CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2023-53254 – cacheinfo: Fix shared_cpu_map to handle shared caches at different levels
https://notcve.org/view.php?id=CVE-2023-53254
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: cacheinfo: Fix shared_cpu_map to handle shared caches at different levels The cacheinfo sets up the shared_cpu_map by checking whether the caches with the same index are shared between CPUs. However, this will trigger slab-out-of-bounds access if the CPUs do not have the same cache hierarchy. Another problem is the mismatched shared_cpu_map when the shared cache does not have the same index between CPUs. CPU0 I D L3 index 0 1 2 x ^ ^ ^ ^ in... • https://git.kernel.org/stable/c/2f588d0345d69a35e451077afed428fd057a5e34 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-53253 – HID: nvidia-shield: Reference hid_device devm allocation of input_dev name
https://notcve.org/view.php?id=CVE-2023-53253
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: HID: nvidia-shield: Reference hid_device devm allocation of input_dev name Use hid_device for devm allocation of the input_dev name to avoid a use-after-free. input_unregister_device would trigger devres cleanup of all resources associated with the input_dev, free-ing the name. The name would subsequently be used in a uevent fired at the end of unregistering the input_dev. In the Linux kernel, the following vulnerability has been resolved: ... • https://git.kernel.org/stable/c/09308562d4afb1abc66366608fa1cb9de783272f •
CVSS: 7.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-53252 – Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync
https://notcve.org/view.php?id=CVE-2023-53252
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync hci_update_accept_list_sync iterates over hdev->pend_le_conns and hdev->pend_le_reports, and waits for controller events in the loop body, without holding hdev lock. Meanwhile, these lists and the items may be modified e.g. by le_scan_cleanup. This can invalidate the list cursor or any other item in the list, resulting to invalid behavior (eg use-after-free). Use RCU for ... • https://git.kernel.org/stable/c/e8907f76544ffe225ab95d70f7313267b1d0c76d • CWE-820: Missing Synchronization •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-53251 – wifi: iwlwifi: pcie: fix NULL pointer dereference in iwl_pcie_irq_rx_msix_handler()
https://notcve.org/view.php?id=CVE-2023-53251
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: fix NULL pointer dereference in iwl_pcie_irq_rx_msix_handler() rxq can be NULL only when trans_pcie->rxq is NULL and entry->entry is zero. For the case when entry->entry is not equal to 0, rxq won't be NULL even if trans_pcie->rxq is NULL. Modify checker to check for trans_pcie->rxq. In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: fix NULL pointer dereference in iwl_pcie_irq_rx_m... • https://git.kernel.org/stable/c/abc599efa67bb4138536360e07d677052b19e392 •
CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 0CVE-2023-53250 – firmware: dmi-sysfs: Fix null-ptr-deref in dmi_sysfs_register_handle
https://notcve.org/view.php?id=CVE-2023-53250
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: firmware: dmi-sysfs: Fix null-ptr-deref in dmi_sysfs_register_handle KASAN reported a null-ptr-deref error: KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] CPU: 0 PID: 1373 Comm: modprobe Hardware name: QEMU Standard PC (i440FX + PIIX, 1996) RIP: 0010:dmi_sysfs_entry_release ... Call Trace:
CVSS: 8.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-53249 – clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe
https://notcve.org/view.php?id=CVE-2023-53249
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe Use devm_of_iomap() instead of of_iomap() to automatically handle the unused ioremap region. If any error occurs, regions allocated by kzalloc() will leak, but using devm_kzalloc() instead will automatically free the memory using devm_kfree(). In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe Use devm_o... • https://git.kernel.org/stable/c/96d6392b54dbb1ff2b39448a2516fa6abb33114b • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2023-53248 – drm/amdgpu: install stub fence into potential unused fence pointers
https://notcve.org/view.php?id=CVE-2023-53248
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: install stub fence into potential unused fence pointers When using cpu to update page tables, vm update fences are unused. Install stub fence into these fence pointers instead of NULL to avoid NULL dereference when calling dma_fence_wait() on them. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: install stub fence into potential unused fence pointers When using cpu to update page tables, vm update... • https://git.kernel.org/stable/c/d38ceaf99ed015f2a0b9af3499791bd3a3daae21 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-53247 – btrfs: set_page_extent_mapped after read_folio in btrfs_cont_expand
https://notcve.org/view.php?id=CVE-2023-53247
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: btrfs: set_page_extent_mapped after read_folio in btrfs_cont_expand While trying to get the subpage blocksize tests running, I hit the following panic on generic/476 assertion failed: PagePrivate(page) && page->private, in fs/btrfs/subpage.c:229 kernel BUG at fs/btrfs/subpage.c:229! Internal error: Oops - BUG: 00000000f2000800 [#1] SMP CPU: 1 PID: 1453 Comm: fsstress Not tainted 6.4.0-rc7+ #12 Hardware name: QEMU KVM Virtual Machine, BIOS e... • https://git.kernel.org/stable/c/0a5e0bc8e8618e32a6ca64450867628eb0a627bf •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-53246 – cifs: fix DFS traversal oops without CONFIG_CIFS_DFS_UPCALL
https://notcve.org/view.php?id=CVE-2023-53246
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: cifs: fix DFS traversal oops without CONFIG_CIFS_DFS_UPCALL When compiled with CONFIG_CIFS_DFS_UPCALL disabled, cifs_dfs_d_automount is NULL. cifs.ko logic for mapping CIFS_FATTR_DFS_REFERRAL attributes to S_AUTOMOUNT and corresponding dentry flags is retained regardless of CONFIG_CIFS_DFS_UPCALL, leading to a NULL pointer dereference in VFS follow_automount() when traversing a DFS referral link: BUG: kernel NULL pointer dereference, addres... • https://git.kernel.org/stable/c/8cd7dbc9c46d51e00a0a8372e07cc1cbb8d24a77 •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2023-53245 – scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
https://notcve.org/view.php?id=CVE-2023-53245
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts Hyper-V provides the ability to connect Fibre Channel LUNs to the host system and present them in a guest VM as a SCSI device. I/O to the vFC device is handled by the storvsc driver. The storvsc driver includes a partial integration with the FC transport implemented in the generic portion of the Linux SCSI subsystem so that FC attributes can be displayed in /sys. However, the par... • https://git.kernel.org/stable/c/3930d7309807ba0bfa460dfa9ed68d5560347dd2 •