CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 0CVE-2022-50643 – cifs: Fix xid leak in cifs_copy_file_range()
https://notcve.org/view.php?id=CVE-2022-50643
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifs_copy_file_range() If the file is used by swap, before return -EOPNOTSUPP, should free the xid, otherwise, the xid will be leaked. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifs_copy_file_range() If the file is used by swap, before return -EOPNOTSUPP, should free the xid, otherwise, the xid will be leaked. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix ... • https://git.kernel.org/stable/c/4e8aea30f7751ce7c4b158aa0c04e7744d281cc3 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-50642 – platform/chrome: cros_ec_typec: zero out stale pointers
https://notcve.org/view.php?id=CVE-2022-50642
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: platform/chrome: cros_ec_typec: zero out stale pointers `cros_typec_get_switch_handles` allocates four pointers when obtaining type-c switch handles. These pointers are all freed if failing to obtain any of them; therefore, pointers in `port` become stale. The stale pointers eventually cause use-after-free or double free in later code paths. Zeroing out all pointer fields after freeing to eliminate these stale pointers. In the Linux kernel,... • https://git.kernel.org/stable/c/f28adb41dab4a2795fd959750df57adffd2bb0be •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 0CVE-2022-50641 – HSI: omap_ssi: Fix refcount leak in ssi_probe
https://notcve.org/view.php?id=CVE-2022-50641
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: HSI: omap_ssi: Fix refcount leak in ssi_probe When returning or breaking early from a for_each_available_child_of_node() loop, we need to explicitly call of_node_put() on the child node to possibly release the node. In the Linux kernel, the following vulnerability has been resolved: HSI: omap_ssi: Fix refcount leak in ssi_probe When returning or breaking early from a for_each_available_child_of_node() loop, we need to explicitly call of_nod... • https://git.kernel.org/stable/c/b209e047bc743247f74ce79e8827ae1ed556bae0 •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2022-50640 – mmc: core: Fix kernel panic when remove non-standard SDIO card
https://notcve.org/view.php?id=CVE-2022-50640
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: mmc: core: Fix kernel panic when remove non-standard SDIO card SDIO tuple is only allocated for standard SDIO card, especially it causes memory corruption issues when the non-standard SDIO card has removed, which is because the card device's reference counter does not increase for it at sdio_init_func(), but all SDIO card device reference counter gets decreased at sdio_release_func(). In the Linux kernel, the following vulnerability has bee... • https://git.kernel.org/stable/c/6f51be3d37dff73cf8db771df4169f4c2f1cbf66 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-50639 – io-wq: Fix memory leak in worker creation
https://notcve.org/view.php?id=CVE-2022-50639
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: io-wq: Fix memory leak in worker creation If the CPU mask allocation for a node fails, then the memory allocated for the 'io_wqe' struct of the current node doesn't get freed on the error handling path, since it has not yet been added to the 'wqes' array. This was spotted when fuzzing v6.1-rc1 with Syzkaller: BUG: memory leak unreferenced object 0xffff8880093d5000 (size 1024): comm "syz-executor.2", pid 7701, jiffies 4295048595 (age 13.900s... • https://git.kernel.org/stable/c/0e03496d1967abf1ebb151a24318c07d07f41f7f •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2022-50638 – ext4: fix bug_on in __es_tree_search caused by bad boot loader inode
https://notcve.org/view.php?id=CVE-2022-50638
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: ext4: fix bug_on in __es_tree_search caused by bad boot loader inode We got a issue as fllows: ================================================================== kernel BUG at fs/ext4/extents_status.c:203! invalid opcode: 0000 [#1] PREEMPT SMP CPU: 1 PID: 945 Comm: cat Not tainted 6.0.0-next-20221007-dirty #349 RIP: 0010:ext4_es_end.isra.0+0x34/0x42 RSP: 0018:ffffc9000143b768 EFLAGS: 00010203 RAX: 0000000000000000 RBX: ffff8881769cd0b8 RCX:... • https://git.kernel.org/stable/c/393d1d1d76933886d5e1ce603214c9987589c6d5 •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2022-50637 – cpufreq: qcom-hw: Fix memory leak in qcom_cpufreq_hw_read_lut()
https://notcve.org/view.php?id=CVE-2022-50637
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom-hw: Fix memory leak in qcom_cpufreq_hw_read_lut() If "cpu_dev" fails to get opp table in qcom_cpufreq_hw_read_lut(), the program will return, resulting in "table" resource is not released. In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom-hw: Fix memory leak in qcom_cpufreq_hw_read_lut() If "cpu_dev" fails to get opp table in qcom_cpufreq_hw_read_lut(), the program will return, resulting in "tab... • https://git.kernel.org/stable/c/51c843cf77bb52db6df947c4fedcfc62ae3b7b30 •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2022-50636 – PCI: Fix pci_device_is_present() for VFs by checking PF
https://notcve.org/view.php?id=CVE-2022-50636
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_device_is_present() for VFs by checking PF pci_device_is_present() previously didn't work for VFs because it reads the Vendor and Device ID, which are 0xffff for VFs, which looks like they aren't present. Check the PF instead. Wei Gong reported that if virtio I/O is in progress when the driver is unbound or "0" is written to /sys/.../sriov_numvfs, the virtio I/O operation hangs, which may result in output like this: task:bash s... • https://git.kernel.org/stable/c/8496e85c20e7836b3dec97780e40f420a3ae2801 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-50635 – powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe()
https://notcve.org/view.php?id=CVE-2022-50635
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe() I found a null pointer reference in arch_prepare_kprobe(): # echo 'p cmdline_proc_show' > kprobe_events # echo 'p cmdline_proc_show+16' >> kprobe_events Kernel attempted to read user page (0) - exploit attempt? (uid: 0) BUG: Kernel NULL pointer dereference on read at 0x00000000 Faulting instruction address: 0xc000000000050bfc Oops: Kernel access of bad area, sig: 11 [#1] L... • https://git.kernel.org/stable/c/b4657f7650babc9bfb41ce875abe41b18604a105 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-50634 – power: supply: cw2015: Fix potential null-ptr-deref in cw_bat_probe()
https://notcve.org/view.php?id=CVE-2022-50634
09 Dec 2025 — In the Linux kernel, the following vulnerability has been resolved: power: supply: cw2015: Fix potential null-ptr-deref in cw_bat_probe() cw_bat_probe() calls create_singlethread_workqueue() and not checked the ret value, which may return NULL. And a null-ptr-deref may happen: cw_bat_probe() create_singlethread_workqueue() # failed, cw_bat->wq is NULL queue_delayed_work() queue_delayed_work_on() __queue_delayed_work() # warning here, but continue __queue_work() # access wq->flags, null-ptr-deref Check the r... • https://git.kernel.org/stable/c/b4c7715c10c106a041b0b3fabd26151c214ea394 •