CVSS: 5.5EPSS: %CPEs: 4EXPL: 0CVE-2022-50320 – ACPI: tables: FPDT: Don't call acpi_os_map_memory() on invalid phys address
https://notcve.org/view.php?id=CVE-2022-50320
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: ACPI: tables: FPDT: Don't call acpi_os_map_memory() on invalid phys address On a Packard Bell Dot SC (Intel Atom N2600 model) there is a FPDT table which contains invalid physical addresses, with high bits set which fall outside the range of the CPU-s supported physical address range. Calling acpi_os_map_memory() on such an invalid phys address leads to the below WARN_ON in ioremap triggering resulting in an oops/stacktrace. Add code to ver... • https://git.kernel.org/stable/c/30eca146c89d216dda95868ce00a2d35cf73d5a4 •
CVSS: 7.7EPSS: %CPEs: 4EXPL: 0CVE-2022-50319 – coresight: trbe: remove cpuhp instance node before remove cpuhp state
https://notcve.org/view.php?id=CVE-2022-50319
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: coresight: trbe: remove cpuhp instance node before remove cpuhp state cpuhp_state_add_instance() and cpuhp_state_remove_instance() should be used in pairs. Or there will lead to the warn on cpuhp_remove_multi_state() since the cpuhp_step list is not empty. The following is the error log with 'rmmod coresight-trbe': Error: Removing state 215 which has instances left. Call trace: __cpuhp_remove_state_cpuslocked+0x144/0x160 __cpuhp_remove_stat... • https://git.kernel.org/stable/c/3fbf7f011f2426dac8c982f1d2ef469a7959a524 •
CVSS: 5.5EPSS: %CPEs: 8EXPL: 0CVE-2022-50318 – perf/x86/intel/uncore: Fix reference count leak in hswep_has_limit_sbox()
https://notcve.org/view.php?id=CVE-2022-50318
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix reference count leak in hswep_has_limit_sbox() pci_get_device() will increase the reference count for the returned 'dev'. We need to call pci_dev_put() to decrease the reference count. Since 'dev' is only used in pci_read_config_dword(), let's add pci_dev_put() right after it. In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix reference count leak in hswep_has_limit_sbox... • https://git.kernel.org/stable/c/a8e87042482fd2d31c5cee62875b2ae75759ae8b •
CVSS: 7.8EPSS: %CPEs: 9EXPL: 0CVE-2022-50317 – drm/bridge: megachips: Fix a null pointer dereference bug
https://notcve.org/view.php?id=CVE-2022-50317
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: drm/bridge: megachips: Fix a null pointer dereference bug When removing the module we will get the following warning: [ 31.911505] i2c-core: driver [stdp2690-ge-b850v3-fw] unregistered [ 31.912484] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN PTI [ 31.913338] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 31.915280] RIP: 0010:drm_bridge_remove+0x97/0x1... • https://git.kernel.org/stable/c/7649972d97fb98578fbc4a351416cf72895e7c4d •
CVSS: 6.6EPSS: %CPEs: 3EXPL: 0CVE-2022-50316 – orangefs: Fix kmemleak in orangefs_sysfs_init()
https://notcve.org/view.php?id=CVE-2022-50316
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: orangefs: Fix kmemleak in orangefs_sysfs_init() When insert and remove the orangefs module, there are kobjects memory leaked as below: unreferenced object 0xffff88810f95af00 (size 64): comm "insmod", pid 783, jiffies 4294813439 (age 65.512s) hex dump (first 32 bytes): a0 83 af 01 81 88 ff ff 08 af 95 0f 81 88 ff ff ................ 08 af 95 0f 81 88 ff ff 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000031ab7788>] kmalloc_trace... • https://git.kernel.org/stable/c/f7ab093f74bf638ed98fd1115f3efa17e308bb7f •
CVSS: 5.6EPSS: %CPEs: 2EXPL: 0CVE-2023-53261 – coresight: Fix memory leak in acpi_buffer->pointer
https://notcve.org/view.php?id=CVE-2023-53261
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpi_buffer->pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff00213c141000 (size 1024): comm "systemd-udevd", pid 2123, jiffies 4294909467 (age 6062.160s) hex dump (first 32 bytes): 04 00 00 00 02 00 00 00 18 10 14 3c 21 00 ff ff ...........] __kmem_cache_alloc_node+0x2f8/0x348 ... • https://git.kernel.org/stable/c/76ffa5ab5b79c250b9744b7f8bdd835db426a1ae •
CVSS: 5.5EPSS: %CPEs: 6EXPL: 0CVE-2023-53259 – VMCI: check context->notify_page after call to get_user_pages_fast() to avoid GPF
https://notcve.org/view.php?id=CVE-2023-53259
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: VMCI: check context->notify_page after call to get_user_pages_fast() to avoid GPF The call to get_user_pages_fast() in vmci_host_setup_notify() can return NULL context->notify_page causing a GPF. To avoid GPF check if context->notify_page == NULL and return error if so. general protection fault, probably for non-canonical address 0xe0009d1000000060: 0000 [#1] PREEMPT SMP KASAN NOPTI KASAN: maybe wild-memory-access in range [0x00050880000003... • https://git.kernel.org/stable/c/a1d88436d53a75e950db15834b3d2f8c0c358fdc •
CVSS: 7.1EPSS: %CPEs: 4EXPL: 0CVE-2023-53257 – wifi: mac80211: check S1G action frame size
https://notcve.org/view.php?id=CVE-2023-53257
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check S1G action frame size Before checking the action code, check that it even exists in the frame. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check S1G action frame size Before checking the action code, check that it even exists in the frame. • https://git.kernel.org/stable/c/fedd9377dd9c71a950d432fbe1628eebfbed70a1 •
CVSS: 6.6EPSS: %CPEs: 4EXPL: 0CVE-2023-53256 – firmware: arm_ffa: Fix FFA device names for logical partitions
https://notcve.org/view.php?id=CVE-2023-53256
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Fix FFA device names for logical partitions Each physical partition can provide multiple services each with UUID. Each such service can be presented as logical partition with a unique combination of VM ID and UUID. The number of distinct UUID in a system will be less than or equal to the number of logical partitions. However, currently it fails to register more than one logical partition or service within a physical parti... • https://git.kernel.org/stable/c/e781858488b918e30a6ff28e9eab6058b787e3b3 •
CVSS: 5.5EPSS: %CPEs: 6EXPL: 0CVE-2023-53255 – firmware: stratix10-svc: Fix a potential resource leak in svc_create_memory_pool()
https://notcve.org/view.php?id=CVE-2023-53255
15 Sep 2025 — In the Linux kernel, the following vulnerability has been resolved: firmware: stratix10-svc: Fix a potential resource leak in svc_create_memory_pool() svc_create_memory_pool() is only called from stratix10_svc_drv_probe(). Most of resources in the probe are managed, but not this memremap() call. There is also no memunmap() call in the file. So switch to devm_memremap() to avoid a resource leak. In the Linux kernel, the following vulnerability has been resolved: firmware: stratix10-svc: Fix a potential resou... • https://git.kernel.org/stable/c/7ca5ce896524f5292e610b27d168269e5ab74951 •