CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2025-71186 – dmaengine: stm32: dmamux: fix device leak on route allocation
https://notcve.org/view.php?id=CVE-2025-71186
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: dmaengine: stm32: dmamux: fix device leak on route allocation Make sure to drop the reference taken when looking up the DMA mux platform device during route allocation. Note that holding a reference to a device does not prevent its driver data from going away so there is no point in keeping the reference. In the Linux kernel, the following vulnerability has been resolved: dmaengine: stm32: dmamux: fix device leak on route allocation Make su... • https://git.kernel.org/stable/c/df7e762db5f6c8dbd9e480f1c9ef9851de346657 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2025-71185 – dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation
https://notcve.org/view.php?id=CVE-2025-71185
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation Make sure to drop the reference taken when looking up the crossbar platform device during am335x route allocation. In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation Make sure to drop the reference taken when looking up the crossbar platform device during am335x route allocation. Se... • https://git.kernel.org/stable/c/42dbdcc6bf965997c088caff2a8be7f9bf44f701 •
CVSS: 5.6EPSS: 0%CPEs: 3EXPL: 0CVE-2026-23023 – idpf: fix memory leak in idpf_vport_rel()
https://notcve.org/view.php?id=CVE-2026-23023
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: idpf: fix memory leak in idpf_vport_rel() Free vport->rx_ptype_lkup in idpf_vport_rel() to avoid leaking memory during a reset. Reported by kmemleak: unreferenced object 0xff450acac838a000 (size 4096): comm "kworker/u258:5", pid 7732, jiffies 4296830044 hex dump (first 32 bytes): 00 00 00 00 00 10 00 00 00 10 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 10 00 00 00 00 00 00 ................ backtrace (crc 3da81902): __kmall... • https://git.kernel.org/stable/c/0fe45467a1041ea3657a7fa3a791c84c104fbd34 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2026-23021 – net: usb: pegasus: fix memory leak in update_eth_regs_async()
https://notcve.org/view.php?id=CVE-2026-23021
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: fix memory leak in update_eth_regs_async() When asynchronously writing to the device registers and if usb_submit_urb() fail, the code fail to release allocated to this point resources. In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: fix memory leak in update_eth_regs_async() When asynchronously writing to the device registers and if usb_submit_urb() fail, the code fail to release all... • https://git.kernel.org/stable/c/323b34963d113efb566635f43858f40cce01d5f9 •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2026-23020 – net: 3com: 3c59x: fix possible null dereference in vortex_probe1()
https://notcve.org/view.php?id=CVE-2026-23020
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: net: 3com: 3c59x: fix possible null dereference in vortex_probe1() pdev can be null and free_ring: can be called in 1297 with a null pdev. In the Linux kernel, the following vulnerability has been resolved: net: 3com: 3c59x: fix possible null dereference in vortex_probe1() pdev can be null and free_ring: can be called in 1297 with a null pdev. Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege esca... • https://git.kernel.org/stable/c/55c82617c3e82210b7471e9334e8fc5df6a9961f •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2026-23019 – net: marvell: prestera: fix NULL dereference on devlink_alloc() failure
https://notcve.org/view.php?id=CVE-2026-23019
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: net: marvell: prestera: fix NULL dereference on devlink_alloc() failure devlink_alloc() may return NULL on allocation failure, but prestera_devlink_alloc() unconditionally calls devlink_priv() on the returned pointer. This leads to a NULL pointer dereference if devlink allocation fails. Add a check for a NULL devlink pointer and return NULL early to avoid the crash. In the Linux kernel, the following vulnerability has been resolved: net: ma... • https://git.kernel.org/stable/c/34dd1710f5a3c9a7dc78e1ff6de69a19d407db25 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2026-23017 – idpf: fix error handling in the init_task on load
https://notcve.org/view.php?id=CVE-2026-23017
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: idpf: fix error handling in the init_task on load If the init_task fails during a driver load, we end up without vports and netdevs, effectively failing the entire process. In that state a subsequent reset will result in a crash as the service task attempts to access uninitialized resources. Following trace is from an error in the init_task where the CREATE_VPORT (op 501) is rejected by the FW: [40922.763136] idpf 0000:83:00.0: Device HW Re... • https://git.kernel.org/stable/c/0fe45467a1041ea3657a7fa3a791c84c104fbd34 •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2025-71184 – btrfs: fix NULL dereference on root when tracing inode eviction
https://notcve.org/view.php?id=CVE-2025-71184
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL dereference on root when tracing inode eviction When evicting an inode the first thing we do is to setup tracing for it, which implies fetching the root's id. But in btrfs_evict_inode() the root might be NULL, as implied in the next check that we do in btrfs_evict_inode(). Hence, we either should set the ->root_objectid to 0 in case the root is NULL, or we move tracing setup after checking that the root is not NULL. Setting ... • https://git.kernel.org/stable/c/1abe9b8a138c9988ba8f7bfded6453649a31541f •
CVSS: 6.3EPSS: 0%CPEs: 9EXPL: 0CVE-2025-71183 – btrfs: always detect conflicting inodes when logging inode refs
https://notcve.org/view.php?id=CVE-2025-71183
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: btrfs: always detect conflicting inodes when logging inode refs After rename exchanging (either with the rename exchange operation or regular renames in multiple non-atomic steps) two inodes and at least one of them is a directory, we can end up with a log tree that contains only of the inodes and after a power failure that can result in an attempt to delete the other inode when it should not because it was not deleted before the power fail... • https://git.kernel.org/stable/c/56f23fdbb600e6087db7b009775b95ce07cc3195 •
CVSS: 7.1EPSS: 0%CPEs: 7EXPL: 0CVE-2025-71182 – can: j1939: make j1939_session_activate() fail if device is no longer registered
https://notcve.org/view.php?id=CVE-2025-71182
31 Jan 2026 — In the Linux kernel, the following vulnerability has been resolved: can: j1939: make j1939_session_activate() fail if device is no longer registered syzbot is still reporting unregister_netdevice: waiting for vcan0 to become free. Usage count = 2 even after commit 93a27b5891b8 ("can: j1939: add missing calls in NETDEV_UNREGISTER notification handler") was added. A debug printk() patch found that j1939_session_activate() can succeed even after j1939_cancel_active_session() from j1939_netdev_notify(NETDEV_UNR... • https://git.kernel.org/stable/c/9d71dd0c70099914fcd063135da3c580865e924c •