CVSS: -EPSS: 0%CPEs: 5EXPL: 0CVE-2022-50864 – nilfs2: fix shift-out-of-bounds due to too large exponent of block size
https://notcve.org/view.php?id=CVE-2022-50864
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix shift-out-of-bounds due to too large exponent of block size If field s_log_block_size of superblock data is corrupted and too large, init_nilfs() and load_nilfs() still can trigger a shift-out-of-bounds warning followed by a kernel panic (if panic_on_warn is set): shift exponent 38973 is too large for 32-bit type 'int' Call Trace:
CVSS: -EPSS: 0%CPEs: 3EXPL: 0CVE-2022-50863 – wifi: rtw89: free unused skb to prevent memory leak
https://notcve.org/view.php?id=CVE-2022-50863
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: free unused skb to prevent memory leak This avoid potential memory leak under power saving mode. • https://git.kernel.org/stable/c/fc5f311fce742d906294360e378c1df631d2d692 •
CVSS: -EPSS: 0%CPEs: 2EXPL: 0CVE-2022-50862 – bpf: prevent decl_tag from being referenced in func_proto
https://notcve.org/view.php?id=CVE-2022-50862
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: bpf: prevent decl_tag from being referenced in func_proto Syzkaller was able to hit the following issue: ------------[ cut here ]------------ WARNING: CPU: 0 PID: 3609 at kernel/bpf/btf.c:1946 btf_type_id_size+0x2d5/0x9d0 kernel/bpf/btf.c:1946 Modules linked in: CPU: 0 PID: 3609 Comm: syz-executor361 Not tainted 6.0.0-syzkaller-02734-g0326074ff465 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22... • https://git.kernel.org/stable/c/bd16dee66ae4de3f1726c69ac901d2b7a53b0c86 •
CVSS: -EPSS: 0%CPEs: 4EXPL: 0CVE-2022-50861 – NFSD: Finish converting the NFSv2 GETACL result encoder
https://notcve.org/view.php?id=CVE-2022-50861
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdr_stream conversion inadvertently left some code that set the page_len of the send buffer. ... The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues. • https://git.kernel.org/stable/c/f8cba47344f794b54373189bec23195b51020faf •
CVSS: -EPSS: 0%CPEs: 5EXPL: 0CVE-2022-50860 – apparmor: Fix memleak in alloc_ns()
https://notcve.org/view.php?id=CVE-2022-50860
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix memleak in alloc_ns() After changes in commit a1bd627b46d1 ("apparmor: share profile name on replacement"), the hname member of struct aa_policy is not valid slab object, but a subset of that, it can not be freed by kfree_sensitive(), use aa_policy_destroy() to fix it. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues. • https://git.kernel.org/stable/c/a1bd627b46d169268a0ee5960899fb5be960a317 •
CVSS: -EPSS: 0%CPEs: 6EXPL: 0CVE-2022-50859 – cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message
https://notcve.org/view.php?id=CVE-2022-50859
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message Commit d5c7076b772a ("smb3: add smb3.1.1 to default dialect list") extend the dialects from 3 to 4, but forget to decrease the extended length when specific the dialect, then the message length is larger than expected. ... The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues. • https://git.kernel.org/stable/c/d5c7076b772ad7dcdb92303397b36aee8fa0d25d •
CVSS: -EPSS: 0%CPEs: 6EXPL: 0CVE-2022-50858 – mmc: alcor: fix return value check of mmc_add_host()
https://notcve.org/view.php?id=CVE-2022-50858
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: mmc: alcor: fix return value check of mmc_add_host() mmc_add_host() may return error, if we ignore its return value, the memory that allocated in mmc_alloc_host() will be leaked and it will lead a kernel crash because of deleting not added device in the remove path. ... The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues. • https://git.kernel.org/stable/c/c5413ad815a675b5c98a002353d8e96b44b164e9 •
CVSS: -EPSS: 0%CPEs: 9EXPL: 0CVE-2022-50857 – rapidio: rio: fix possible name leak in rio_register_mport()
https://notcve.org/view.php?id=CVE-2022-50857
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: rapidio: rio: fix possible name leak in rio_register_mport() If device_register() returns error, the name allocated by dev_set_name() need be freed. • https://git.kernel.org/stable/c/2aaf308b95b24649a6dcfed89cd956e972089b2a •
CVSS: -EPSS: 0%CPEs: 4EXPL: 0CVE-2022-50856 – cifs: Fix xid leak in cifs_ses_add_channel()
https://notcve.org/view.php?id=CVE-2022-50856
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifs_ses_add_channel() Before return, should free the xid, otherwise, the xid will be leaked. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues. • https://git.kernel.org/stable/c/d70e9fa55884760b6d6c293dbf20d8c52ce11fb7 •
CVSS: -EPSS: 0%CPEs: 3EXPL: 0CVE-2022-50855 – bpf: prevent leak of lsm program after failed attach
https://notcve.org/view.php?id=CVE-2022-50855
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In [0], we added the ability to bpf_prog_attach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPF_LSM_CGROUP, we return too early if the check fails. • https://git.kernel.org/stable/c/69fd337a975c7e690dfe49d9cb4fe5ba1e6db44e •