Debian Security Vulnerabilities (CVEs)

This CVE addresses a vulnerability in the Linux kernel's COMEDI_INSNLIST ioctl handling where an excessively large n_insns value could trigger a kerne...

A use-after-free vulnerability in the Linux kernel's TLS implementation allows reading freed memory when processing network packets. This affects syst...

A use-after-free vulnerability in the Linux kernel's TIPC (Transparent Inter-Process Communication) subsystem allows local attackers to cause a kernel...

This CVE addresses a Linux kernel vulnerability where uprobes (user-space probes) could be misused to place breakpoints in the middle of instructions ...

This CVE describes a race condition vulnerability in the Linux kernel's KVM SVM implementation for SEV/SEV-ES virtual machines. It allows a crash or u...

A memory corruption vulnerability in the Linux kernel's IPMI message handler could allow attackers to crash systems or potentially execute arbitrary c...

A NULL pointer dereference vulnerability in the Linux kernel's ATM CLIP (Classical IP over ATM) subsystem allows local attackers to cause a kernel pan...

A race condition vulnerability in the Linux kernel's ATM CLIP (Classical IP over ATM) subsystem allows infinite recursion when ioctl(ATMARP_MKIP) is c...

A race condition vulnerability in the Linux kernel's vsock subsystem allows a local attacker to cause a use-after-free condition when transport module...

A vulnerability in the Linux kernel's md/md-bitmap component causes a General Protection Fault (GPF) when accessing statistics for external bitmaps. T...

A use-after-free vulnerability in the Linux kernel's ksmbd (SMB server) component could allow attackers to crash the kernel or potentially execute arb...

A bug in the Linux kernel's bnxt_en network driver incorrectly sets DMA unmap length to 0 when transmitting XDP_REDIRECT packets, causing a kernel war...

A Linux kernel vulnerability in the netfilter flowtable component where the nf_flow_pppoe_proto() function fails to account for Ethernet header length...

This CVE describes a use-after-free vulnerability in the Linux kernel's NBD (Network Block Device) driver. When nbd_genl_connect() encounters certain ...

A use-after-return vulnerability in the Linux kernel's RAID1 subsystem allows accessing stack memory after it has been freed. This can lead to kernel ...

A vulnerability in the Linux kernel's Tegra I2C driver allows improper validation of SMBUS block read message lengths. Attackers could exploit this to...

This CVE describes a memory corruption vulnerability in the Linux kernel's IMS-PCU driver where improper validation of firmware-supplied length values...

A Linux kernel vulnerability in the NFS server (nfsd) where the nfsd4_spo_must_allow() function fails to verify if the request is a v4 compound reques...

A memory leak vulnerability in the Linux kernel's remoteproc subsystem occurs when resource handling fails during remote processor attachment. This af...

This CVE describes a memory leak vulnerability in the Linux kernel's Direct Rendering Manager (DRM) subsystem for MSM (Qualcomm Adreno) graphics drive...

This CVE addresses an uninitialized memory vulnerability in the Linux kernel's VMCI transport for vsock. Attackers could potentially read uninitialize...

This CVE describes a Linux kernel vulnerability where the S_PRIVATE flag wasn't properly cleared after alloc_anon_inode(), allowing LSM/SELinux securi...

This CVE describes a cleanup issue in the Linux kernel's NFS client where if nfs_fs_proc_net_init() fails during network namespace creation, the /proc...

A memory corruption vulnerability in the Linux kernel's MediaTek SD card driver (mtk-sd) occurs when DMA mapping fails but the driver proceeds with DM...

A use-after-free vulnerability in the Linux kernel's i915 graphics driver where a timeline reference is not properly released when VMA allocation fail...

A buffer overflow vulnerability in the Linux kernel's USB Type-C DisplayPort Alt Mode driver allows a malicious USB-C device to trigger a kernel crash...

This CVE describes a race condition vulnerability in the Linux kernel's NFSv4/pNFS implementation where improper synchronization between tasks waiting...

This CVE describes a kernel warning triggered during USB device disconnection in the Linux kernel's lan78xx network driver. The vulnerability occurs w...

A race condition in the Linux kernel's v3d graphics driver allows interrupts to be triggered during GPU resets, leading to NULL pointer dereferences a...

This vulnerability in the Linux kernel's virtio-net driver allows an out-of-bound read when processing XDP (eXpress Data Path) packets. Attackers coul...

A use-after-free vulnerability in the Linux kernel's ROSE protocol implementation allows attackers to potentially crash systems or execute arbitrary c...

A null pointer dereference vulnerability in the Linux kernel's AMD display driver could cause kernel crashes or denial of service. This affects system...

A Linux kernel vulnerability in the maple_tree subsystem causes improper handling of the MA_STATE_PREALLOC flag in mas_preallocate(). This can lead to...

A use-after-free vulnerability in the Linux kernel's network traffic control subsystem allows local attackers to potentially crash the system or execu...

This vulnerability in Google Chrome's ANGLE and GPU components allows insufficient input validation, enabling a remote attacker to potentially escape ...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's software node subsystem. The flaw occurs in software_node_get_reference_a...

This CVE describes a memory leak vulnerability in the Linux kernel's ACPI subsystem where 'Acpi-Parse' and 'Acpi-parse_ext' caches are not properly cl...

This is a use-after-free vulnerability in the Linux kernel's ftrace subsystem that occurs when kallsyms looks up module symbols after ftrace has been ...

A buffer overflow vulnerability in the Linux kernel's p54 wifi driver allows a malicious USB device posing as an Intersil p54 wifi interface to trigge...

This CVE describes a race condition vulnerability in the Linux kernel's gpio-keys driver when PREEMPT_RT is enabled. The issue occurs when the gpio_ke...

This CVE addresses a null pointer dereference and data race condition in the Linux kernel's jbd2 journaling subsystem. Attackers could potentially cau...

A vulnerability in the Linux kernel's Cortina ethernet driver causes system instability when TCP offload engine (TOE) and TCP segmentation offload (TS...

A Linux kernel vulnerability in the perf/x86/intel subsystem causes a hard-lockup crash on Intel RaptorLake E-core CPUs when attempting to update topd...

This CVE describes a use-after-free vulnerability in the Linux kernel's ATM (Asynchronous Transfer Mode) LAN Emulation (LANE) subsystem. The vulnerabi...

This CVE describes a stack-out-of-bounds read vulnerability in the Linux kernel's arm64/ptrace component. The flaw occurs in regs_get_kernel_stack_nth...

A division-by-zero vulnerability in the Linux kernel's framebuffer console virtual terminal (fbcvt) subsystem can cause kernel crashes when processing...

This CVE describes a double-free memory corruption vulnerability in the Linux kernel's fsl-mc bus driver. When a specific error condition occurs durin...

This CVE describes a NULL pointer dereference vulnerability in the Linux kernel's AMD GPU driver. If exploited, it could cause a kernel panic or syste...

A NULL pointer dereference vulnerability exists in the Linux kernel's Bluetooth subsystem within the eir_get_service_data function. This vulnerability...

A memory validation vulnerability in the Linux kernel's Segment Routing over IPv6 (seg6) subsystem allows reading uninitialized memory when user space...