CVE-2023-53446
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:48
- Zuletzt bearbeitet 14.01.2026 20:16:05
In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free Struct pcie_link_state->downstream is a pointer to the pci_dev of function 0. Previously we retained that po...
CVE-2023-53431
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:47
- Zuletzt bearbeitet 14.01.2026 20:16:02
In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Handle enclosure with just a primary component gracefully This reverts commit 3fe97ff3d949 ("scsi: ses: Don't attach if enclosure has no components") and introduces prop...
CVE-2023-53433
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:47
- Zuletzt bearbeitet 14.01.2026 20:16:02
In the Linux kernel, the following vulnerability has been resolved: net: add vlan_get_protocol_and_depth() helper Before blamed commit, pskb_may_pull() was used instead of skb_header_pointer() in __vlan_get_protocol() and friends. Few callers depe...
CVE-2023-53435
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:47
- Zuletzt bearbeitet 14.01.2026 20:16:03
In the Linux kernel, the following vulnerability has been resolved: cassini: Fix a memory leak in the error handling path of cas_init_one() cas_saturn_firmware_init() allocates some memory using vmalloc(). This memory is freed in the .remove() func...
CVE-2023-53436
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:47
- Zuletzt bearbeitet 14.01.2026 20:16:03
In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if device_add() fails If device_add() returns error, the name allocated by dev_set_name() needs be freed. As the comment of device_add() says, ...
CVE-2023-53437
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:47
- Zuletzt bearbeitet 14.01.2026 20:16:03
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Handle cameras with invalid descriptors If the source entity does not contain any pads, do not create a link.
CVE-2023-53425
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:46
- Zuletzt bearbeitet 14.01.2026 20:16:01
In the Linux kernel, the following vulnerability has been resolved: media: platform: mediatek: vpu: fix NULL ptr dereference If pdev is NULL, then it is still dereferenced. This fixes this smatch warning: drivers/media/platform/mediatek/vpu/mtk_v...
CVE-2023-53427
- EPSS 0.14%
- Veröffentlicht 18.09.2025 16:15:46
- Zuletzt bearbeitet 14.01.2026 20:16:01
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix warning and UAF when destroy the MR list If the MR allocate failed, the MR recovery work not initialized and list not cleared. Then will be warning and UAF when release t...
CVE-2022-50419
- EPSS 0.16%
- Veröffentlicht 18.09.2025 16:15:45
- Zuletzt bearbeitet 14.01.2026 20:15:55
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times device_add shall not be called multiple times as stated in its documentation: 'Do not call this routine or ...
CVE-2022-50408
- EPSS 0.15%
- Veröffentlicht 18.09.2025 16:15:44
- Zuletzt bearbeitet 14.01.2026 20:15:53
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() > ret = brcmf_proto_tx_queue_data(drvr, ifp->ifidx, skb); may be schedule, and then complete before the line >...