022-50233)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the append_eir_data_to_buf() function in net/bluetooth/mgmt.c, within the eir_append_name(), eir_append_local_name() and eir_create() functions in net/bluetooth/eir.c. A local user can perform a denial of service (DoS) attack.
8) Memory leak (CVE-ID: CVE-2022-50234)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the wait_for_unix_gc() and unix_gc() functions in net/unix/garbage.c. A local user can perform a denial of service (DoS) attack.
9) Buffer overflow (CVE-ID: CVE-2022-50235)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the nfsd_init_dirlist_pages() function in fs/nfsd/nfsproc.c. A local user can escalate privileges on the system.
10) NULL pointer dereference (CVE-ID: CVE-2022-50239)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the qcom_cpufreq_probe() function in drivers/cpufreq/qcom-cpufreq-nvmem.c. A local user can perform a denial of service (DoS) attack.
11) Use-after-free (CVE-ID: CVE-2022-50241)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the nfs4_alloc_open_stateid(), nfs4_free_ol_stateid() and nfsd4_close_open_stateid() functions in fs/nfsd/nfs4state.c. A local user can escalate privileges on the system.
12) Memory leak (CVE-ID: CVE-2022-50246)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the tcpci_register_port() and EXPORT_SYMBOL_GPL() functions in drivers/usb/typec/tcpm/tcpci.c. A local user can perform a denial of service (DoS) attack.
13) Memory leak (CVE-ID: CVE-2022-50247)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the xhci_mtk_probe() function in drivers/usb/host/xhci-mtk.c. A local user can perform a denial of service (DoS) attack.
14) Use-after-free (CVE-ID: CVE-2022-50248)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the iwl_mvm_tx_skb_sta() function in drivers/net/wireless/intel/iwlwifi/mvm/tx.c. A local user can escalate privileges on the system.
15) Memory leak (CVE-ID: CVE-2022-50249)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the of_get_ddr_timings() function in drivers/memory/of_memory.c. A local user can perform a denial of service (DoS) attack.
16) Memory leak (CVE-ID: CVE-2022-50250)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the set_machine_constraints() function in drivers/regulator/core.c. A local user can perform a denial of service (DoS) attack.
17) Memory leak (CVE-ID: CVE-2022-50251)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the vub300_probe() function in drivers/mmc/host/vub300.c. A local user can perform a denial of service (DoS) attack.
18) Use-after-free (CVE-ID: CVE-2022-50252)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the igb_alloc_q_vector() function in drivers/net/ethernet/intel/igb/igb_main.c. A local user can escalate privileges on the system.
19) Input validation error (CVE-ID: CVE-2022-50255)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the trace_string() and trace_event_raw_event_synth() functions in kernel/trace/trace_events_synth.c. A local user can perform a denial of service (DoS) attack.
20) Memory leak (CVE-ID: CVE-2022-50257)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the gntdev_map_grant_pages() and __unmap_grant_pages_done() functions in drivers/xen/gntdev.c. A local user can perform a denial of service (DoS) attack.
21) Out-of-bounds read (CVE-ID: CVE-2022-50258)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the brcmf_c_preinit_dcmds() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/common.c. A local user can perform a denial of service (DoS) attack.
22) NULL pointer dereference (CVE-ID: CVE-2022-50260)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the msm_drv_shutdown() function in drivers/gpu/drm/msm/msm_drv.c. A local user can perform a denial of service (DoS) attack.
23) Improper Initialization (CVE-ID: CVE-2022-50261)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper initialization within the sti_hdmi_connector_get_modes() function in drivers/gpu/drm/sti/sti_hdmi.c. A local user can perform a denial of service (DoS) attack.
24) Memory leak (CVE-ID: CVE-2022-50264)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the socfpga_gate_init() function in drivers/clk/socfpga/clk-gate.c. A local user can perform a denial of service (DoS) attack.
25) NULL pointer dereference (CVE-ID: CVE-2022-50266)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the kill_kprobe() function in kernel/kprobes.c. A local user can perform a denial of service (DoS) attack.
26) Memory leak (CVE-ID: CVE-2022-50267)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the rtsx_pci_sdmmc_drv_probe() function in drivers/mmc/host/rtsx_pci_sdmmc.c. A local user can perform a denial of service (DoS) attack.
27) Memory leak (CVE-ID: CVE-2022-50268)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the moxart_probe() function in drivers/mmc/host/moxart-mmc.c. A local user can perform a denial of service (DoS) attack.
28) Memory leak (CVE-ID: CVE-2022-50269)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the vkms_create() and vkms_init() functions in drivers/gpu/drm/vkms/vkms_drv.c. A local user can perform a denial of service (DoS) attack.
29) Buffer overflow (CVE-ID: CVE-2022-50271)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the EXPORT_SYMBOL_GPL() function in net/vmw_vsock/virtio_transport_common.c. A local user can perform a denial of service (DoS) attack.
30) NULL pointer dereference (CVE-ID: CVE-2022-50272)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the az6027_i2c_xfer() function in drivers/media/usb/dvb-usb/az6027.c. A local user can perform a denial of service (DoS) attack.
31) Memory leak (CVE-ID: CVE-2022-50275)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the radeon_acpi_vfct_bios() function in drivers/gpu/drm/radeon/radeon_bios.c. A local user can perform a denial of service (DoS) attack.
32) NULL pointer dereference (CVE-ID: CVE-2022-50276)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the power_supply_get_battery_info() function in drivers/power/supply/power_supply_core.c. A local user can perform a denial of service (DoS) attack.
33) NULL pointer dereference (CVE-ID: CVE-2022-50277)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the ext4_get_journal_inode() function in fs/ext4/super.c. A local user can perform a denial of service (DoS) attack.
34) Memory leak (CVE-ID: CVE-2022-50278)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the pnp_alloc_dev() function in drivers/pnp/core.c. A local user can perform a denial of service (DoS) attack.
35) Out-of-bounds read (CVE-ID: CVE-2022-50279)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the _rtl8812ae_get_integer_from_string() and _rtl8812ae_phy_set_txpower_limit() functions in drivers/net/wireless/realtek/rtlwifi/rtl8821ae/phy.c. A local user can perform a denial of service (DoS) attack.
36) Improper error handling (CVE-ID: CVE-2022-50282)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the cdev_device_add() function in fs/char_dev.c. A local user can perform a denial of service (DoS) attack.
37) Memory leak (CVE-ID: CVE-2022-50286)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ext4_clu_mapped() function in fs/ext4/extents.c. A local user can perform a denial of service (DoS) attack.
38) Memory leak (CVE-ID: CVE-2022-50289)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ocfs2_stack_glue_init() function in fs/ocfs2/stackglue.c. A local user can perform a denial of service (DoS) attack.
39) Memory leak (CVE-ID: CVE-2022-50294)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the lbs_init_adapter() function in drivers/net/wireless/marvell/libertas/main.c. A local user can perform a denial of service (DoS) attack.
40) Resource management error (CVE-ID: CVE-2022-50297)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the send_eject_command() function in drivers/net/wireless/ath/ath9k/hif_usb.c. A local user can perform a denial of service (DoS) attack.
41) Resource management error (CVE-ID: CVE-2022-50298)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the qcom_slim_ngd_ctrl_probe() function in drivers/slimbus/qcom-ngd-ctrl.c. A local user can perform a denial of service (DoS) attack.
42) Resource management error (CVE-ID: CVE-2022-50299)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the dump_zones() function in drivers/md/raid0.c. A local user can perform a denial of service (DoS) attack.
43) Buffer overflow (CVE-ID: CVE-2022-50301)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the is_omap_iommu_detached() function in drivers/iommu/omap-iommu-debug.c. A local user can escalate privileges on the system.
44) NULL pointer dereference (CVE-ID: CVE-2022-50308)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the sc7180_lpass_init() function in sound/soc/qcom/lpass-sc7180.c. A local user can perform a denial of service (DoS) attack.
45) Memory leak (CVE-ID: CVE-2022-50309)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the xvip_graph_dma_init() function in drivers/media/platform/xilinx/xilinx-vipp.c. A local user can perform a denial of service (DoS) attack.
46) Memory leak (CVE-ID: CVE-2022-50312)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the jsm_probe_one() function in drivers/tty/serial/jsm/jsm_driver.c. A local user can perform a denial of service (DoS) attack.
47) NULL pointer dereference (CVE-ID: CVE-2022-50317)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the ge_b850v3_lvds_remove() function in drivers/gpu/drm/bridge/megachips-stdpxxxx-ge-b850v3-fw.c. A local user can perform a denial of service (DoS) attack.
48) Memory leak (CVE-ID: CVE-2022-50318)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the hswep_has_limit_sbox() function in arch/x86/events/intel/uncore_snbep.c. A local user can perform a denial of service (DoS) attack.
49) Use-after-free (CVE-ID: CVE-2022-50320)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the fpdt_process_subtable() function in drivers/acpi/acpi_fpdt.c. A local user can escalate privileges on the system.
50) Memory leak (CVE-ID: CVE-2022-50321)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the brcmf_netdev_start_xmit() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/core.c. A local user can perform a denial of service (DoS) attack.
51) Memory leak (CVE-ID: CVE-2022-50324)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the pxa2xx_flash_probe() function in drivers/mtd/maps/pxa2xx-flash.c. A local user can perform a denial of service (DoS) attack.
52) Use-after-free (CVE-ID: CVE-2022-50328)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the jbd2_fc_wait_bufs() function in fs/jbd2/journal.c. A local user can escalate privileges on the system.
53) Use-after-free (CVE-ID: CVE-2022-50329)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the bfq_exit_icq_bfqq() function in block/bfq-iosched.c. A local user can escalate privileges on the system.
54) Integer overflow (CVE-ID: CVE-2022-50330)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the cpt_ucode_load_fw() function in drivers/crypto/cavium/cpt/cptpf_main.c. A local user can execute arbitrary code.
55) Memory leak (CVE-ID: CVE-2022-50331)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the wwan_hwsim_dev_new() function in drivers/net/wwan/wwan_hwsim.c. A local user can perform a denial of service (DoS) attack.
56) Out-of-bounds read (CVE-ID: CVE-2022-50333)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the dbMount() function in fs/jfs/jfs_dmap.c. A local user can perform a denial of service (DoS) attack.
57) Resource management error (CVE-ID: CVE-2022-50340)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the vimc_init() function in drivers/media/test-drivers/vimc/vimc-core.c. A local user can perform a denial of service (DoS) attack.
58) Memory leak (CVE-ID: CVE-2022-50342)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the do_floppy_init() function in drivers/block/floppy.c. A local user can perform a denial of service (DoS) attack.
59) NULL pointer dereference (CVE-ID: CVE-2022-50344)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the ext4_write_info() function in fs/ext4/super.c. A local user can perform a denial of service (DoS) attack.
60) Resource management error (CVE-ID: CVE-2022-50346)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the ext4_rename() function in fs/ext4/namei.c. A local user can perform a denial of service (DoS) attack.
61) Memory leak (CVE-ID: CVE-2022-50347)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the rtsx_usb_sdmmc_drv_probe() function in drivers/mmc/host/rtsx_usb_sdmmc.c. A local user can perform a denial of service (DoS) attack.
62) Memory leak (CVE-ID: CVE-2022-50348)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __cld_pipe_inprogress_downcall() function in fs/nfsd/nfs4recover.c. A local user can perform a denial of service (DoS) attack.
63) Memory leak (CVE-ID: CVE-2022-50349)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the tifm_7xx1_switch_media() function in drivers/misc/tifm_7xx1.c. A local user can perform a denial of service (DoS) attack.
64) Memory leak (CVE-ID: CVE-2022-50351)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the cifs_create() function in fs/cifs/dir.c. A local user can perform a denial of service (DoS) attack.
65) Memory leak (CVE-ID: CVE-2022-50353)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the wmt_mci_probe() function in drivers/mmc/host/wmt-sdmmc.c. A local user can perform a denial of service (DoS) attack.
66) Memory leak (CVE-ID: CVE-2022-50355)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the device_init_rd0_ring(), device_init_rd1_ring() and device_init_td1_ring() functions in drivers/staging/vt6655/device_main.c. A local user can perform a denial of service (DoS) attack.
67) Improper Initialization (CVE-ID: CVE-2022-50358)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper initialization within the brcmf_pcie_init_ringbuffers() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/pcie.c. A local user can perform a denial of service (DoS) attack.
68) NULL pointer dereference (CVE-ID: CVE-2022-50359)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the queue_setup() and buffer_prepare() functions in drivers/media/pci/cx88/cx88-video.c. A local user can perform a denial of service (DoS) attack.
69) Race condition within a thread (CVE-ID: CVE-2022-50362)
The vulnerability allows a local user to corrupt data.
The vulnerability exists due to a data race within the hisi_dma_start_transfer(), hisi_dma_issue_pending() and hisi_dma_irq() functions in drivers/dma/hisi_dma.c. A local user can corrupt data.
70) NULL pointer dereference (CVE-ID: CVE-2022-50364)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the i2c_mux_reg_probe() function in drivers/i2c/muxes/i2c-mux-reg.c. A local user can perform a denial of service (DoS) attack.
71) Use-after-free (CVE-ID: CVE-2022-50367)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the inode_init_always() function in fs/inode.c. A local user can escalate privileges on the system.
72) Use-after-free (CVE-ID: CVE-2022-50368)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the msm_dsi_modeset_init() function in drivers/gpu/drm/msm/dsi/dsi.c. A local user can escalate privileges on the system.
73) NULL pointer dereference (CVE-ID: CVE-2022-50369)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the vkms_release() function in drivers/gpu/drm/vkms/vkms_drv.c. A local user can perform a denial of service (DoS) attack.
74) NULL pointer dereference (CVE-ID: CVE-2022-50370)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the i2c_dw_irq_handler_master() function in drivers/i2c/busses/i2c-designware-master.c. A local user can perform a denial of service (DoS) attack.
75) Memory leak (CVE-ID: CVE-2022-50372)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the SMB2_sess_auth_rawntlmssp_negotiate() function in fs/cifs/smb2pdu.c. A local user can perform a denial of service (DoS) attack.
76) Improper locking (CVE-ID: CVE-2022-50373)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the dlm_lowcomms_new_msg() and dlm_lowcomms_commit_msg() functions in fs/dlm/lowcomms.c. A local user can perform a denial of service (DoS) attack.
77) NULL pointer dereference (CVE-ID: CVE-2022-50374)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the hci_uart_register_device() and hci_uart_unregister_device() functions in drivers/bluetooth/hci_serdev.c. A local user can perform a denial of service (DoS) attack.
78) Incorrect calculation (CVE-ID: CVE-2022-50375)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the lpuart_dma_shutdown() function in drivers/tty/serial/fsl_lpuart.c. A local user can perform a denial of service (DoS) attack.
79) Memory leak (CVE-ID: CVE-2022-50376)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the orangefs_debugfs_init(), orangefs_kernel_debug_init(), help_show() and orangefs_client_debug_init() functions in fs/orangefs/orangefs-debugfs.c. A local user can perform a denial of service (DoS) attack.
80) Use-after-free (CVE-ID: CVE-2022-50379)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the btrfs_quota_enable() function in fs/btrfs/qgroup.c. A local user can escalate privileges on the system.
81) NULL pointer dereference (CVE-ID: CVE-2022-50381)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the md_end_flush() and super_written() functions in drivers/md/md.c. A local user can perform a denial of service (DoS) attack.
82) Input validation error (CVE-ID: CVE-2022-50385)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the nfs_d_automount() function in fs/nfs/namespace.c. A local user can perform a denial of service (DoS) attack.
83) Use-after-free (CVE-ID: CVE-2022-50386)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the l2cap_connect_create_rsp() function in net/bluetooth/l2cap_core.c. A local user can escalate privileges on the system.
84) NULL pointer dereference (CVE-ID: CVE-2022-50388)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the drivers/nvme/host/nvme.h. A local user can perform a denial of service (DoS) attack.
85) Memory leak (CVE-ID: CVE-2022-50389)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the crb_acpi_add() function in drivers/char/tpm/tpm_crb.c. A local user can perform a denial of service (DoS) attack.
86) Memory leak (CVE-ID: CVE-2022-50391)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the SYSCALL_DEFINE4() function in mm/mempolicy.c. A local user can perform a denial of service (DoS) attack.
87) Memory leak (CVE-ID: CVE-2022-50392)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mt8183_mt6358_ts3a227_max98357_dev_probe() function in sound/soc/mediatek/mt8183/mt8183-mt6358-ts3a227-max98357.c. A local user can perform a denial of service (DoS) attack.
88) Out-of-bounds read (CVE-ID: CVE-2022-50394)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the ismt_access() function in drivers/i2c/busses/i2c-ismt.c. A local user can perform a denial of service (DoS) attack.
89) Memory leak (CVE-ID: CVE-2022-50395)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the integrity_init_keyring() function in security/integrity/digsig.c. A local user can perform a denial of service (DoS) attack.
90) Integer overflow (CVE-ID: CVE-2022-50399)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the sh_css_set_black_frame() function in drivers/staging/media/atomisp/pci/sh_css_params.c. A local user can execute arbitrary code.
91) Use-after-free (CVE-ID: CVE-2022-50401)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the setup_callback_client() function in fs/nfsd/nfs4callback.c. A local user can escalate privileges on the system.
92) NULL pointer dereference (CVE-ID: CVE-2022-50402)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the md_bitmap_resize() function in drivers/md/md-bitmap.c. A local user can perform a denial of service (DoS) attack.
93) Memory leak (CVE-ID: CVE-2022-50404)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the fbcon_do_set_font() function in drivers/video/fbdev/core/fbcon.c. A local user can perform a denial of service (DoS) attack.
94) Use-after-free (CVE-ID: CVE-2022-50408)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the brcmf_netdev_start_xmit() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/core.c. A local user can escalate privileges on the system.
95) NULL pointer dereference (CVE-ID: CVE-2022-50409)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the sk_stream_wait_memory() function in net/core/stream.c. A local user can perform a denial of service (DoS) attack.
96) Buffer overflow (CVE-ID: CVE-2022-50410)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the nfsd_proc_read() function in fs/nfsd/nfsproc.c. A local user can escalate privileges on the system.
97) Use-after-free (CVE-ID: CVE-2022-50411)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the acpi_ds_call_control_method() function in drivers/acpi/acpica/dsmethod.c. A local user can escalate privileges on the system.
98) Resource management error (CVE-ID: CVE-2022-50414)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the fcoe_init() function in drivers/scsi/fcoe/fcoe.c. A local user can perform a denial of service (DoS) attack.
99) Use-after-free (CVE-ID: CVE-2022-50417)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the drivers/gpu/drm/panfrost/panfrost_gem.h. A local user can escalate privileges on the system.
100) Improper error handling (CVE-ID: CVE-2022-50419)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the hci_conn_add_sysfs() function in net/bluetooth/hci_sysfs.c. A local user can perform a denial of service (DoS) attack.
101) Use-after-free (CVE-ID: CVE-2022-50422)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the smp_execute_task_sg() function in drivers/scsi/libsas/sas_expander.c. A local user can escalate privileges on the system.
102) Improper resource shutdown or release (CVE-ID: CVE-2022-50423)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to failure to properly release resources within the acpi_ut_copy_ipackage_to_ipackage() function in drivers/acpi/acpica/utcopy.c. A local user can perform a denial of service (DoS) attack.
103) Memory leak (CVE-ID: CVE-2022-50425)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __copy_xstate_to_uabi_buf() function in arch/x86/kernel/fpu/xstate.c. A local user can perform a denial of service (DoS) attack.
104) Memory leak (CVE-ID: CVE-2022-50427)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the snd_ac97_dev_register() function in sound/pci/ac97/ac97_codec.c. A local user can perform a denial of service (DoS) attack.
105) Memory leak (CVE-ID: CVE-2022-50428)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ext4_fc_reserve_space(), ext4_fc_write_tail(), ext4_fc_replay_scan() and ext4_fc_replay() functions in fs/ext4/fast_commit.c. A local user can perform a denial of service (DoS) attack.
106) Incorrect calculation (CVE-ID: CVE-2022-50429)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the function in drivers/memory/of_memory.c. A local user can perform a denial of service (DoS) attack.
107) Improper locking (CVE-ID: CVE-2022-50430)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the vub300_enable_sdio_irq() function in drivers/mmc/host/vub300.c. A local user can perform a denial of service (DoS) attack.
108) Incorrect calculation (CVE-ID: CVE-2022-50431)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the i2sbus_add_dev() function in sound/aoa/soundbus/i2sbus/core.c. A local user can perform a denial of service (DoS) attack.
109) Use-after-free (CVE-ID: CVE-2022-50432)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the kernfs_remove_by_name_ns() function in fs/kernfs/dir.c. A local user can escalate privileges on the system.
110) Memory leak (CVE-ID: CVE-2022-50434)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the blk_mq_register_hctx() function in block/blk-mq-sysfs.c. A local user can perform a denial of service (DoS) attack.
111) Race condition (CVE-ID: CVE-2022-50435)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a race condition within the ext4_seek_data() function in fs/ext4/file.c. A local user can perform a denial of service (DoS) attack.
112) Improper locking (CVE-ID: CVE-2022-50436)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the ext4_rmdir(), __ext4_unlink() and ext4_unlink() functions in fs/ext4/namei.c. A local user can perform a denial of service (DoS) attack.
113) Incorrect calculation (CVE-ID: CVE-2022-50437)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the msm_hdmi_modeset_init() function in drivers/gpu/drm/msm/hdmi/hdmi.c. A local user can perform a denial of service (DoS) attack.
114) Resource management error (CVE-ID: CVE-2022-50439)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the mt8173_afe_pcm_dev_probe() function in sound/soc/mediatek/mt8173/mt8173-afe-pcm.c. A local user can perform a denial of service (DoS) attack.
115) Input validation error (CVE-ID: CVE-2022-50440)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the vmw_kms_cursor_snoop() function in drivers/gpu/drm/vmwgfx/vmwgfx_kms.c. A local user can perform a denial of service (DoS) attack.
116) Incorrect calculation (CVE-ID: CVE-2022-50443)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the rk3288_lvds_poweron() and px30_lvds_poweron() functions in drivers/gpu/drm/rockchip/rockchip_lvds.c. A local user can perform a denial of service (DoS) attack.
117) Incorrect calculation (CVE-ID: CVE-2022-50444)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the tegra20_clock_init() function in drivers/clk/tegra/clk-tegra20.c. A local user can perform a denial of service (DoS) attack.
118) Buffer overflow (CVE-ID: CVE-2022-50449)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the _samsung_clk_register_pll() function in drivers/clk/samsung/clk-pll.c. A local user can perform a denial of service (DoS) attack.
119) Race condition (CVE-ID: CVE-2022-50453)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a race condition within the linehandle_ioctl(), linereq_ioctl(), linereq_poll(), linereq_read(), lineevent_poll(), lineevent_read(), lineevent_ioctl(), lineinfo_watch_poll() and lineinfo_watch_read() functions in drivers/gpio/gpiolib-cdev.c. A local user can perform a denial of service (DoS) attack.
120) Use-after-free (CVE-ID: CVE-2022-50454)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the nouveau_gem_prime_import_sg_table() function in drivers/gpu/drm/nouveau/nouveau_prime.c. A local user can escalate privileges on the system.
121) Incorrect calculation (CVE-ID: CVE-2022-50456)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the add_all_parents() function in fs/btrfs/backref.c. A local user can perform a denial of service (DoS) attack.
122) Incorrect calculation (CVE-ID: CVE-2022-50458)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the tegra210_clock_init() function in drivers/clk/tegra/clk-tegra210.c. A local user can perform a denial of service (DoS) attack.
123) Incorrect calculation (CVE-ID: CVE-2022-50459)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the drivers/scsi/iscsi_tcp.h. A local user can perform a denial of service (DoS) attack.
124) Memory leak (CVE-ID: CVE-2022-50460)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the cifs_flock() function in fs/cifs/file.c. A local user can perform a denial of service (DoS) attack.
125) Memory leak (CVE-ID: CVE-2022-50465)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ext4_fc_reserve_space() and ext4_fc_write_tail() functions in fs/ext4/fast_commit.c. A local user can perform a denial of service (DoS) attack.
126) Buffer overflow (CVE-ID: CVE-2022-50466)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the load_elf_binary() function in fs/binfmt_elf.c. A local user can perform a denial of service (DoS) attack.
127) NULL pointer dereference (CVE-ID: CVE-2022-50467)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the lpfc_cmpl_ct_cmd_gft_id() function in drivers/scsi/lpfc/lpfc_ct.c. A local user can perform a denial of service (DoS) attack.
128) Improper locking (CVE-ID: CVE-2022-50468)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the cros_usbpd_notify_init() function in drivers/platform/chrome/cros_usbpd_notify.c. A local user can perform a denial of service (DoS) attack.
129) Buffer overflow (CVE-ID: CVE-2022-50469)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the rtw_reset_drv_sw() and rtw_init_drv_sw() functions in drivers/staging/rtl8723bs/os_dep/os_intfs.c. A local user can perform a denial of service (DoS) attack.
130) Out-of-bounds read (CVE-ID: CVE-2023-1380)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the Broadcom Full MAC Wi-Fi driver (brcmfmac.ko). A local user can trigger an out-of-bounds read error and read contents of kernel memory on the system.
131) NULL pointer dereference (CVE-ID: CVE-2023-28328)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. A local user can pass specially crafted data to the application and perform a denial of service (DoS) attack.
132) Use-after-free (CVE-ID: CVE-2023-31248)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error in nft_chain_lookup_byid() function, which failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace. A local user ca trigger a use-after-free error and execute arbitrary code with elevated privileges.
133) NULL pointer dereference (CVE-ID: CVE-2023-3772)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the xfrm_update_ae_params() function in the IP framework for transforming packets (XFRM subsystem). A local user with CAP_NET_ADMIN privileges can perform a denial of service (DoS) attack.
134) Out-of-bounds read (CVE-ID: CVE-2023-39197)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the Netfilter Connection Tracking (conntrack) in the Linux kernel in the nf_conntrack_dccp_packet() function in net/netfilter/nf_conntrack_proto_dccp.c. A remote attacker can send specially crafted DCCP packets to the system, trigger an out-of-bounds read error and read contents of memory on the system.
135) Out-of-bounds write (CVE-ID: CVE-2023-42753)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error in the netfilter subsystem in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.
136) Improper locking (CVE-ID: CVE-2023-52923)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the nft_rbtree_cmp(), __nft_rbtree_lookup(), nft_rbtree_get(), nft_rbtree_gc_elem(), nft_rbtree_activate(), nft_rbtree_flush() and nft_rbtree_gc() functions in net/netfilter/nft_set_rbtree.c, within the pipapo_drop(), pipapo_gc() and nft_pipapo_activate() functions in net/netfilter/nft_set_pipapo.c, within the nft_rhash_cmp(), nft_rhash_activate(), nft_rhash_flush(), nft_rhash_deactivate(), nft_rhash_gc() and nft_rhash_destroy() functions in net/netfilter/nft_set_hash.c. A local user can perform a denial of service (DoS) attack.
137) NULL pointer dereference (CVE-ID: CVE-2023-53147)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the xfrm_update_ae_params() function in net/xfrm/xfrm_user.c. A local user can perform a denial of service (DoS) attack.
138) Improper locking (CVE-ID: CVE-2023-53149)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the free_ext_block(), ext4_ext_migrate() and ext4_ind_migrate() functions in fs/ext4/migrate.c. A local user can perform a denial of service (DoS) attack.
139) NULL pointer dereference (CVE-ID: CVE-2023-53150)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the qla24xx_bsg_request() function in drivers/scsi/qla2xxx/qla_bsg.c. A local user can perform a denial of service (DoS) attack.
140) Memory leak (CVE-ID: CVE-2023-53151)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the flush_pending_writes() and raid10_unplug() functions in drivers/md/raid10.c. A local user can perform a denial of service (DoS) attack.
141) Use-after-free (CVE-ID: CVE-2023-53153)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the cfg80211_conn_work(), cfg80211_get_conn_bss(), cfg80211_sme_connect() and cfg80211_connect() functions in net/wireless/sme.c. A local user can escalate privileges on the system.
142) Use of uninitialized resource (CVE-ID: CVE-2023-53165)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to use of uninitialized resource within the udf_name_from_CS0() function in fs/udf/unicode.c. A local user can perform a denial of service (DoS) attack.
143) NULL pointer dereference (CVE-ID: CVE-2023-53167)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the function in kernel/trace/trace.c. A local user can perform a denial of service (DoS) attack.
144) Improper locking (CVE-ID: CVE-2023-53171)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the vfio_lock_acct(), vfio_pin_page_external(), vfio_remove_dma(), vfio_dma_do_map() and vfio_iommu_type1_dma_rw_chunk() functions in drivers/vfio/vfio_iommu_type1.c. A local user can perform a denial of service (DoS) attack.
145) Memory leak (CVE-ID: CVE-2023-53174)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the raid_component_add() function in drivers/scsi/raid_class.c. A local user can perform a denial of service (DoS) attack.
146) Improper error handling (CVE-ID: CVE-2023-53176)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the serial8250_unregister_port() function in drivers/tty/serial/8250/8250_core.c. A local user can perform a denial of service (DoS) attack.
147) Use-after-free (CVE-ID: CVE-2023-53178)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the zswap_writeback_entry() function in mm/zswap.c. A local user can escalate privileges on the system.
148) Out-of-bounds read (CVE-ID: CVE-2023-53179)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the MODULE_ALIAS() function in net/netfilter/ipset/ip_set_hash_netportnet.c. A local user can perform a denial of service (DoS) attack.
149) NULL pointer dereference (CVE-ID: CVE-2023-53182)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the acpi_ds_init_aml_walk() function in drivers/acpi/acpica/dswstate.c. A local user can perform a denial of service (DoS) attack.
150) Input validation error (CVE-ID: CVE-2023-53185)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the htc_process_conn_rsp() function in drivers/net/wireless/ath/ath9k/htc_hst.c. A local user can perform a denial of service (DoS) attack.
151) Memory leak (CVE-ID: CVE-2023-53196)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the dwc3_qcom_probe() function in drivers/usb/dwc3/dwc3-qcom.c. A local user can perform a denial of service (DoS) attack.
152) Memory leak (CVE-ID: CVE-2023-53197)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the release_uhci() and uhci_start() functions in drivers/usb/host/uhci-hcd.c. A local user can perform a denial of service (DoS) attack.
153) Memory leak (CVE-ID: CVE-2023-53199)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ath9k_hif_usb_rx_stream() function in drivers/net/wireless/ath/ath9k/hif_usb.c. A local user can perform a denial of service (DoS) attack.
154) Integer overflow (CVE-ID: CVE-2023-53201)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the __send_message() and bnxt_qplib_alloc_rcfw_channel() functions in drivers/infiniband/hw/bnxt_re/qplib_rcfw.c. A local user can execute arbitrary code.
155) Out-of-bounds read (CVE-ID: CVE-2023-53205)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the diag9c_forwarding_overrun() and __diag_time_slice_end_directed() functions in arch/s390/kvm/diag.c. A local user can perform a denial of service (DoS) attack.
156) Out-of-bounds read (CVE-ID: CVE-2023-53213)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the brcmf_get_assoc_ies() function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c. A local user can perform a denial of service (DoS) attack.
157) Improper locking (CVE-ID: CVE-2023-53216)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the efi_handle_corrupted_x18() function in arch/arm64/kernel/efi.c. A local user can perform a denial of service (DoS) attack.
158) Use-after-free (CVE-ID: CVE-2023-53219)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the netup_unidvb_dma_fini() function in drivers/media/pci/netup_unidvb/netup_unidvb_core.c. A local user can escalate privileges on the system.
159) Out-of-bounds read (CVE-ID: CVE-2023-53222)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the fs/jfs/jfs_filsys.h. A local user can perform a denial of service (DoS) attack.
160) NULL pointer dereference (CVE-ID: CVE-2023-53223)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the msm_dsi_host_init() function in drivers/gpu/drm/msm/dsi/dsi_host.c. A local user can perform a denial of service (DoS) attack.
161) Out-of-bounds read (CVE-ID: CVE-2023-53226)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the mwifiex_process_mgmt_packet() function in drivers/net/wireless/marvell/mwifiex/util.c. A local user can perform a denial of service (DoS) attack.
162) Use of uninitialized resource (CVE-ID: CVE-2023-53229)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to use of uninitialized resource within the __sta_info_destroy_part1() function in net/mac80211/sta_info.c. A local user can perform a denial of service (DoS) attack.
163) Memory leak (CVE-ID: CVE-2023-53230)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the cifs_smb3_do_mount() function in fs/smb/client/cifsfs.c. A local user can perform a denial of service (DoS) attack.
164) Memory leak (CVE-ID: CVE-2023-53234)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the watchdog_cdev_register() function in drivers/watchdog/watchdog_dev.c. A local user can perform a denial of service (DoS) attack.
165) Out-of-bounds read (CVE-ID: CVE-2023-53238)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the hisi_inno_phy_probe() function in drivers/phy/hisilicon/phy-hisi-inno-usb2.c. A local user can perform a denial of service (DoS) attack.
166) NULL pointer dereference (CVE-ID: CVE-2023-53239)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the mdp5_crtc_reset() function in drivers/gpu/drm/msm/disp/mdp5/mdp5_crtc.c. A local user can perform a denial of service (DoS) attack.
167) Memory leak (CVE-ID: CVE-2023-53241)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nfsd4_encode_operation() function in fs/nfsd/nfs4xdr.c. A local user can perform a denial of service (DoS) attack.
168) Resource management error (CVE-ID: CVE-2023-53242)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the hi3660_thermal_probe() function in drivers/thermal/hisi_thermal.c. A local user can perform a denial of service (DoS) attack.
169) NULL pointer dereference (CVE-ID: CVE-2023-53244)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the tw68_buf_queue(), tw68_buf_prepare() and tw68_buf_finish() functions in drivers/media/pci/tw68/tw68-video.c. A local user can perform a denial of service (DoS) attack.
170) NULL pointer dereference (CVE-ID: CVE-2023-53245)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the storvsc_host_reset_handler() function in drivers/scsi/storvsc_drv.c. A local user can perform a denial of service (DoS) attack.
171) NULL pointer dereference (CVE-ID: CVE-2023-53246)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the fs/cifs/cifsfs.h. A local user can perform a denial of service (DoS) attack.
172) Memory leak (CVE-ID: CVE-2023-53249)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the imx8mn_clocks_probe() function in drivers/clk/imx/clk-imx8mn.c. A local user can perform a denial of service (DoS) attack.
173) NULL pointer dereference (CVE-ID: CVE-2023-53250)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the dmi_sysfs_register_handle() function in drivers/firmware/dmi-sysfs.c. A local user can perform a denial of service (DoS) attack.
174) NULL pointer dereference (CVE-ID: CVE-2023-53251)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the iwl_pcie_irq_rx_msix_handler() function in drivers/net/wireless/intel/iwlwifi/pcie/rx.c. A local user can perform a denial of service (DoS) attack.
175) Memory leak (CVE-ID: CVE-2023-53255)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the svc_create_memory_pool() function in drivers/firmware/stratix10-svc.c. A local user can perform a denial of service (DoS) attack.
176) Improper error handling (CVE-ID: CVE-2023-53259)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the vmci_host_setup_notify() function in drivers/misc/vmw_vmci/vmci_host.c. A local user can perform a denial of service (DoS) attack.
177) Out-of-bounds write (CVE-ID: CVE-2023-53265)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to an out-of-bounds write within the io_init() function in drivers/mtd/ubi/build.c. A local user can execute arbitrary code.
178) Information disclosure (CVE-ID: CVE-2023-53268)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to information disclosure within the fsl_mqs_probe() function in sound/soc/fsl/fsl_mqs.c. A local user can gain access to sensitive information.
179) Resource management error (CVE-ID: CVE-2023-53270)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the ext4_da_write_end() function in fs/ext4/inode.c. A local user can perform a denial of service (DoS) attack.
180) Integer overflow (CVE-ID: CVE-2023-53272)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the ena_com_comp_status_to_errno() function in drivers/net/ethernet/amazon/ena/ena_com.c. A local user can execute arbitrary code.
181) Resource management error (CVE-ID: CVE-2023-53273)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the vmbus_disconnect() function in drivers/hv/connection.c. A local user can perform a denial of service (DoS) attack.
182) Race condition within a thread (CVE-ID: CVE-2023-53275)
The vulnerability allows a local user to corrupt data.
The vulnerability exists due to a data race within the EXPORT_SYMBOL_GPL() function in sound/hda/hdac_regmap.c. A local user can corrupt data.
183) Buffer overflow (CVE-ID: CVE-2023-53276)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the do_tmpfile() function in fs/ubifs/dir.c. A local user can perform a denial of service (DoS) attack.
184) Input validation error (CVE-ID: CVE-2023-53277)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the DEVICE_ATTR(), il3945_setup_deferred_work() and il3945_pci_probe() functions in drivers/net/wireless/intel/iwlegacy/3945-mac.c. A local user can perform a denial of service (DoS) attack.
185) Improper Initialization (CVE-ID: CVE-2023-53280)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper initialization within the qla_nvme_ls_req() and qla_nvme_post_cmd() functions in drivers/scsi/qla2xxx/qla_nvme.c. A local user can perform a denial of service (DoS) attack.
186) Resource management error (CVE-ID: CVE-2023-53281)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the _rtw_join_timeout_handler() function in drivers/staging/rtl8723bs/core/rtw_mlme.c. A local user can perform a denial of service (DoS) attack.
187) Resource management error (CVE-ID: CVE-2023-53282)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the lpfc_wr_object() function in drivers/scsi/lpfc/lpfc_sli.c. A local user can perform a denial of service (DoS) attack.
188) Resource management error (CVE-ID: CVE-2023-53286)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the mlx5_core_destroy_qp(), mlx5_core_xrcd_dealloc() and mlx5_core_destroy_rq_tracked() functions in drivers/infiniband/hw/mlx5/qpc.c. A local user can perform a denial of service (DoS) attack.
189) Information disclosure (CVE-ID: CVE-2023-53288)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to information disclosure within the drm_client_modeset_probe() function in drivers/gpu/drm/drm_client_modeset.c. A local user can gain access to sensitive information.
190) Input validation error (CVE-ID: CVE-2023-53295)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the udf_file_write_iter() function in fs/udf/file.c. A local user can perform a denial of service (DoS) attack.
191) Input validation error (CVE-ID: CVE-2023-53297)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the l2cap_disconnect_rsp() function in net/bluetooth/l2cap_core.c. A local user can perform a denial of service (DoS) attack.
192) Information disclosure (CVE-ID: CVE-2023-53298)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to information disclosure within the nfc_se_io() function in net/nfc/netlink.c. A local user can gain access to sensitive information.
193) Information disclosure (CVE-ID: CVE-2023-53299)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to information disclosure within the recovery_request_write() function in drivers/md/raid10.c. A local user can gain access to sensitive information.
194) Input validation error (CVE-ID: CVE-2023-53302)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the il4965_bg_txpower_work(), il4965_setup_deferred_work() and il4965_pci_probe() functions in drivers/net/wireless/intel/iwlegacy/4965-mac.c. A local user can perform a denial of service (DoS) attack.
195) Memory leak (CVE-ID: CVE-2023-53304)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nft_rbtree_get() and __nft_rbtree_insert() functions in net/netfilter/nft_set_rbtree.c. A local user can perform a denial of service (DoS) attack.
196) Use-after-free (CVE-ID: CVE-2023-53305)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the l2cap_le_command_rej() function in net/bluetooth/l2cap_core.c. A local user can escalate privileges on the system.
197) Use-after-free (CVE-ID: CVE-2023-53307)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the rbd_dev_release(), __rbd_dev_create(), rbd_dev_create() and rbd_dev_probe_parent() functions in drivers/block/rbd.c. A local user can escalate privileges on the system.
198) Use of uninitialized resource (CVE-ID: CVE-2023-53309)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to use of uninitialized resource within the radeon_cs_parser_init() function in drivers/gpu/drm/radeon/radeon_cs.c. A local user can perform a denial of service (DoS) attack.
199) Use-after-free (CVE-ID: CVE-2023-53311)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the fs/nilfs2/the_nilfs.h. A local user can escalate privileges on the system.
200) Buffer overflow (CVE-ID: CVE-2023-53313)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the max_corrected_read_errors_store() function in drivers/md/md.c. A local user can perform a denial of service (DoS) attack.
201) Memory leak (CVE-ID: CVE-2023-53314)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ep93xxfb_probe() function in drivers/video/fbdev/ep93xx-fb.c. A local user can perform a denial of service (DoS) attack.
202) Input validation error (CVE-ID: CVE-2023-53315)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the ath11k_dp_rxbufs_replenish() and ath11k_dp_process_rx() functions in drivers/net/wireless/ath/ath11k/dp_rx.c. A local user can perform a denial of service (DoS) attack.
203) Use-after-free (CVE-ID: CVE-2023-53316)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the dp_display_remove() function in drivers/gpu/drm/msm/dp/dp_display.c. A local user can escalate privileges on the system.
204) Resource management error (CVE-ID: CVE-2023-53317)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the ext4_get_group_desc() and ext4_validate_block_bitmap() functions in fs/ext4/balloc.c. A local user can perform a denial of service (DoS) attack.
205) Input validation error (CVE-ID: CVE-2023-53321)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the hwsim_cloned_frame_received_nl() function in drivers/net/wireless/mac80211_hwsim.c. A local user can perform a denial of service (DoS) attack.
206) Use-after-free (CVE-ID: CVE-2023-53322)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the qla2x00_terminate_rport_io() function in drivers/scsi/qla2xxx/qla_attr.c. A local user can escalate privileges on the system.
207) Memory leak (CVE-ID: CVE-2023-53324)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mdp5_plane_destroy_state() function in drivers/gpu/drm/msm/disp/mdp5/mdp5_plane.c. A local user can perform a denial of service (DoS) attack.
208) NULL pointer dereference (CVE-ID: CVE-2023-53326)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the gpr_set() function in arch/powerpc/kernel/ptrace/ptrace-view.c. A local user can perform a denial of service (DoS) attack.
209) Memory leak (CVE-ID: CVE-2023-53330)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the cfctrl_linkup_request() function in net/caif/cfctrl.c. A local user can perform a denial of service (DoS) attack.
210) Input validation error (CVE-ID: CVE-2023-53331)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the persistent_ram_post_init() function in fs/pstore/ram_core.c. A local user can perform a denial of service (DoS) attack.
211) Out-of-bounds read (CVE-ID: CVE-2023-53333)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the dccp_error() function in net/netfilter/nf_conntrack_proto_dccp.c. A local user can perform a denial of service (DoS) attack.
212) Memory leak (CVE-ID: CVE-2023-53334)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the dbg_create_files() function in drivers/usb/chipidea/debug.c. A local user can perform a denial of service (DoS) attack.
213) NULL pointer dereference (CVE-ID: CVE-2023-53335)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the pass_establish() function in drivers/infiniband/hw/cxgb4/cm.c. A local user can perform a denial of service (DoS) attack.
214) Buffer overflow (CVE-ID: CVE-2023-53337)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the nilfs_segctor_do_construct() and nilfs_segctor_write_out() functions in fs/nilfs2/segment.c. A local user can perform a denial of service (DoS) attack.
215) Use of uninitialized resource (CVE-ID: CVE-2023-53344)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to use of uninitialized resource within the bcm_tx_setup() function in net/can/bcm.c. A local user can perform a denial of service (DoS) attack.
216) Memory leak (CVE-ID: CVE-2023-53349)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ov2740_init_controls() function in drivers/media/i2c/ov2740.c. A local user can perform a denial of service (DoS) attack.
217) NULL pointer dereference (CVE-ID: CVE-2023-53352)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the ttm_bo_evict_swapout_allowable() function in drivers/gpu/drm/ttm/ttm_bo.c. A local user can perform a denial of service (DoS) attack.
218) NULL pointer dereference (CVE-ID: CVE-2023-53356)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the EXPORT_SYMBOL_GPL() function in drivers/usb/gadget/function/u_serial.c. A local user can perform a denial of service (DoS) attack.
219) Memory leak (CVE-ID: CVE-2023-53359)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the usb_debugfs_init() function in drivers/usb/core/usb.c. A local user can perform a denial of service (DoS) attack.
220) Improper error handling (CVE-ID: CVE-2023-53368)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the tracing_snapshot_open() and tracing_snapshot_write() functions in kernel/trace/trace.c. A local user can perform a denial of service (DoS) attack.
221) Use-after-free (CVE-ID: CVE-2023-53373)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the seqiv_aead_encrypt_complete2() function in crypto/seqiv.c. A local user can escalate privileges on the system.
222) Memory leak (CVE-ID: CVE-2023-53375)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __remove_instance() function in kernel/trace/trace.c. A local user can perform a denial of service (DoS) attack.
223) Use-after-free (CVE-ID: CVE-2023-53377)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the smb2_compound_op() function in fs/smb/client/smb2inode.c. A local user can escalate privileges on the system.
224) Memory leak (CVE-ID: CVE-2023-53379)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the tahvo_usb_probe() function in drivers/usb/phy/phy-tahvo.c. A local user can perform a denial of service (DoS) attack.
225) NULL pointer dereference (CVE-ID: CVE-2023-53380)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the raid10_sync_request() function in drivers/md/raid10.c. A local user can perform a denial of service (DoS) attack.
226) Memory leak (CVE-ID: CVE-2023-53381)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nfsd4_copy() function in fs/nfsd/nfs4proc.c. A local user can perform a denial of service (DoS) attack.
227) NULL pointer dereference (CVE-ID: CVE-2023-53384)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the mwifiex_handle_uap_rx_forward() function in drivers/net/wireless/marvell/mwifiex/uap_txrx.c. A local user can perform a denial of service (DoS) attack.
228) Use-after-free (CVE-ID: CVE-2023-53386)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the hci_uuids_clear() function in net/bluetooth/hci_core.c. A local user can escalate privileges on the system.
229) Input validation error (CVE-ID: CVE-2023-53388)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the mtk_drm_bind() function in drivers/gpu/drm/mediatek/mtk_drm_drv.c. A local user can perform a denial of service (DoS) attack.
230) Memory leak (CVE-ID: CVE-2023-53390)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the late_initcall() function in drivers/base/dd.c. A local user can perform a denial of service (DoS) attack.
231) Improper locking (CVE-ID: CVE-2023-53393)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the do_get_hw_stats() function in drivers/infiniband/hw/mlx5/counters.c. A local user can perform a denial of service (DoS) attack.
232) Out-of-bounds read (CVE-ID: CVE-2023-53395)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the function in drivers/acpi/acpica/psopcode.c. A local user can perform a denial of service (DoS) attack.
233) Memory leak (CVE-ID: CVE-2023-53396)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the create_whiteout() function in fs/ubifs/dir.c. A local user can perform a denial of service (DoS) attack.
234) Buffer overflow (CVE-ID: CVE-2023-53400)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the path_has_mixer() and get_line_out_pfx() functions in sound/pci/hda/hda_generic.c. A local user can perform a denial of service (DoS) attack.
235) Memory leak (CVE-ID: CVE-2023-53404)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the remove_debug_files() function in drivers/usb/host/fotg210-hcd.c. A local user can perform a denial of service (DoS) attack.
236) Memory leak (CVE-ID: CVE-2023-53405)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the gr_dfs_create() function in drivers/usb/gadget/udc/gr_udc.c. A local user can perform a denial of service (DoS) attack.
237) Memory leak (CVE-ID: CVE-2023-53406)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the DEFINE_SHOW_ATTRIBUTE() function in drivers/usb/gadget/udc/pxa25x_udc.c. A local user can perform a denial of service (DoS) attack.
238) Memory leak (CVE-ID: CVE-2023-53409)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the component_master_debugfs_add() function in drivers/base/component.c. A local user can perform a denial of service (DoS) attack.
239) Memory leak (CVE-ID: CVE-2023-53413)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the create_debug_file() function in drivers/usb/host/isp116x-hcd.c. A local user can perform a denial of service (DoS) attack.
240) Memory leak (CVE-ID: CVE-2023-53414)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the snic_trc_debugfs_init() function in drivers/scsi/snic/snic_debugfs.c. A local user can perform a denial of service (DoS) attack.
241) Memory leak (CVE-ID: CVE-2023-53415)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the dwc3_gadget_free_endpoints() function in drivers/usb/dwc3/gadget.c. A local user can perform a denial of service (DoS) attack.
242) Memory leak (CVE-ID: CVE-2023-53416)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the create_debug_file() function in drivers/usb/host/isp1362-hcd.c. A local user can perform a denial of service (DoS) attack.
243) Memory leak (CVE-ID: CVE-2023-53422)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the iwl_dbgfs_fw_info_seq_next() function in drivers/net/wireless/intel/iwlwifi/fw/debugfs.c. A local user can perform a denial of service (DoS) attack.
244) Use-after-free (CVE-ID: CVE-2023-53427)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the allocate_mr_list() function in fs/cifs/smbdirect.c. A local user can escalate privileges on the system.
245) Resource management error (CVE-ID: CVE-2023-53431)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the ses_intf_add() function in drivers/scsi/ses.c. A local user can perform a denial of service (DoS) attack.
246) Memory leak (CVE-ID: CVE-2023-53435)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the cas_init_one() function in drivers/net/ethernet/sun/cassini.c. A local user can perform a denial of service (DoS) attack.
247) Memory leak (CVE-ID: CVE-2023-53436)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the snic_tgt_create() function in drivers/scsi/snic/snic_disc.c. A local user can perform a denial of service (DoS) attack.
248) Input validation error (CVE-ID: CVE-2023-53437)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the uvc_mc_create_links() function in drivers/media/usb/uvc/uvc_entity.c. A local user can perform a denial of service (DoS) attack.
249) Improper error handling (CVE-ID: CVE-2023-53438)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the arch/x86/kernel/cpu/mce/internal.h. A local user can perform a denial of service (DoS) attack.
250) Use-after-free (CVE-ID: CVE-2023-53440)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the destroy_nilfs(), load_nilfs() and init_nilfs() functions in fs/nilfs2/the_nilfs.c. A local user can escalate privileges on the system.
251) Memory leak (CVE-ID: CVE-2023-53443)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the arizona_clk32k_enable() function in drivers/mfd/arizona-core.c. A local user can perform a denial of service (DoS) attack.
252) Use-after-free (CVE-ID: CVE-2023-53446)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the pcie_aspm_exit_link_state() function in drivers/pci/pcie/aspm.c. A local user can escalate privileges on the system.
253) Buffer overflow (CVE-ID: CVE-2023-53449)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the dasd_eckd_init() function in drivers/s390/block/dasd_eckd.c. A local user can perform a denial of service (DoS) attack.
254) Input validation error (CVE-ID: CVE-2023-53451)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the qla24xx_build_scsi_type_6_iocbs() function in drivers/scsi/qla2xxx/qla_iocb.c. A local user can perform a denial of service (DoS) attack.
255) Input validation error (CVE-ID: CVE-2023-53452)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the rtw89_pci_probe() function in drivers/net/wireless/realtek/rtw89/pci.c. A local user can perform a denial of service (DoS) attack.
256) Buffer overflow (CVE-ID: CVE-2023-53453)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the radeon_atombios_fini() function in drivers/gpu/drm/radeon/radeon_device.c. A local user can perform a denial of service (DoS) attack.
257) Buffer overflow (CVE-ID: CVE-2023-53454)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the mt_post_parse() and mt_input_configured() functions in drivers/hid/hid-multitouch.c. A local user can perform a denial of service (DoS) attack.
258) Input validation error (CVE-ID: CVE-2023-53457)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the jfs_link() function in fs/jfs/namei.c. A local user can perform a denial of service (DoS) attack.
259) Buffer overflow (CVE-ID: CVE-2023-53458)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the queue_setup() and buffer_prepare() functions in drivers/media/pci/cx23885/cx23885-video.c. A local user can perform a denial of service (DoS) attack.
260) Race condition (CVE-ID: CVE-2023-53463)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a race condition within the __ibmvnic_open() function in drivers/net/ethernet/ibm/ibmvnic.c. A local user can perform a denial of service (DoS) attack.
261) Input validation error (CVE-ID: CVE-2023-53464)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the iscsi_sw_tcp_conn_set_param() function in drivers/scsi/iscsi_tcp.c. A local user can perform a denial of service (DoS) attack.
262) Buffer overflow (CVE-ID: CVE-2023-53465)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the function in drivers/soundwire/qcom.c. A local user can perform a denial of service (DoS) attack.
263) Buffer overflow (CVE-ID: CVE-2023-53468)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the alloc_wbufs() function in fs/ubifs/super.c. A local user can perform a denial of service (DoS) attack.
264) Input validation error (CVE-ID: CVE-2023-53471)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the gfx_v9_0_hw_fini() function in drivers/gpu/drm/amd/amdgpu/gfx_v9_0.c. A local user can perform a denial of service (DoS) attack.
265) Input validation error (CVE-ID: CVE-2023-53472)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the lpc32xx_pwm_config(), lpc32xx_pwm_enable(), lpc32xx_pwm_disable() and lpc32xx_pwm_probe() functions in drivers/pwm/pwm-lpc32xx.c. A local user can perform a denial of service (DoS) attack.
266) Input validation error (CVE-ID: CVE-2023-53473)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the dx_show_leaf(), dx_probe(), htree_dirblock_to_tree(), dx_make_map(), ext4_fname_setup_ci_filename() and make_indexed_dir() functions in fs/ext4/namei.c. A local user can perform a denial of service (DoS) attack.
267) Out-of-bounds write (CVE-ID: CVE-2023-53474)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to an out-of-bounds write within the DEFINE_PER_CPU(), smca_set_misc_banks_map(), smca_get_block_address(), prepare_threshold_block(), amd_threshold_interrupt() and mce_threshold_create_device() functions in arch/x86/kernel/cpu/mce/amd.c. A local user can execute arbitrary code.
268) Buffer overflow (CVE-ID: CVE-2023-53475)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the tegra_xhci_id_work() and tegra_xhci_id_notify() functions in drivers/usb/host/xhci-tegra.c. A local user can perform a denial of service (DoS) attack.
269) Input validation error (CVE-ID: CVE-2023-53476)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the c4iw_fill_res_cm_id_entry() function in drivers/infiniband/hw/cxgb4/restrack.c. A local user can perform a denial of service (DoS) attack.
270) Buffer overflow (CVE-ID: CVE-2023-53485)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the dbAllocDmapLev() function in fs/jfs/jfs_dmap.c. A local user can perform a denial of service (DoS) attack.
271) Buffer overflow (CVE-ID: CVE-2023-53487)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the rtas_flash_init() function in arch/powerpc/kernel/rtas_flash.c. A local user can perform a denial of service (DoS) attack.
272) Incorrect calculation (CVE-ID: CVE-2023-53488)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the free_cntrs() function in drivers/infiniband/hw/hfi1/chip.c. A local user can perform a denial of service (DoS) attack.
273) Input validation error (CVE-ID: CVE-2023-53492)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the nf_tables_updchain(), nft_chain_lookup_byid(), nf_tables_newrule() and nft_verdict_init() functions in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.
274) Input validation error (CVE-ID: CVE-2023-53494)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the xts_encrypt_done() and xts_decrypt_done() functions in crypto/xts.c. A local user can perform a denial of service (DoS) attack.
275) Buffer overflow (CVE-ID: CVE-2023-53496)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the build_socket_tables() function in arch/x86/kernel/apic/x2apic_uv_x.c. A local user can perform a denial of service (DoS) attack.
276) Input validation error (CVE-ID: CVE-2023-53498)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the amdgpu_dm_fini() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c. A local user can perform a denial of service (DoS) attack.
277) Memory leak (CVE-ID: CVE-2023-53499)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the virtnet_poll(), virtnet_open() and virtnet_close() functions in drivers/net/virtio_net.c. A local user can perform a denial of service (DoS) attack.
278) Memory leak (CVE-ID: CVE-2023-53505)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the load_timings_from_dt() and tegra_clk_register_emc() functions in drivers/clk/tegra/clk-tegra124-emc.c. A local user can perform a denial of service (DoS) attack.
279) Input validation error (CVE-ID: CVE-2023-53506)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the udf_merge_extents() function in fs/udf/inode.c. A local user can perform a denial of service (DoS) attack.
280) Input validation error (CVE-ID: CVE-2023-53509)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the qed_find_nvram_image(), qed_nvram_read(), qed_grc_dump_mcp_hw_dump(), qed_mcp_trace_get_meta_info() and qed_mcp_trace_read_meta() functions in drivers/net/ethernet/qlogic/qed/qed_debug.c. A local user can perform a denial of service (DoS) attack.
281) Memory leak (CVE-ID: CVE-2023-53512)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the _base_release_memory_pools() function in drivers/scsi/mpt3sas/mpt3sas_base.c. A local user can perform a denial of service (DoS) attack.
282) Buffer overflow (CVE-ID: CVE-2023-53513)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the nbd_set_size() and nbd_add_socket() functions in drivers/block/nbd.c. A local user can perform a denial of service (DoS) attack.
283) Buffer overflow (CVE-ID: CVE-2023-53515)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the virtio_mmio_release_dev() and virtio_mmio_probe() functions in drivers/virtio/virtio_mmio.c. A local user can perform a denial of service (DoS) attack.
284) Buffer overflow (CVE-ID: CVE-2023-53518)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the devfreq_dev_release() function in drivers/devfreq/devfreq.c. A local user can perform a denial of service (DoS) attack.
285) Input validation error (CVE-ID: CVE-2023-53519)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the include/media/v4l2-mem2mem.h. A local user can perform a denial of service (DoS) attack.
286) Input validation error (CVE-ID: CVE-2023-53521)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the ses_intf_remove_enclosure() function in drivers/scsi/ses.c. A local user can perform a denial of service (DoS) attack.
287) Incorrect calculation (CVE-ID: CVE-2023-53524)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the iwl_write_to_user_buf() function in drivers/net/wireless/intel/iwlwifi/pcie/trans.c. A local user can perform a denial of service (DoS) attack.
288) Input validation error (CVE-ID: CVE-2023-53525)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the cma_family(), cma_set_qkey(), cma_ib_init_qp_attr(), cma_send_sidr_rep(), cma_make_mc_event(), cma_ib_mc_handler(), cma_join_ib_multicast(), cma_iboe_join_multicast() and rdma_join_multicast() functions in drivers/infiniband/core/cma.c. A local user can perform a denial of service (DoS) attack.
289) Buffer overflow (CVE-ID: CVE-2023-53526)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the jbd2_journal_try_remove_checkpoint() function in fs/jbd2/checkpoint.c. A local user can perform a denial of service (DoS) attack.
290) Input validation error (CVE-ID: CVE-2023-53530)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the tcm_qla2xxx_free_cmd() and tcm_qla2xxx_handle_data() functions in drivers/scsi/qla2xxx/tcm_qla2xxx.c. A local user can perform a denial of service (DoS) attack.
291) Race condition (CVE-ID: CVE-2024-26583)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a race condition between async notify and socket close in TLS implementation in net/tls/tls_sw.c. A remote attacker can send specially crafted traffic to the system, trigger a race condition and perform a denial of service (DoS) attack.
292) Error handling (CVE-ID: CVE-2024-26584)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to an error when handling backlogging of crypto requests in net/tls/tls_sw.c. A remote attacker can send specially crafted traffic to the system and perform a denial of service attack.
293) Use-after-free (CVE-ID: CVE-2024-58240)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the tls_do_decryption() function in net/tls/tls_sw.c. A local user can escalate privileges on the system.
294) Resource management error (CVE-ID: CVE-2025-23155)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the stmmac_request_irq_multi_msi() function in drivers/net/ethernet/stmicro/stmmac/stmmac_main.c. A local user can perform a denial of service (DoS) attack.
295) Use-after-free (CVE-ID: CVE-2025-37738)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the ext4_xattr_inode_dec_ref_all() function in fs/ext4/xattr.c. A local user can escalate privileges on the system.
296) Use-after-free (CVE-ID: CVE-2025-37885)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the vmx_pi_update_irte() function in arch/x86/kvm/vmx/posted_intr.c, within the avic_pi_update_irte() function in arch/x86/kvm/svm/avic.c. A local user can escalate privileges on the system.
297) Improper locking (CVE-ID: CVE-2025-37958)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the __split_huge_pmd_locked() and split_huge_pmd_locked() functions in mm/huge_memory.c. A local user can perform a denial of service (DoS) attack.
298) Input validation error (CVE-ID: CVE-2025-38014)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the f2fs_new_node_page() function in fs/f2fs/node.c. A local user can perform a denial of service (DoS) attack.
299) Improper locking (CVE-ID: CVE-2025-38084)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the __split_vma() function in mm/vma.c, within the hugetlb_vma_lock_free(), hugetlb_vm_op_split(), move_hugetlb_state() and hugetlb_unshare_pmds() functions in mm/hugetlb.c. A local user can perform a denial of service (DoS) attack.
300) Buffer overflow (CVE-ID: CVE-2025-38085)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the huge_pmd_unshare() function in mm/hugetlb.c. A local user can perform a denial of service (DoS) attack.
301) Out-of-bounds read (CVE-ID: CVE-2025-38111)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the __mdiobus_read() and __mdiobus_write() functions in drivers/net/phy/mdio_bus.c. A local user can perform a denial of service (DoS) attack.
302) NULL pointer dereference (CVE-ID: CVE-2025-38184)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the tipc_udp_nl_dump_remoteip() function in net/tipc/udp_media.c. A local user can perform a denial of service (DoS) attack.
303) Out-of-bounds read (CVE-ID: CVE-2025-38380)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the amd_i2c_dw_xfer_quirk() function in drivers/i2c/busses/i2c-designware-master.c. A local user can perform a denial of service (DoS) attack.
304) Memory leak (CVE-ID: CVE-2025-38470)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __vlan_device_event() and vlan_device_event() functions in net/8021q/vlan.c. A local user can perform a denial of service (DoS) attack.
305) Use-after-free (CVE-ID: CVE-2025-38476)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the rpl_do_srh_inline() function in net/ipv6/rpl_iptunnel.c. A local user can escalate privileges on the system.
306) Use-after-free (CVE-ID: CVE-2025-38488)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the crypt_message() function in fs/smb/client/smb2ops.c. A local user can escalate privileges on the system.
307) Improper locking (CVE-ID: CVE-2025-38553)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the parse_attr() and netem_change() functions in net/sched/sch_netem.c. A local user can perform a denial of service (DoS) attack.
308) Integer overflow (CVE-ID: CVE-2025-38572)
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the ipv6_gso_segment() function in net/ipv6/ip6_offload.c. A local user can execute arbitrary code.
309) Use-after-free (CVE-ID: CVE-2025-38659)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the signal_our_withdraw() function in fs/gfs2/util.c. A local user can escalate privileges on the system.
310) NULL pointer dereference (CVE-ID: CVE-2025-38664)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the ice_copy_and_init_pkg() function in drivers/net/ethernet/intel/ice/ice_ddp.c. A local user can perform a denial of service (DoS) attack.
311) Resource management error (CVE-ID: CVE-2025-38678)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the nf_tables_updchain() and nft_flowtable_update() functions in net/netfilter/nf_tables_api.c. A local user can perform a denial of service (DoS) attack.
312) Out-of-bounds read (CVE-ID: CVE-2025-38685)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the con2fb_init_display() and fbcon_set_disp() functions in drivers/video/fbdev/core/fbcon.c. A local user can perform a denial of service (DoS) attack.
313) NULL pointer dereference (CVE-ID: CVE-2025-38706)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to NULL pointer dereference within the snd_soc_remove_pcm_runtime() function in sound/soc/soc-core.c. A local user can perform a denial of service (DoS) attack.
314) Out-of-bounds read (CVE-ID: CVE-2025-38713)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the hfsplus_uni2asc() function in fs/hfsplus/unicode.c. A local user can perform a denial of service (DoS) attack.
315) Use-after-free (CVE-ID: CVE-2025-38734)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the smc_listen_work() function in net/smc/af_smc.c. A local user can escalate privileges on the system.
316) Use-after-free (CVE-ID: CVE-2025-39691)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the __end_buffer_read_notouch() function in fs/buffer.c. A local user can escalate privileges on the system.
317) Input validation error (CVE-ID: CVE-2025-39703)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the hsr_handle_frame() function in net/hsr/hsr_slave.c. A local user can perform a denial of service (DoS) attack.
318) Buffer overflow (CVE-ID: CVE-2025-39726)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the ism_cmd() and ism_probe() functions in drivers/s390/net/ism_drv.c. A local user can perform a denial of service (DoS) attack.
319) Input validation error (CVE-ID: CVE-2025-39746)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the ath10k_wmi_cmd_send() function in drivers/net/wireless/ath/ath10k/wmi.c. A local user can perform a denial of service (DoS) attack.
320) Buffer overflow (CVE-ID: CVE-2025-39751)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the add_tuning_control() function in sound/pci/hda/patch_ca0132.c. A local user can escalate privileges on the system.
321) Double free (CVE-ID: CVE-2025-39790)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a double free error within the parse_xfer_event() function in drivers/bus/mhi/host/main.c. A local user can perform a denial of service (DoS) attack.
322) Improper error handling (CVE-ID: CVE-2025-39797)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the xfrm_state_lookup_byspi() and xfrm_alloc_spi() functions in net/xfrm/xfrm_state.c. A local user can perform a denial of service (DoS) attack.
323) Input validation error (CVE-ID: CVE-2025-39823)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the kvm_sched_yield() function in arch/x86/kvm/x86.c. A local user can perform a denial of service (DoS) attack.
324) Resource management error (CVE-ID: CVE-2025-39824)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the asus_probe() function in drivers/hid/hid-asus.c. A local user can perform a denial of service (DoS) attack.
325) Use-after-free (CVE-ID: CVE-2025-39860)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the l2cap_sock_release() function in net/bluetooth/l2cap_sock.c. A local user can escalate privileges on the system.
326) Out-of-bounds read (CVE-ID: CVE-2025-39869)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the edma_setup_from_hw() function in drivers/dma/ti/edma.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.