CVSS: -EPSS: 0%CPEs: 5EXPL: 0CVE-2023-54173 – bpf: Disable preemption in bpf_event_output
https://notcve.org/view.php?id=CVE-2023-54173
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpf_event_output We received report [1] of kernel crash, which is caused by using nesting protection without disabled preemption. The bpf_event_output can be called by programs executed by bpf_prog_run_array_cg function that disabled migration but keeps preemption enabled. This can cause task to be preempted by another one inside the nesting protection and lead eventually to two tasks using same perf_sample_data b... • https://git.kernel.org/stable/c/2a916f2f546ca1c1e3323e2a4269307f6d9890eb •
CVSS: -EPSS: 0%CPEs: 3EXPL: 0CVE-2023-54172 – x86/hyperv: Disable IBT when hypercall page lacks ENDBR instruction
https://notcve.org/view.php?id=CVE-2023-54172
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: Disable IBT when hypercall page lacks ENDBR instruction On hardware that supports Indirect Branch Tracking (IBT), Hyper-V VMs with ConfigVersion 9.3 or later support IBT in the guest. However, current versions of Hyper-V have a bug in that there's not an ENDBR64 instruction at the beginning of the hypercall page. Since hypercalls are made with an indirect call to the hypercall page, all hypercall attempts fail with an exception ... • https://git.kernel.org/stable/c/991625f3dd2cbc4b787deb0213e2bcf8fa264b21 •
CVSS: -EPSS: 0%CPEs: 5EXPL: 0CVE-2023-54171 – tracing: Fix memory leak of iter->temp when reading trace_pipe
https://notcve.org/view.php?id=CVE-2023-54171
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: tracing: Fix memory leak of iter->temp when reading trace_pipe kmemleak reports: unreferenced object 0xffff88814d14e200 (size 256): comm "cat", pid 336, jiffies 4294871818 (age 779.490s) hex dump (first 32 bytes): 04 00 01 03 00 00 00 00 08 00 00 00 00 00 00 00 ................ 0c d8 c8 9b ff ff ff ff 04 5a ca 9b ff ff ff ff .........Z...... backtrace: [
CVSS: -EPSS: 0%CPEs: 6EXPL: 0CVE-2023-54170 – keys: Fix linking a duplicate key to a keyring's assoc_array
https://notcve.org/view.php?id=CVE-2023-54170
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: keys: Fix linking a duplicate key to a keyring's assoc_array When making a DNS query inside the kernel using dns_query(), the request code can in rare cases end up creating a duplicate index key in the assoc_array of the destination keyring. It is eventually found by a BUG_ON() check in the assoc_array implementation and results in a crash. Example report: [2158499.700025] kernel BUG at ../lib/assoc_array.c:652! [2158499.700039] invalid opc... • https://git.kernel.org/stable/c/df593ee23e05cdda16c8c995e5818779431bb29f •
CVSS: -EPSS: 0%CPEs: 4EXPL: 0CVE-2023-54169 – net/mlx5e: fix memory leak in mlx5e_ptp_open
https://notcve.org/view.php?id=CVE-2023-54169
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix memory leak in mlx5e_ptp_open When kvzalloc_node or kvzalloc failed in mlx5e_ptp_open, the memory pointed by "c" or "cparams" is not freed, which can lead to a memory leak. Fix by freeing the array in the error path. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues. • https://git.kernel.org/stable/c/145e5637d941daec2e8d1ff21676cbf1aa62cf4d •
CVSS: -EPSS: 0%CPEs: 8EXPL: 0CVE-2023-54168 – RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
https://notcve.org/view.php?id=CVE-2023-54168
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Prevent shift wrapping in set_user_sq_size() The ucmd->log_sq_bb_count variable is controlled by the user so this shift can wrap. Fix it by using check_shl_overflow() in the same way that it was done in commit 515f60004ed9 ("RDMA/hns: Prevent undefined behavior in hns_roce_set_user_sq_size()"). The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues. • https://git.kernel.org/stable/c/839041329fd3410e07d614f81e75bb43367d8f89 •
CVSS: -EPSS: 0%CPEs: 3EXPL: 0CVE-2023-54167 – m68k: mm: Move initrd phys_to_virt handling after paging_init()
https://notcve.org/view.php?id=CVE-2023-54167
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: m68k: mm: Move initrd phys_to_virt handling after paging_init() When booting with an initial ramdisk on platforms where physical memory does not start at address zero (e.g. on Amiga): initrd: 0ef0602c - 0f800000 Zone ranges: DMA [mem 0x0000000008000000-0x000000f7ffffffff] Normal empty Movable zone start for each node Early memory node ranges node 0: [mem 0x0000000008000000-0x000000000f7fffff] Initmem setup node 0 [mem 0x0000000008000000-0x0... • https://git.kernel.org/stable/c/376e3fdecb0dcae216c0ac559cff066f460bf47b •
CVSS: -EPSS: 0%CPEs: 4EXPL: 0CVE-2023-54166 – igc: Fix Kernel Panic during ndo_tx_timeout callback
https://notcve.org/view.php?id=CVE-2023-54166
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: igc: Fix Kernel Panic during ndo_tx_timeout callback The Xeon validation group has been carrying out some loaded tests with various HW configurations, and they have seen some transmit queue time out happening during the test. This will cause the reset adapter function to be called by igc_tx_timeout(). Similar race conditions may arise when the interface is being brought down and up in igc_reinit_locked(), an interrupt being generated, and i... • https://git.kernel.org/stable/c/48d6d8f2f6096ef51bd193e2a2fb59cbbc350599 •
CVSS: -EPSS: 0%CPEs: 2EXPL: 0CVE-2023-54165 – zsmalloc: move LRU update from zs_map_object() to zs_malloc()
https://notcve.org/view.php?id=CVE-2023-54165
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: zsmalloc: move LRU update from zs_map_object() to zs_malloc() Under memory pressure, we sometimes observe the following crash: [ 5694.832838] ------------[ cut here ]------------ [ 5694.842093] list_del corruption, ffff888014b6a448->next is LIST_POISON1 (dead000000000100) [ 5694.858677] WARNING: CPU: 33 PID: 418824 at lib/list_debug.c:47 __list_del_entry_valid+0x42/0x80 [ 5694.961820] CPU: 33 PID: 418824 Comm: fuse_counters.s Kdump: loaded ... • https://git.kernel.org/stable/c/64f768c6b32e1957e2b65b70e97cb4cb62344bc4 •
CVSS: -EPSS: 0%CPEs: 4EXPL: 0CVE-2023-54164 – Bluetooth: ISO: fix iso_conn related locking and validity issues
https://notcve.org/view.php?id=CVE-2023-54164
30 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: fix iso_conn related locking and validity issues sk->sk_state indicates whether iso_pi(sk)->conn is valid. Operations that check/update sk_state and access conn should hold lock_sock, otherwise they can race. The order of taking locks is hci_dev_lock > lock_sock > iso_conn_lock, which is how it is in connect/disconnect_cfm -> iso_conn_del -> iso_chan_del. Fix locking in iso_connect_cis/bis and sendmsg/recvmsg to take lock_so... • https://git.kernel.org/stable/c/c524f9561c657b8af26dd4f67092b8928261aa62 •