CVSS: 7.1EPSS: 0%CPEs: 8EXPL: 0CVE-2022-49620 – net: tipc: fix possible refcount leak in tipc_sk_create()
https://notcve.org/view.php?id=CVE-2022-49620
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipc_sk_create() Free sk in case tipc_sk_insert() fails. • https://git.kernel.org/stable/c/638fa20b618b2bbcf86da71231624cc82121a036 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2022-49619 – net: sfp: fix memory leak in sfp_probe()
https://notcve.org/view.php?id=CVE-2022-49619
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: net: sfp: fix memory leak in sfp_probe() sfp_probe() allocates a memory chunk from sfp with sfp_alloc(). ... In the Linux kernel, the following vulnerability has been resolved: net: sfp: fix memory leak in sfp_probe() sfp_probe() allocates a memory chunk from sfp with sfp_alloc(). • https://git.kernel.org/stable/c/73970055450eebc6fc36fd170e56cc45889d0093 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-49618 – pinctrl: aspeed: Fix potential NULL dereference in aspeed_pinmux_set_mux()
https://notcve.org/view.php?id=CVE-2022-49618
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: pinctrl: aspeed: Fix potential NULL dereference in aspeed_pinmux_set_mux() pdesc could be null but still dereference pdesc->name and it will lead to a null pointer access. ... In the Linux kernel, the following vulnerability has been resolved: pinctrl: aspeed: Fix potential NULL dereference in aspeed_pinmux_set_mux() pdesc could be null but still dereference pdesc->name and it will lead to a null pointer access. • https://git.kernel.org/stable/c/4d3d0e4272d8d660f5f14f5abcf96fb4df1aa94b •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-49617 – ASoC: Intel: sof_sdw: handle errors on card registration
https://notcve.org/view.php?id=CVE-2022-49617
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof_sdw: handle errors on card registration If the card registration fails, typically because of deferred probes, the device properties added for headset codecs are not removed, which leads to kernel oopses in driver bind/unbind tests. In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof_sdw: handle errors on card registration If the card registration fails, typically because of def... • https://git.kernel.org/stable/c/52db12d193d45728e738df6119702cba08fd46a2 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-49616 – ASoC: rt7*-sdw: harden jack_detect_handler
https://notcve.org/view.php?id=CVE-2022-49616
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: ASoC: rt7*-sdw: harden jack_detect_handler Realtek headset codec drivers typically check if the card is instantiated before proceeding with the jack detection. ... In the Linux kernel, the following vulnerability has been resolved: ASoC: rt7*-sdw: harden jack_detect_handler Realtek headset codec drivers typically check if the card is instantiated before proceeding with the jack detection. • https://git.kernel.org/stable/c/320b8b0d13b81f3697acff5b6ddb47f88a09c118 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-49615 – ASoC: rt711-sdca: fix kernel NULL pointer dereference when IO error
https://notcve.org/view.php?id=CVE-2022-49615
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: ASoC: rt711-sdca: fix kernel NULL pointer dereference when IO error The initial settings will be written before the codec probe function. In the Linux kernel, the following vulnerability has been resolved: ASoC: rt711-sdca: fix kernel NULL pointer dereference when IO error The initial settings will be written before the codec probe function. But, the rt711->component doesn't be assigned yet. • https://git.kernel.org/stable/c/7ad4d237e7c4a5dcc71cf438f646744b4484f1da • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-49613 – serial: 8250: Fix PM usage_count for console handover
https://notcve.org/view.php?id=CVE-2022-49613
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix PM usage_count for console handover When console is enabled, univ8250_console_setup() calls serial8250_console_setup() before .dev is set to uart_port. ... In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix PM usage_count for console handover When console is enabled, univ8250_console_setup() calls serial8250_console_setup() before .dev is set to uart_port. • https://git.kernel.org/stable/c/bedb404e91bb2908d9921fc736a518a9d89525fc •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-49612 – power: supply: core: Fix boundary conditions in interpolation
https://notcve.org/view.php?id=CVE-2022-49612
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: power: supply: core: Fix boundary conditions in interpolation The functions power_supply_temp2resist_simple and power_supply_ocv2cap_simple handle boundary conditions incorrectly. In the Linux kernel, the following vulnerability has been resolved: power: supply: core: Fix boundary conditions in interpolation The functions power_supply_temp2resist_simple and power_supply_ocv2cap_simple handle boundary conditions incorrectly. • https://git.kernel.org/stable/c/a4585ba2050f460f749bbaf2b67bd56c41e30283 •
CVSS: 7.1EPSS: 0%CPEs: 7EXPL: 0CVE-2022-49611 – x86/speculation: Fill RSB on vmexit for IBRS
https://notcve.org/view.php?id=CVE-2022-49611
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. ... In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. ... The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. • https://git.kernel.org/stable/c/3d323b99ff5c8c57005184056d65f6af5b0479d8 • CWE-1037: Processor Optimization Removal or Modification of Security-critical Code •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2022-49610 – KVM: VMX: Prevent RSB underflow before vmenter
https://notcve.org/view.php?id=CVE-2022-49610
26 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Prevent RSB underflow before vmenter On VMX, there are some balanced returns between the time the guest's SPEC_CTRL value is written, and the vmenter. ... For maximum paranoia, don't allow *any* returns (balanced or otherwise) between the SPEC_CTRL write and the vmenter. [ bp: Fix 32-bit build. ] In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Prevent RSB underflow before vmenter On VMX,... • https://git.kernel.org/stable/c/afd743f6dde87296c6f3414706964c491bb85862 •