Debian Security Vulnerabilities (CVEs)

This CVE describes a data corruption vulnerability in the Linux kernel's BPF subsystem when used with kTLS (Kernel TLS). When bpf_msg_pop_data() reduc...

A NULL pointer dereference vulnerability in the Linux kernel's devfreq subsystem could cause kernel panics or system crashes when accessing governor i...

A NULL pointer dereference vulnerability in the Linux kernel's powercap subsystem allows local attackers to crash the kernel when a CPU becomes unavai...

This CVE describes a memory leak vulnerability in the Linux kernel's fbtft framebuffer driver. When the fbtft_framebuffer_alloc() function encounters ...

A use-after-free vulnerability in the Linux kernel's ath11k WiFi driver allows kernel memory corruption when the driver fails to properly clear initia...

This CVE involves a missing NULL pointer check in the iwlwifi driver in the Linux kernel. If alloc_ordered_workqueue() fails and returns NULL, the dri...

A use-after-free vulnerability in the Linux kernel's RTL8187/8187B USB WiFi driver allows a NULL pointer dereference when stopping the device. This ca...

A race condition vulnerability in the Linux kernel's IPv6 routing subsystem could cause an infinite loop in the fib6_info_uses_dev() function when RCU...

A race condition vulnerability in the Linux kernel's IPv6 routing subsystem can cause an infinite loop in the rt6_nlmsg_size() function when reading R...

This CVE involves an uninitialized memory vulnerability in the Linux kernel's F2FS filesystem driver. Attackers could exploit this to cause kernel cra...

A NULL pointer dereference vulnerability in the Linux kernel's AMD Cryptographic Coprocessor (CCP) driver causes a kernel crash when rebinding the CCP...

A vulnerability in the Linux kernel's IPv6 Generic Segmentation Offload (GSO) implementation allows crafted packets with excessive IPv6 extension head...

A kernel memory disclosure vulnerability in the Linux kernel's PPTP implementation allows reading uninitialized data from kernel memory. This affects ...

A use-after-free vulnerability in the Linux kernel's F2FS filesystem can cause kernel panic when evicting inodes. This affects systems using F2FS file...

This CVE describes a use-after-free vulnerability in the Linux kernel's F2FS filesystem driver, specifically in the f2fs_sync_inode_meta() function. A...

A Linux kernel vulnerability in the perf subsystem causes a reference count leak when memory allocation fails during perf_mmap(). This can lead to res...

This CVE addresses a cache coherency vulnerability in the Linux kernel's x86 Secure Encrypted Virtualization (SEV) implementation. It affects systems ...

A race condition vulnerability exists in the Linux kernel's ksmbd (SMB server) component where multiple concurrent session setup requests could cause ...

A null pointer dereference vulnerability in the Linux kernel's ksmbd module could cause kernel crashes or denial of service when clients send multiple...

A Linux kernel vulnerability in the perf subsystem allows reference count leaks when VMA (Virtual Memory Area) splits occur on perf ringbuffer mapping...

A Linux kernel vulnerability in the netem network emulation qdisc allows a denial-of-service condition when duplicating netems exist in the same qdisc...

This CVE describes a use-after-free vulnerability in the Linux kernel's IPv6 multicast implementation. An attacker could potentially exploit this to c...

This CVE addresses a race condition vulnerability in the Linux kernel's MPTCP (Multipath TCP) implementation where subflow failures and subflow creati...

This CVE describes a device reference count leak in the Linux kernel's Appletalk networking module. When updating route entries, the kernel fails to p...

This CVE is a NULL pointer dereference vulnerability in the Linux kernel's NVIDIA Tegra NVDEC driver. It occurs when dma_alloc_coherent fails to alloc...

This CVE describes a memory leak vulnerability in the Linux kernel's ATM CLIP (Classical IP over ATM) subsystem. When specific ioctl commands are exec...

This CVE addresses a buffer overflow vulnerability in the Linux kernel's corsair-cpro hardware monitoring driver. Attackers could exploit this by send...

This vulnerability in the Linux kernel's Tegra XUSB PHY driver causes unbalanced regulator disable operations when transitioning USB roles. It can tri...

This CVE describes a memory corruption vulnerability in the Linux kernel's nbpfaxi DMA engine driver. The flaw allows attackers to corrupt kernel memo...

Two specific Chicony Electronics HP 5MP camera models (USB IDs 04F2:B824 and 04F2:B82C) expose a non-functional HID sensor interface in the Linux kern...

A race condition in the Linux kernel's SMB client can lead to use-after-free of memory structures during oplock break operations when unmounting. This...

This CVE describes an out-of-bounds bit shift vulnerability in the Linux kernel's comedi aio_iiro_16 driver. An attacker with local access can trigger...

A race condition in the Linux kernel's AMD GPU driver (amdkfd) can cause a deadlock when a process exits while memory management operations are in pro...

This CVE describes a potential deadlock vulnerability in the Linux kernel's KASAN (Kernel Address SANitizer) subsystem. When KASAN attempts to report ...

This CVE addresses an A-MSDU spoofing vulnerability in Linux kernel's WiFi mesh network implementation that allows attackers to inject malicious netwo...

A race condition vulnerability in the Linux kernel's AF_RXRPC subsystem can cause a kernel oops (crash) when service sockets are opened and bound but ...

A race condition in the Linux kernel's DRM scheduler can cause job scheduling to stop, leading to system hangs when waiting on DMA fences. This affect...

A vulnerability in the Linux kernel's Qualcomm pinctrl-msm driver allows user-space applications to trigger a kernel BUG() and potentially crash the s...

This vulnerability in the Linux kernel allows an attacker to perform out-of-bounds memory access via BPF programs using cgroup local storage with tail...

The Linux kernel's ksmbd SMB server component allows repeated connections from clients with the same IP address to exhaust maximum connection limits, ...

A use-after-free vulnerability in the Linux kernel's xfrm interface subsystem allows local attackers to cause a kernel panic (denial of service) or po...

This Linux kernel vulnerability allows users without proper administrative privileges in the correct user namespace to clone private mount points, pot...

A vulnerability in the Linux kernel's HID subsystem allows low-level transport drivers to bypass parameter validation in hid_hw_raw_request(). This co...

This vulnerability in the Linux kernel's USB gadget configfs subsystem allows an out-of-bounds read when writing empty strings to specific sysfs attri...

This CVE describes an out-of-bounds bit shift vulnerability in the Linux kernel's comedi das6402 driver. An attacker with local access can trigger a k...

This CVE describes a use-after-free vulnerability in the Linux kernel's SMB client when using hardware crypto accelerators. The vulnerability can caus...

This CVE describes a null pointer dereference vulnerability in the Linux kernel's Bluetooth L2CAP socket implementation. When exploited, it can cause ...

This is a use-after-free vulnerability in the Linux kernel's RPL (Routing Protocol for Low-Power and Lossy Networks) implementation. An attacker could...

A kernel memory initialization vulnerability in Linux Comedi subsystem allows reading uninitialized kernel memory when handling certain device instruc...