5.5
CVE-2023-52784 - bonding: stop the device in bond_setup_by_slave()
In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bond_setup_by_slave() Commit 9eed321cde22 ("net: lapbether: only support ethernet devices") has been able to keep syzbot away from net/lapb, until today. In the following splat [1], the issue is that β¦
7.8
CVE-2023-52752 - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() Skip SMB sessions that are being teared down (e.g. @ses->ses_status == SES_EXITING) in cifs_debug_data_proc_show() to avoid use-after-free in @ses. This fixes thβ¦
5.6
CVE-2023-52768 - wifi: wilc1000: use vmm_table as array in wilc struct
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: use vmm_table as array in wilc struct Enabling KASAN and running some iperf tests raises some memory issues with vmm_table: BUG: KASAN: slab-out-of-bounds in wilc_wlan_handle_txq+0x6ac/0xdb4 Write of size 4 at adβ¦
5.5
CVE-2021-47249 - net: rds: fix memory leak in rds_recvmsg
In the Linux kernel, the following vulnerability has been resolved: net: rds: fix memory leak in rds_recvmsg Syzbot reported memory leak in rds. The problem was in unputted refcount in case of error. int rds_recvmsg(struct socket *sock, struct msghdr *msg, size_t size, int msg_flags) { ... iβ¦
7.8
CVE-2021-47242 - mptcp: fix soft lookup in subflow_error_report()
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix soft lookup in subflow_error_report() Maxim reported a soft lookup in subflow_error_report(): watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [swapper/0:0] RIP: 0010:native_queued_spin_lock_slowpath RSP: 0018:fffβ¦
0.0
CVE-2023-52830 - kernel: Bluetooth: Fix double free in hci_conn_cleanup
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
6.2
CVE-2021-47329 - scsi: megaraid_sas: Fix resource leak in case of probe failure
In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix resource leak in case of probe failure The driver doesn't clean up all the allocated resources properly when scsi_add_host(), megasas_start_aen() function fails during the PCI device probe. Clean up all tβ¦
0.0
CVE-2023-52823 - kernel: kernel: kexec: copy user-array safely
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
0.0
CVE-2023-52822 - kernel: drm: vmwgfx_surface.c: copy user-array safely
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
4.4
CVE-2023-52802 - kernel: iio: adc: stm32-adc: harden against NULL pointer deref in stm32_adc_probe()
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.