CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2023-53179 – netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c
https://notcve.org/view.php?id=CVE-2023-53179
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c The missing IP_SET_HASH_WITH_NET0 macro in ip_set_hash_netportnet can lead to the use of wrong `CIDR_POS(c)` for calculating array offsets, which can lead to integer underflow. As a result, it leads to slab out-of-bound access. This patch adds back the IP_SET_HASH_WITH_NET0 macro to ip_set_hash_netportnet to address the issue. In the Linux kernel, the... • https://git.kernel.org/stable/c/0d5d0b5c41f766355f2b42c47d13ea001f754c7d •
CVSS: 7.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-53178 – mm: fix zswap writeback race condition
https://notcve.org/view.php?id=CVE-2023-53178
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, where a swapped out page gets swapped in with data that was written to a different page. The race unfolds like this: 1. a page with data A and swap offset X is stored in zswap 2. page A is removed off the LRU by zpool driver for writeback in zswap-shrink work, data for A is mapped by zpool driver 3. user space prog... • https://git.kernel.org/stable/c/2b2811178e85553405b86e3fe78357b9b95889ce • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 5.6EPSS: 0%CPEs: 3EXPL: 0CVE-2023-53177 – media: hi846: fix usage of pm_runtime_get_if_in_use()
https://notcve.org/view.php?id=CVE-2023-53177
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: media: hi846: fix usage of pm_runtime_get_if_in_use() pm_runtime_get_if_in_use() does not only return nonzero values when the device is in use, it can return a negative errno too. And especially during resuming from system suspend, when runtime pm is not yet up again, -EAGAIN is being returned, so the subsequent pm_runtime_put() call results in a refcount underflow. Fix system-resume by handling -EAGAIN of pm_runtime_get_if_in_use(). In the... • https://git.kernel.org/stable/c/e8c0882685f9152f0d729664a12bcbe749cb7736 •
CVSS: 8.4EPSS: 0%CPEs: 8EXPL: 0CVE-2023-53176 – serial: 8250: Reinit port->pm on port specific driver unbind
https://notcve.org/view.php?id=CVE-2023-53176
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Reinit port->pm on port specific driver unbind When we unbind a serial port hardware specific 8250 driver, the generic serial8250 driver takes over the port. After that we see an oops about 10 seconds later. This can produce the following at least on some TI SoCs: Unhandled fault: imprecise external abort (0x1406) Internal error: : 1406 [#1] SMP ARM Turns out that we may still have the serial port hardware specific driver port... • https://git.kernel.org/stable/c/c161afe9759ddcc174d08e7c4f683d08ac9ba86f •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-53175 – PCI: hv: Fix a crash in hv_pci_restore_msi_msg() during hibernation
https://notcve.org/view.php?id=CVE-2023-53175
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: PCI: hv: Fix a crash in hv_pci_restore_msi_msg() during hibernation When a Linux VM with an assigned PCI device runs on Hyper-V, if the PCI device driver is not loaded yet (i.e. MSI-X/MSI is not enabled on the device yet), doing a VM hibernation triggers a panic in hv_pci_restore_msi_msg() -> msi_lock_descs(&pdev->dev), because pdev->dev.msi.data is still NULL. Avoid the panic by checking if MSI-X/MSI is enabled. In the Linux kernel, the fo... • https://git.kernel.org/stable/c/dc2b453290c471266a2d56d7ead981e3c5cea05e •
CVSS: 7.1EPSS: 0%CPEs: 8EXPL: 0CVE-2023-53174 – scsi: core: Fix possible memory leak if device_add() fails
https://notcve.org/view.php?id=CVE-2023-53174
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix possible memory leak if device_add() fails If device_add() returns error, the name allocated by dev_set_name() needs be freed. As the comment of device_add() says, put_device() should be used to decrease the reference count in the error path. So fix this by calling put_device(), then the name can be freed in kobject_cleanp(). In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix possible memory ... • https://git.kernel.org/stable/c/ee959b00c335d7780136c5abda37809191fe52c3 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-53173 – tty: pcn_uart: fix memory leak with using debugfs_lookup()
https://notcve.org/view.php?id=CVE-2023-53173
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: tty: pcn_uart: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called on it, otherwise the memory will leak over time. To make things simpler, just call debugfs_lookup_and_remove() instead which handles all of the logic at once. In the Linux kernel, the following vulnerability has been resolved: tty: pcn_uart: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the ... • https://git.kernel.org/stable/c/4dec5f1af694526db760dfbb47211236e556e27c • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2023-53171 – vfio/type1: prevent underflow of locked_vm via exec()
https://notcve.org/view.php?id=CVE-2023-53171
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: vfio/type1: prevent underflow of locked_vm via exec() When a vfio container is preserved across exec, the task does not change, but it gets a new mm with locked_vm=0, and loses the count from existing dma mappings. If the user later unmaps a dma mapping, locked_vm underflows to a large unsigned value, and a subsequent dma map request fails with ENOMEM in __account_locked_vm. To avoid underflow, grab and save the mm at the time a dma is mapp... • https://git.kernel.org/stable/c/73fa0d10d077d9521ee2dace2307ae2c9a965336 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-53169 – x86/resctrl: Clear staged_config[] before and after it is used
https://notcve.org/view.php?id=CVE-2023-53169
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: x86/resctrl: Clear staged_config[] before and after it is used As a temporary storage, staged_config[] in rdt_domain should be cleared before and after it is used. The stale value in staged_config[] could cause an MSR access error. Here is a reproducer on a system with 16 usable CLOSIDs for a 15-way L3 Cache (MBA should be disabled if the number of CLOSIDs for MB is less than 16.) : mount -t resctrl resctrl -o cdp /sys/fs/resctrl mkdir /sys... • https://git.kernel.org/stable/c/75408e43509ed6207870c0e7e28656acbbc1f7fd •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-53168 – usb: ucsi_acpi: Increase the command completion timeout
https://notcve.org/view.php?id=CVE-2023-53168
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: usb: ucsi_acpi: Increase the command completion timeout Commit 130a96d698d7 ("usb: typec: ucsi: acpi: Increase command completion timeout value") increased the timeout from 5 seconds to 60 seconds due to issues related to alternate mode discovery. After the alternate mode discovery switch to polled mode the timeout was reduced, but instead of being set back to 5 seconds it was reduced to 1 second. This is causing problems when using a Lenov... • https://git.kernel.org/stable/c/e08065069fc7b074712378a95a3522d557e9bbe1 • CWE-909: Missing Initialization of Resource •