| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2021-47000 | ceph: fix inode leak on getattr error in __fh_to_dentry | S | |
| CVE-2021-47001 | xprtrdma: Fix cwnd update ordering | S | |
| CVE-2021-47002 | SUNRPC: Fix null pointer dereference in svc_rqst_free() | S | |
| CVE-2021-47003 | dmaengine: idxd: Fix potential null dereference on pointer status | S | |
| CVE-2021-47004 | f2fs: fix to avoid touching checkpointed data in get_victim() | S | |
| CVE-2021-47005 | PCI: endpoint: Fix NULL pointer dereference for ->get_features() | S | |
| CVE-2021-47006 | ARM: 9064/1: hw_breakpoint: Do not directly check the event's overflow_handler hook | S | |
| CVE-2021-47007 | f2fs: fix panic during f2fs_resize_fs() | S | |
| CVE-2021-47008 | KVM: SVM: Make sure GHCB is mapped before updating | S | |
| CVE-2021-47009 | KEYS: trusted: Fix memory leak on object td | S | |
| CVE-2021-47010 | net: Only allow init netns to set default tcp cong to a restricted algo | S | |
| CVE-2021-47011 | mm: memcontrol: slab: fix obtain a reference to a freeing memcg | S | |
| CVE-2021-47012 | RDMA/siw: Fix a use after free in siw_alloc_mr | S | |
| CVE-2021-47013 | net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send | S | |
| CVE-2021-47014 | net/sched: act_ct: fix wild memory access when clearing fragments | S | |
| CVE-2021-47015 | bnxt_en: Fix RX consumer index logic in the error path. | S | |
| CVE-2021-47016 | m68k: mvme147,mvme16x: Don't wipe PCC timer config bits | S | |
| CVE-2021-47017 | ath10k: Fix a use after free in ath10k_htc_send_bundle | S | |
| CVE-2021-47018 | powerpc/64: Fix the definition of the fixmap area | S | |
| CVE-2021-47019 | mt76: mt7921: fix possible invalid register access | S | |
| CVE-2021-47020 | soundwire: stream: fix memory leak in stream config error path | S | |
| CVE-2021-47021 | mt76: mt7915: fix memleak when mt7915_unregister_device() | S | |
| CVE-2021-47022 | mt76: mt7615: fix memleak when mt7615_unregister_device() | S | |
| CVE-2021-47023 | net: marvell: prestera: fix port event handling on init | S | |
| CVE-2021-47024 | vsock/virtio: free queued packets when closing socket | S | |
| CVE-2021-47025 | iommu/mediatek: Always enable the clk on resume | S | |
| CVE-2021-47026 | RDMA/rtrs-clt: destroy sysfs after removing session from active list | S | |
| CVE-2021-47027 | mt76: mt7921: fix kernel crash when the firmware fails to download | S | |
| CVE-2021-47028 | mt76: mt7915: fix txrate reporting | S | |
| CVE-2021-47029 | mt76: connac: fix kernel warning adding monitor interface | S | |
| CVE-2021-47030 | mt76: mt7615: fix memory leak in mt7615_coredump_work | S | |
| CVE-2021-47031 | mt76: mt7921: fix memory leak in mt7921_coredump_work | S | |
| CVE-2021-47032 | mt76: mt7915: fix tx skb dma unmap | S | |
| CVE-2021-47033 | mt76: mt7615: fix tx skb dma unmap | S | |
| CVE-2021-47034 | powerpc/64s: Fix pte update for kernel memory on radix | S | |
| CVE-2021-47035 | iommu/vt-d: Remove WO permissions on second-level paging entries | S | |
| CVE-2021-47036 | udp: skip L4 aggregation for UDP tunnel packets | S | |
| CVE-2021-47037 | ASoC: q6afe-clocks: fix reprobing of the driver | S | |
| CVE-2021-47038 | Bluetooth: avoid deadlock between hci_dev->lock and socket lock | S | |
| CVE-2021-47039 | ataflop: potential out of bounds in do_format() | S | |
| CVE-2021-47040 | io_uring: fix overflows checks in provide buffers | S | |
| CVE-2021-47041 | nvmet-tcp: fix incorrect locking in state_change sk callback | S | |
| CVE-2021-47042 | drm/amd/display: Free local data after use | S | |
| CVE-2021-47043 | media: venus: core: Fix some resource leaks in the error path of 'venus_probe()' | S | |
| CVE-2021-47044 | sched/fair: Fix shift-out-of-bounds in load_balance() | S | |
| CVE-2021-47045 | scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() | S | |
| CVE-2021-47046 | drm/amd/display: Fix off by one in hdmi_14_process_transaction() | S | |
| CVE-2021-47047 | spi: spi-zynqmp-gqspi: return -ENOMEM if dma_map_single fails | S | |
| CVE-2021-47048 | spi: spi-zynqmp-gqspi: fix use-after-free in zynqmp_qspi_exec_op | S | |
| CVE-2021-47049 | Drivers: hv: vmbus: Use after free in __vmbus_open() | S | |
| CVE-2021-47050 | memory: renesas-rpc-if: fix possible NULL pointer dereference of resource | S | |
| CVE-2021-47051 | spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() | S | |
| CVE-2021-47052 | crypto: sa2ul - Fix memory leak of rxd | S | |
| CVE-2021-47053 | crypto: sun8i-ss - Fix memory leak of pad | S | |
| CVE-2021-47054 | bus: qcom: Put child node before return | S | |
| CVE-2021-47055 | mtd: require write permissions for locking and badblock ioctls | S | |
| CVE-2021-47056 | crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init | S | |
| CVE-2021-47057 | crypto: sun8i-ss - Fix memory leak of object d when dma_iv fails to map | S | |
| CVE-2021-47058 | regmap: set debugfs_name to NULL after it is freed | S | |
| CVE-2021-47059 | crypto: sun8i-ss - fix result memory leak on error path | S | |
| CVE-2021-47060 | KVM: Stop looking for coalesced MMIO zones if the bus is destroyed | S | |
| CVE-2021-47061 | KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU | S | |
| CVE-2021-47062 | KVM: SVM: Use online_vcpus, not created_vcpus, to iterate over vCPUs | S | |
| CVE-2021-47063 | drm: bridge/panel: Cleanup connector on bridge detach | S | |
| CVE-2021-47064 | mt76: fix potential DMA mapping leak | S | |
| CVE-2021-47065 | rtw88: Fix array overrun in rtw_get_tx_power_params() | S | |
| CVE-2021-47066 | async_xor: increase src_offs when dropping destination page | S | |
| CVE-2021-47067 | soc/tegra: regulators: Fix locking up when voltage-spread is out of range | S | |
| CVE-2021-47068 | net/nfc: fix use-after-free llcp_sock_bind/connect | S | |
| CVE-2021-47069 | ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry | S | |
| CVE-2021-47070 | uio_hv_generic: Fix another memory leak in error handling paths | S | |
| CVE-2021-47071 | uio_hv_generic: Fix a memory leak in error handling paths | S | |
| CVE-2021-47072 | btrfs: fix removed dentries still existing after log is synced | S | |
| CVE-2021-47073 | platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios | S | |
| CVE-2021-47074 | nvme-loop: fix memory leak in nvme_loop_create_ctrl() | S | |
| CVE-2021-47075 | nvmet: fix memory leak in nvmet_alloc_ctrl() | S | |
| CVE-2021-47076 | RDMA/rxe: Return CQE error if invalid lkey was supplied | S | |
| CVE-2021-47077 | scsi: qedf: Add pointer checks in qedf_update_link_speed() | S | |
| CVE-2021-47078 | RDMA/rxe: Clear all QP fields if creation failed | S | |
| CVE-2021-47079 | platform/x86: ideapad-laptop: fix a NULL pointer dereference | S | |
| CVE-2021-47080 | RDMA/core: Prevent divide-by-zero error triggered by the user | S | |
| CVE-2021-47081 | habanalabs/gaudi: Fix a potential use after free in gaudi_memset_device_memory | S | |
| CVE-2021-47082 | tun: avoid double free in tun_free_netdev | S | |
| CVE-2021-47083 | pinctrl: mediatek: fix global-out-of-bounds issue | S | |
| CVE-2021-47084 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47085 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47086 | phonet/pep: refuse to enable an unbound pipe | S | |
| CVE-2021-47087 | tee: optee: Fix incorrect page free bug | S | |
| CVE-2021-47088 | mm/damon/dbgfs: protect targets destructions with kdamond_lock | S | |
| CVE-2021-47089 | kfence: fix memory leak when cat kfence objects | S | |
| CVE-2021-47090 | mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() | E S | |
| CVE-2021-47091 | mac80211: fix locking in ieee80211_start_ap error path | S | |
| CVE-2021-47092 | KVM: VMX: Always clear vmx->fail on emulation_required | E S | |
| CVE-2021-47093 | platform/x86: intel_pmc_core: fix memleak on registration failure | S | |
| CVE-2021-47094 | KVM: x86/mmu: Don't advance iterator after restart due to yielding | S | |
| CVE-2021-47095 | ipmi: ssif: initialize ssif_info->client early | S | |
| CVE-2021-47096 | ALSA: rawmidi - fix the uninitalized user_pversion | S | |
| CVE-2021-47097 | Input: elantech - fix stack out of bound access in elantech_change_report_id() | E S | |
| CVE-2021-47098 | hwmon: (lm90) Prevent integer overflow/underflow in hysteresis calculations | S | |
| CVE-2021-47099 | veth: ensure skb entering GRO are not cloned. | S | |
| CVE-2021-47100 | ipmi: Fix UAF when uninstall ipmi_si and ipmi_msghandler module | S | |
| CVE-2021-47101 | asix: fix uninit-value in asix_mdio_read() | S | |
| CVE-2021-47102 | net: marvell: prestera: fix incorrect structure access | E S | |
| CVE-2021-47103 | inet: fully convert sk->sk_rx_dst to RCU rules | E S | |
| CVE-2021-47104 | IB/qib: Fix memory leak in qib_user_sdma_queue_pkts() | S | |
| CVE-2021-47105 | ice: xsk: return xsk buffers back to pool when cleaning the ring | E S | |
| CVE-2021-47106 | netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() | S | |
| CVE-2021-47107 | NFSD: Fix READDIR buffer overflow | E S | |
| CVE-2021-47108 | drm/mediatek: hdmi: Perform NULL pointer check for mtk_hdmi_conf | S | |
| CVE-2021-47109 | neighbour: allow NUD_NOARP entries to be forced GCed | S | |
| CVE-2021-47110 | x86/kvm: Disable kvmclock on all CPUs on shutdown | S | |
| CVE-2021-47111 | xen-netback: take a reference to the RX task thread | S | |
| CVE-2021-47112 | x86/kvm: Teardown PV features on boot CPU as well | S | |
| CVE-2021-47113 | btrfs: abort in rename_exchange if we fail to insert the second ref | S | |
| CVE-2021-47114 | ocfs2: fix data corruption by fallocate | S | |
| CVE-2021-47115 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47116 | ext4: fix memory leak in ext4_mb_init_backend on error path. | S | |
| CVE-2021-47117 | ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed | S | |
| CVE-2021-47118 | pid: take a reference when initializing `cad_pid` | S | |
| CVE-2021-47119 | ext4: fix memory leak in ext4_fill_super | S | |
| CVE-2021-47120 | HID: magicmouse: fix NULL-deref on disconnect | S | |
| CVE-2021-47121 | net: caif: fix memory leak in cfusbl_device_notify | S | |
| CVE-2021-47122 | net: caif: fix memory leak in caif_device_notify | S | |
| CVE-2021-47123 | io_uring: fix ltout double free on completion race | S | |
| CVE-2021-47124 | io_uring: fix link timeout refs | S | |
| CVE-2021-47125 | sch_htb: fix refcount leak in htb_parent_to_leaf_offload | S | |
| CVE-2021-47126 | ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions | S | |
| CVE-2021-47127 | ice: track AF_XDP ZC enabled queues in bitmap | S | |
| CVE-2021-47128 | bpf, lockdown, audit: Fix buggy SELinux lockdown permission checks | S | |
| CVE-2021-47129 | netfilter: nft_ct: skip expectations for confirmed conntrack | S | |
| CVE-2021-47130 | nvmet: fix freeing unallocated p2pmem | S | |
| CVE-2021-47131 | net/tls: Fix use-after-free after the TLS device goes down and up | S | |
| CVE-2021-47132 | mptcp: fix sk_forward_memory corruption on retransmission | S | |
| CVE-2021-47133 | HID: amd_sfh: Fix memory leak in amd_sfh_work | S | |
| CVE-2021-47134 | efi/fdt: fix panic when no valid fdt found | S | |
| CVE-2021-47135 | mt76: mt7921: fix possible AOOB issue in mt7921_mcu_tx_rate_report | S | |
| CVE-2021-47136 | net: zero-initialize tc skb extension on allocation | S | |
| CVE-2021-47137 | net: lantiq: fix memory corruption in RX ring | S | |
| CVE-2021-47138 | cxgb4: avoid accessing registers when clearing filters | S | |
| CVE-2021-47139 | net: hns3: put off calling register_netdev() until client initialize complete | S | |
| CVE-2021-47140 | iommu/amd: Clear DMA ops when switching domain | S | |
| CVE-2021-47141 | gve: Add NULL pointer checks when freeing irqs. | S | |
| CVE-2021-47142 | drm/amdgpu: Fix a use-after-free | S | |
| CVE-2021-47143 | net/smc: remove device from smcd_dev_list after failed device_add() | S | |
| CVE-2021-47144 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47145 | btrfs: do not BUG_ON in link_to_fixup_dir | S | |
| CVE-2021-47146 | mld: fix panic in mld_newpack() | S | |
| CVE-2021-47147 | ptp: ocp: Fix a resource leak in an error handling path | | |
| CVE-2021-47148 | octeontx2-pf: fix a buffer overflow in otx2_set_rxfh_context() | S | |
| CVE-2021-47149 | net: fujitsu: fix potential null-ptr-deref | S | |
| CVE-2021-47150 | net: fec: fix the potential memory leak in fec_enet_init() | S | |
| CVE-2021-47151 | interconnect: qcom: bcm-voter: add a missing of_node_put() | S | |
| CVE-2021-47152 | mptcp: fix data stream corruption | S | |
| CVE-2021-47153 | i2c: i801: Don't generate an interrupt on bus reset | | |
| CVE-2021-47154 | The Net::CIDR::Lite module before 0.22 for Perl does not properly consider extraneous zero character... | | |
| CVE-2021-47155 | The Net::IPV4Addr module 0.10 for Perl does not properly consider extraneous zero characters in an I... | | |
| CVE-2021-47156 | The Net::IPAddress::Util module before 5.000 for Perl does not properly consider extraneous zero cha... | | |
| CVE-2021-47157 | The Kossy module before 0.60 for Perl allows JSON hijacking because of X-Requested-With mishandling.... | | |
| CVE-2021-47158 | net: dsa: sja1105: add error handling in sja1105_setup() | S | |
| CVE-2021-47159 | net: dsa: fix a crash if ->get_sset_count() fails | S | |
| CVE-2021-47160 | net: dsa: mt7530: fix VLAN traffic leaks | S | |
| CVE-2021-47161 | spi: spi-fsl-dspi: Fix a resource leak in an error handling path | S | |
| CVE-2021-47162 | tipc: skb_linearize the head skb when reassembling msgs | S | |
| CVE-2021-47163 | tipc: wait and exit until all work queues are done | S | |
| CVE-2021-47164 | net/mlx5e: Fix null deref accessing lag dev | S | |
| CVE-2021-47165 | drm/meson: fix shutdown crash when component not probed | S | |
| CVE-2021-47166 | NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce() | S | |
| CVE-2021-47167 | NFS: Fix an Oopsable condition in __nfs_pageio_add_request() | S | |
| CVE-2021-47168 | NFS: fix an incorrect limit in filelayout_decode_layout() | S | |
| CVE-2021-47169 | serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' | S | |
| CVE-2021-47170 | USB: usbfs: Don't WARN about excessively large memory allocations | S | |
| CVE-2021-47171 | net: usb: fix memory leak in smsc75xx_bind | S | |
| CVE-2021-47172 | iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers | S | |
| CVE-2021-47173 | misc/uss720: fix memory leak in uss720_probe | S | |
| CVE-2021-47174 | netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version | S | |
| CVE-2021-47175 | net/sched: fq_pie: fix OOB access in the traffic path | S | |
| CVE-2021-47176 | s390/dasd: add missing discipline function | S | |
| CVE-2021-47177 | iommu/vt-d: Fix sysfs leak in alloc_iommu() | S | |
| CVE-2021-47178 | scsi: target: core: Avoid smp_processor_id() in preemptible code | S | |
| CVE-2021-47179 | NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() | S | |
| CVE-2021-47180 | NFC: nci: fix memory leak in nci_allocate_device | S | |
| CVE-2021-47181 | usb: musb: tusb6010: check return value after calling platform_get_resource() | S | |
| CVE-2021-47182 | scsi: core: Fix scsi_mode_sense() buffer length handling | S | |
| CVE-2021-47183 | scsi: lpfc: Fix link down processing to address NULL pointer dereference | S | |
| CVE-2021-47184 | i40e: Fix NULL ptr dereference on VSI filter sync | S | |
| CVE-2021-47185 | tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc | S | |
| CVE-2021-47186 | tipc: check for null after calling kmemdup | S | |
| CVE-2021-47187 | arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency | S | |
| CVE-2021-47188 | scsi: ufs: core: Improve SCSI abort handling | S | |
| CVE-2021-47189 | btrfs: fix memory ordering between normal and ordered work functions | S | |
| CVE-2021-47190 | perf bpf: Avoid memory leak from perf_env__insert_btf() | S | |
| CVE-2021-47191 | scsi: scsi_debug: Fix out-of-bound read in resp_readcap16() | S | |
| CVE-2021-47192 | scsi: core: sysfs: Fix hang when device state is set via sysfs | S | |
| CVE-2021-47193 | scsi: pm80xx: Fix memory leak during rmmod | S | |
| CVE-2021-47194 | cfg80211: call cfg80211_stop_ap when switch from P2P_GO type | S | |
| CVE-2021-47195 | spi: fix use-after-free of the add_lock mutex | S | |
| CVE-2021-47196 | RDMA/core: Set send and receive CQ before forwarding to the driver | S | |
| CVE-2021-47197 | net/mlx5e: nullify cq->dbg pointer in mlx5_debug_cq_remove() | S | |
| CVE-2021-47198 | scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine | S | |
| CVE-2021-47199 | net/mlx5e: CT, Fix multiple allocations and memleak of mod acts | S | |
| CVE-2021-47200 | drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap | S | |
| CVE-2021-47201 | iavf: free q_vectors before queues in iavf_disable_vf | S | |
| CVE-2021-47202 | thermal: Fix NULL pointer dereferences in of_thermal_ functions | S | |
| CVE-2021-47203 | scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() | S | |
| CVE-2021-47204 | net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove | S | |
| CVE-2021-47205 | clk: sunxi-ng: Unregister clocks/resets when unbinding | S | |
| CVE-2021-47206 | usb: host: ohci-tmio: check return value after calling platform_get_resource() | S | |
| CVE-2021-47207 | ALSA: gus: fix null pointer dereference on pointer block | S | |
| CVE-2021-47208 | The Mojolicious module before 9.11 for Perl has a bug in format detection that can potentially be ex... | E S | |
| CVE-2021-47209 | sched/fair: Prevent dead task groups from regaining cfs_rq's | S | |
| CVE-2021-47210 | usb: typec: tipd: Remove WARN_ON in tps6598x_block_read | S | |
| CVE-2021-47211 | ALSA: usb-audio: fix null pointer dereference on pointer cs_desc | S | |
| CVE-2021-47212 | net/mlx5: Update error handler for UCTX and UMEM | S | |
| CVE-2021-47213 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47214 | hugetlb, userfaultfd: fix reservation restore on userfaultfd error | S | |
| CVE-2021-47215 | net/mlx5e: kTLS, Fix crash in RX resync flow | S | |
| CVE-2021-47216 | scsi: advansys: Fix kernel pointer leak | S | |
| CVE-2021-47217 | x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails | S | |
| CVE-2021-47218 | selinux: fix NULL-pointer dereference when hashtab allocation fails | S | |
| CVE-2021-47219 | scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() | S | |
| CVE-2021-47220 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47221 | mm/slub: actually fix freelist pointer vs redzoning | S | |
| CVE-2021-47222 | net: bridge: fix vlan tunnel dst refcnt when egressing | S | |
| CVE-2021-47223 | net: bridge: fix vlan tunnel dst null pointer dereference | S | |
| CVE-2021-47224 | net: ll_temac: Make sure to free skb when it is completely used | S | |
| CVE-2021-47225 | mac80211: fix deadlock in AP/VLAN handling | S | |
| CVE-2021-47226 | x86/fpu: Invalidate FPU state after a failed XRSTOR from a user buffer | S | |
| CVE-2021-47227 | x86/fpu: Prevent state corruption in __fpu__restore_sig() | S | |
| CVE-2021-47228 | x86/ioremap: Map EFI-reserved memory as encrypted for SEV | S | |
| CVE-2021-47229 | PCI: aardvark: Fix kernel panic during PIO transfer | S | |
| CVE-2021-47230 | KVM: x86: Immediately reset the MMU context when the SMM flag is cleared | S | |
| CVE-2021-47231 | can: mcba_usb: fix memory leak in mcba_usb | S | |
| CVE-2021-47232 | can: j1939: fix Use-after-Free, hold skb ref while in use | S | |
| CVE-2021-47233 | regulator: rt4801: Fix NULL pointer dereference if priv->enable_gpios is NULL | S | |
| CVE-2021-47234 | phy: phy-mtk-tphy: Fix some resource leaks in mtk_phy_init() | S | |
| CVE-2021-47235 | net: ethernet: fix potential use-after-free in ec_bhf_remove | S | |
| CVE-2021-47236 | net: cdc_eem: fix tx fixup skb leak | S | |
| CVE-2021-47237 | net: hamradio: fix memory leak in mkiss_close | S | |
| CVE-2021-47238 | net: ipv4: fix memory leak in ip_mc_add1_src | S | |
| CVE-2021-47239 | net: usb: fix possible use-after-free in smsc75xx_bind | S | |
| CVE-2021-47240 | net: qrtr: fix OOB Read in qrtr_endpoint_post | S | |
| CVE-2021-47241 | ethtool: strset: fix message length calculation | S | |
| CVE-2021-47242 | mptcp: fix soft lookup in subflow_error_report() | S | |
| CVE-2021-47243 | sch_cake: Fix out of bounds when parsing TCP options and header | S | |
| CVE-2021-47244 | mptcp: Fix out of bounds when parsing TCP options | S | |
| CVE-2021-47245 | netfilter: synproxy: Fix out of bounds when parsing TCP options | S | |
| CVE-2021-47246 | net/mlx5e: Fix page reclaim for dead peer hairpin | S | |
| CVE-2021-47247 | net/mlx5e: Fix use-after-free of encap entry in neigh update handler | S | |
| CVE-2021-47248 | udp: fix race between close() and udp_abort() | S | |
| CVE-2021-47249 | net: rds: fix memory leak in rds_recvmsg | S | |
| CVE-2021-47250 | net: ipv4: fix memory leak in netlbl_cipsov4_add_std | S | |
| CVE-2021-47251 | mac80211: fix skb length check in ieee80211_scan_rx() | S | |
| CVE-2021-47252 | batman-adv: Avoid WARN_ON timing related checks | S | |
| CVE-2021-47253 | drm/amd/display: Fix potential memory leak in DMUB hw_init | S | |
| CVE-2021-47254 | gfs2: Fix use-after-free in gfs2_glock_shrink_scan | S | |
| CVE-2021-47255 | kvm: LAPIC: Restore guard to prevent illegal APIC register access | S | |
| CVE-2021-47256 | mm/memory-failure: make sure wait for page writeback in memory_failure | S | |
| CVE-2021-47257 | net: ieee802154: fix null deref in parse dev addr | S | |
| CVE-2021-47258 | scsi: core: Fix error handling of scsi_host_alloc() | S | |
| CVE-2021-47259 | NFS: Fix use-after-free in nfs4_init_client() | S | |
| CVE-2021-47260 | NFS: Fix a potential NULL dereference in nfs_get_client() | S | |
| CVE-2021-47261 | IB/mlx5: Fix initializing CQ fragments buffer | S | |
| CVE-2021-47262 | KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message | S | |
| CVE-2021-47263 | gpio: wcd934x: Fix shift-out-of-bounds error | S | |
| CVE-2021-47264 | ASoC: core: Fix Null-point-dereference in fmt_single_name() | S | |
| CVE-2021-47265 | RDMA: Verify port when creating flow rule | S | |
| CVE-2021-47266 | RDMA/ipoib: Fix warning caused by destroying non-initial netns | S | |
| CVE-2021-47267 | usb: fix various gadget panics on 10gbps cabling | S | |
| CVE-2021-47268 | usb: typec: tcpm: cancel vdm and state machine hrtimer when unregister tcpm port | S | |
| CVE-2021-47269 | usb: dwc3: ep0: fix NULL pointer exception | S | |
| CVE-2021-47270 | usb: fix various gadgets null ptr deref on 10gbps cabling. | S | |
| CVE-2021-47271 | usb: cdnsp: Fix deadlock issue in cdnsp_thread_irq_handler | S | |
| CVE-2021-47272 | usb: dwc3: gadget: Bail from dwc3_gadget_exit() if dwc->gadget is NULL | S | |
| CVE-2021-47273 | usb: dwc3-meson-g12a: fix usb2 PHY glue init when phy0 is disabled | S | |
| CVE-2021-47274 | tracing: Correct the length check which causes memory corruption | S | |
| CVE-2021-47275 | bcache: avoid oversized read request in cache missing code path | S | |
| CVE-2021-47276 | ftrace: Do not blindly read the ip address in ftrace_bug() | S | |
| CVE-2021-47277 | kvm: avoid speculation-based attacks from out-of-range memslot accesses | S | |
| CVE-2021-47278 | bus: mhi: pci_generic: Fix possible use-after-free in mhi_pci_remove() | S | |
| CVE-2021-47279 | usb: misc: brcmstb-usb-pinmap: check return value after calling platform_get_resource() | S | |
| CVE-2021-47280 | drm: Fix use-after-free read in drm_getunique() | S | |
| CVE-2021-47281 | ALSA: seq: Fix race of snd_seq_timer_open() | S | |
| CVE-2021-47282 | spi: bcm2835: Fix out-of-bounds access with more than 4 slaves | S | |
| CVE-2021-47283 | net:sfc: fix non-freed irq in legacy irq mode | S | |
| CVE-2021-47284 | isdn: mISDN: netjet: Fix crash in nj_probe: | S | |
| CVE-2021-47285 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47286 | bus: mhi: core: Validate channel ID when processing command completions | S | |
| CVE-2021-47287 | driver core: auxiliary bus: Fix memory leak when driver_register() fail | S | |
| CVE-2021-47288 | media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() | S | |
| CVE-2021-47289 | ACPI: fix NULL pointer dereference | S | |
| CVE-2021-47290 | scsi: target: Fix NULL dereference on XCOPY completion | S | |
| CVE-2021-47291 | ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions | S | |
| CVE-2021-47292 | io_uring: fix memleak in io_init_wq_offload() | S | |
| CVE-2021-47293 | net/sched: act_skbmod: Skip non-Ethernet packets | S | |
| CVE-2021-47294 | netrom: Decrease sock refcount when sock timers expire | S | |
| CVE-2021-47295 | net: sched: fix memory leak in tcindex_partial_destroy_work | S | |
| CVE-2021-47296 | KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak | S | |
| CVE-2021-47297 | net: fix uninit-value in caif_seqpkt_sendmsg | S | |
| CVE-2021-47298 | bpf, sockmap: Fix potential memory leak on unlikely error case | S | |
| CVE-2021-47299 | xdp, net: Fix use-after-free in bpf_xdp_link_release | S | |
| CVE-2021-47300 | bpf: Fix tail_call_reachable rejection for interpreter when jit failed | S | |
| CVE-2021-47301 | igb: Fix use-after-free error during reset | S | |
| CVE-2021-47302 | igc: Fix use-after-free error during reset | S | |
| CVE-2021-47303 | bpf: Track subprog poke descriptors correctly and fix use-after-free | S | |
| CVE-2021-47304 | tcp: fix tcp_init_transfer() to not reset icsk_ca_initialized | S | |
| CVE-2021-47305 | dma-buf/sync_file: Don't leak fences on merge failure | S | |
| CVE-2021-47306 | net: fddi: fix UAF in fza_probe | S | |
| CVE-2021-47307 | cifs: prevent NULL deref in cifs_compose_mount_options() | S | |
| CVE-2021-47308 | scsi: libfc: Fix array index out of bound exception | S | |
| CVE-2021-47309 | net: validate lwtstate->data before returning from skb_tunnel_info() | S | |
| CVE-2021-47310 | net: ti: fix UAF in tlan_remove_one | S | |
| CVE-2021-47311 | net: qcom/emac: fix UAF in emac_remove | S | |
| CVE-2021-47312 | netfilter: nf_tables: Fix dereference of null pointer flow | S | |
| CVE-2021-47313 | cpufreq: CPPC: Fix potential memleak in cppc_cpufreq_cpu_init | S | |
| CVE-2021-47314 | memory: fsl_ifc: fix leak of private memory on probe failure | S | |
| CVE-2021-47315 | memory: fsl_ifc: fix leak of IO mapping on probe failure | S | |
| CVE-2021-47316 | nfsd: fix NULL dereference in nfs3svc_encode_getaclres | S | |
| CVE-2021-47317 | powerpc/bpf: Fix detecting BPF atomic instructions | S | |
| CVE-2021-47318 | arch_topology: Avoid use-after-free for scale_freq_data | S | |
| CVE-2021-47319 | virtio-blk: Fix memory leak among suspend/resume procedure | S | |
| CVE-2021-47320 | nfs: fix acl memory leak of posix_acl_create() | S | |
| CVE-2021-47321 | watchdog: Fix possible use-after-free by calling del_timer_sync() | S | |
| CVE-2021-47322 | NFSv4: Fix an Oops in pnfs_mark_request_commit() when doing O_DIRECT | S | |
| CVE-2021-47323 | watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() | S | |
| CVE-2021-47324 | watchdog: Fix possible use-after-free in wdt_startup() | S | |
| CVE-2021-47325 | iommu/arm-smmu: Fix arm_smmu_device refcount leak in address translation | S | |
| CVE-2021-47326 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47327 | iommu/arm-smmu: Fix arm_smmu_device refcount leak when arm_smmu_rpm_get fails | S | |
| CVE-2021-47328 | scsi: iscsi: Fix conn use after free during resets | S | |
| CVE-2021-47329 | scsi: megaraid_sas: Fix resource leak in case of probe failure | S | |
| CVE-2021-47330 | tty: serial: 8250: serial_cs: Fix a memory leak in error handling path | S | |
| CVE-2021-47331 | usb: common: usb-conn-gpio: fix NULL pointer dereference of charger | S | |
| CVE-2021-47332 | ALSA: usx2y: Don't call free_pages_exact() with NULL address | S | |
| CVE-2021-47333 | misc: alcor_pci: fix null-ptr-deref when there is no PCI bridge | S | |
| CVE-2021-47334 | misc/libmasm/module: Fix two use after free in ibmasm_init_one | S | |
| CVE-2021-47335 | f2fs: fix to avoid racing on fsync_entry_slab by multi filesystem instances | S | |
| CVE-2021-47336 | smackfs: restrict bytes count in smk_set_cipso() | S | |
| CVE-2021-47337 | scsi: core: Fix bad pointer dereference when ehandler kthread is invalid | S | |
| CVE-2021-47338 | fbmem: Do not delete the mode that is still in use | S | |
| CVE-2021-47339 | media: v4l2-core: explicitly clear ioctl input data | S | |
| CVE-2021-47340 | jfs: fix GPF in diFree | S | |
| CVE-2021-47341 | KVM: mmio: Fix use-after-free Read in kvm_vm_ioctl_unregister_coalesced_mmio | S | |
| CVE-2021-47342 | ext4: fix possible UAF when remounting r/o a mmp-protected file system | S | |
| CVE-2021-47343 | dm btree remove: assign new_root only when removal succeeds | S | |
| CVE-2021-47344 | media: zr364xx: fix memory leak in zr364xx_start_readpipe | S | |
| CVE-2021-47345 | RDMA/cma: Fix rdma_resolve_route() memory leak | S | |
| CVE-2021-47346 | coresight: tmc-etf: Fix global-out-of-bounds in tmc_update_etf_buffer() | S | |
| CVE-2021-47347 | wl1251: Fix possible buffer overflow in wl1251_cmd_scan | S | |
| CVE-2021-47348 | drm/amd/display: Avoid HDCP over-read and corruption | S | |
| CVE-2021-47349 | mwifiex: bring down link before deleting interface | S | |
| CVE-2021-47350 | powerpc/mm: Fix lockup on kernel exec fault | S | |
| CVE-2021-47351 | ubifs: Fix races between xattr_{set|get} and listxattr operations | S | |
| CVE-2021-47352 | virtio-net: Add validation for used length | S | |
| CVE-2021-47353 | udf: Fix NULL pointer dereference in udf_symlink function | S | |
| CVE-2021-47354 | drm/sched: Avoid data corruptions | S | |
| CVE-2021-47355 | atm: nicstar: Fix possible use-after-free in nicstar_cleanup() | S | |
| CVE-2021-47356 | mISDN: fix possible use-after-free in HFC_cleanup() | S | |
| CVE-2021-47357 | atm: iphase: fix possible use-after-free in ia_module_exit() | S | |
| CVE-2021-47358 | staging: greybus: uart: fix tty use after free | S | |
| CVE-2021-47359 | cifs: Fix soft lockup during fsstress | S | |
| CVE-2021-47360 | binder: make sure fd closes complete | S | |
| CVE-2021-47361 | mcb: fix error handling in mcb_alloc_bus() | S | |
| CVE-2021-47362 | drm/amd/pm: Update intermediate power state for SI | S | |
| CVE-2021-47363 | nexthop: Fix division by zero while replacing a resilient group | S | |
| CVE-2021-47364 | comedi: Fix memory leak in compat_insnlist() | S | |
| CVE-2021-47365 | afs: Fix page leak | S | |
| CVE-2021-47366 | afs: Fix corruption in reads at fpos 2G-4G from an OpenAFS server | S | |
| CVE-2021-47367 | virtio-net: fix pages leaking when building skb in big mode | S | |
| CVE-2021-47368 | enetc: Fix illegal access when reading affinity_hint | S | |
| CVE-2021-47369 | s390/qeth: fix NULL deref in qeth_clear_working_pool_list() | S | |
| CVE-2021-47370 | mptcp: ensure tx skbs always have the MPTCP ext | S | |
| CVE-2021-47371 | nexthop: Fix memory leaks in nexthop notification chain listeners | S | |
| CVE-2021-47372 | net: macb: fix use after free on rmmod | S | |
| CVE-2021-47373 | irqchip/gic-v3-its: Fix potential VPE leak on error | S | |
| CVE-2021-47374 | dma-debug: prevent an error message from causing runtime problems | S | |
| CVE-2021-47375 | blktrace: Fix uaf in blk_trace access after removing by sysfs | S | |
| CVE-2021-47376 | bpf: Add oversize check before call kvcalloc() | | |
| CVE-2021-47377 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47378 | nvme-rdma: destroy cm id before destroy qp to avoid use after free | S | |
| CVE-2021-47379 | blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd | S | |
| CVE-2021-47380 | HID: amd_sfh: Fix potential NULL pointer dereference | S | |
| CVE-2021-47381 | ASoC: SOF: Fix DSP oops stack dump output contents | | |
| CVE-2021-47382 | s390/qeth: fix deadlock during failing recovery | S | |
| CVE-2021-47383 | tty: Fix out-of-bound vmalloc access in imageblit | | |
| CVE-2021-47384 | hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field | S | |
| CVE-2021-47385 | hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field | S | |
| CVE-2021-47386 | hwmon: (w83791d) Fix NULL pointer dereference by removing unnecessary structure field | S | |
| CVE-2021-47387 | cpufreq: schedutil: Use kobject release() method to free sugov_tunables | | |
| CVE-2021-47388 | mac80211: fix use-after-free in CCMP/GCMP RX | S | |
| CVE-2021-47389 | KVM: SVM: fix missing sev_decommission in sev_receive_start | S | |
| CVE-2021-47390 | KVM: x86: Fix stack-out-of-bounds memory access from ioapic_write_indirect() | S | |
| CVE-2021-47391 | RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests | | |
| CVE-2021-47392 | RDMA/cma: Fix listener leak in rdma_cma_listen_on_all() failure | | |
| CVE-2021-47393 | hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs | | |
| CVE-2021-47394 | netfilter: nf_tables: unlink table before deleting it | S | |
| CVE-2021-47395 | mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap | | |
| CVE-2021-47396 | mac80211-hwsim: fix late beacon hrtimer handling | | |
| CVE-2021-47397 | sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb | S | |
| CVE-2021-47398 | RDMA/hfi1: Fix kernel pointer leak | | |
| CVE-2021-47399 | ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup | S | |
| CVE-2021-47400 | net: hns3: do not allow call hns3_nic_net_open repeatedly | | |
| CVE-2021-47401 | ipack: ipoctal: fix stack information leak | | |
| CVE-2021-47402 | net: sched: flower: protect fl_walk() with rcu | S | |
| CVE-2021-47403 | ipack: ipoctal: fix module reference leak | S | |
| CVE-2021-47404 | HID: betop: fix slab-out-of-bounds Write in betop_probe | S | |
| CVE-2021-47405 | HID: usbhid: free raw_report buffers in usbhid_stop | S | |
| CVE-2021-47406 | ext4: add error checking to ext4_ext_replay_set_iblocks() | S | |
| CVE-2021-47407 | KVM: x86: Handle SRCU initialization failure during page track init | S | |
| CVE-2021-47408 | netfilter: conntrack: serialize hash resizes and cleanups | | |
| CVE-2021-47409 | usb: dwc2: check return value after calling platform_get_resource() | S | |
| CVE-2021-47410 | drm/amdkfd: fix svm_migrate_fini warning | | |
| CVE-2021-47411 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47412 | block: don't call rq_qos_ops->done_bio if the bio isn't tracked | | |
| CVE-2021-47413 | usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle | S | |
| CVE-2021-47414 | riscv: Flush current cpu icache before other cpus | | |
| CVE-2021-47415 | iwlwifi: mvm: Fix possible NULL dereference | S | |
| CVE-2021-47416 | phy: mdio: fix memory leak | S | |
| CVE-2021-47417 | libbpf: Fix memory leak in strset | S | |
| CVE-2021-47418 | net_sched: fix NULL deref in fifo_set_limit() | S | |
| CVE-2021-47419 | net/sched: sch_taprio: properly cancel timer from taprio_destroy() | | |
| CVE-2021-47420 | drm/amdkfd: fix a potential ttm->sg memory leak | S | |
| CVE-2021-47421 | drm/amdgpu: handle the case of pci_channel_io_frozen only in amdgpu_pci_resume | | |
| CVE-2021-47422 | drm/nouveau/kms/nv50-: fix file release memory leak | S | |
| CVE-2021-47423 | drm/nouveau/debugfs: fix file release memory leak | S | |
| CVE-2021-47424 | i40e: Fix freeing of uninitialized misc IRQ vector | | |
| CVE-2021-47425 | i2c: acpi: fix resource leak in reconfiguration device addition | | |
| CVE-2021-47426 | bpf, s390: Fix potential memory leak about jit_data | S | |
| CVE-2021-47427 | scsi: iscsi: Fix iscsi_task use after free | S | |
| CVE-2021-47428 | powerpc/64s: fix program check interrupt emergency stack path | | |
| CVE-2021-47429 | powerpc/64s: Fix unrecoverable MCE calling async handler from NMI | | |
| CVE-2021-47430 | x86/entry: Clear X86_FEATURE_SMAP when CONFIG_X86_SMAP=n | | |
| CVE-2021-47431 | drm/amdgpu: fix gart.bo pin_count leak | | |
| CVE-2021-47432 | lib/generic-radix-tree.c: Don't overflow in peek() | S | |
| CVE-2021-47433 | btrfs: fix abort logic in btrfs_replace_file_extents | | |
| CVE-2021-47434 | xhci: Fix command ring pointer corruption while aborting a command | | |
| CVE-2021-47435 | dm: fix mempool NULL pointer race when completing IO | S | |
| CVE-2021-47436 | usb: musb: dsps: Fix the probe error path | S | |
| CVE-2021-47437 | iio: adis16475: fix deadlock on frequency set | S | |
| CVE-2021-47438 | net/mlx5e: Fix memory leak in mlx5_core_destroy_cq() error path | S | |
| CVE-2021-47439 | net: dsa: microchip: Added the condition for scheduling ksz_mib_read_work | S | |
| CVE-2021-47440 | net: encx24j600: check error in devm_regmap_init_encx24j600 | S | |
| CVE-2021-47441 | mlxsw: thermal: Fix out-of-bounds memory accesses | S | |
| CVE-2021-47442 | NFC: digital: fix possible memory leak in digital_in_send_sdd_req() | S | |
| CVE-2021-47443 | NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() | S | |
| CVE-2021-47444 | drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read | | |
| CVE-2021-47445 | drm/msm: Fix null pointer dereference on pointer edp | S | |
| CVE-2021-47446 | drm/msm/a4xx: fix error handling in a4xx_gpu_init() | | |
| CVE-2021-47447 | drm/msm/a3xx: fix error handling in a3xx_gpu_init() | | |
| CVE-2021-47448 | mptcp: fix possible stall on recvmsg() | | |
| CVE-2021-47449 | ice: fix locking for Tx timestamp tracking flush | S | |
| CVE-2021-47450 | KVM: arm64: Fix host stage-2 PGD refcount | | |
| CVE-2021-47451 | netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value | | |
| CVE-2021-47452 | netfilter: nf_tables: skip netdev events generated on netns removal | | |
| CVE-2021-47453 | ice: Avoid crash from unnecessary IDA free | | |
| CVE-2021-47454 | powerpc/smp: do not decrement idle task preempt count in CPU offline | | |
| CVE-2021-47455 | ptp: Fix possible memory leak in ptp_clock_register() | S | |
| CVE-2021-47456 | can: peak_pci: peak_pci_remove(): fix UAF | S | |
| CVE-2021-47457 | can: isotp: isotp_sendmsg(): add result check for wait_event_interruptible() | | |
| CVE-2021-47458 | ocfs2: mount fails with buffer overflow in strlen | | |
| CVE-2021-47459 | can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv | S | |
| CVE-2021-47460 | ocfs2: fix data corruption after conversion from inline format | | |
| CVE-2021-47461 | userfaultfd: fix a race between writeprotect and exit_mmap() | | |
| CVE-2021-47462 | mm/mempolicy: do not allow illegal MPOL_F_NUMA_BALANCING | MPOL_LOCAL in mbind() | S | |
| CVE-2021-47463 | mm/secretmem: fix NULL page->mapping dereference in page_is_secretmem() | S | |
| CVE-2021-47464 | audit: fix possible null-pointer dereference in audit_filter_rules | S | |
| CVE-2021-47465 | KVM: PPC: Book3S HV: Fix stack handling in idle_kvm_start_guest() | | |
| CVE-2021-47466 | mm, slub: fix potential memoryleak in kmem_cache_open() | S | |
| CVE-2021-47467 | kunit: fix reference count leak in kfree_at_end | S | |
| CVE-2021-47468 | isdn: mISDN: Fix sleeping function called from invalid context | | |
| CVE-2021-47469 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47470 | mm, slub: fix potential use-after-free in slab_debugfs_fops | S | |
| CVE-2021-47471 | drm: mxsfb: Fix NULL pointer dereference crash on unload | S | |
| CVE-2021-47472 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47473 | scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() | S | |
| CVE-2021-47474 | comedi: vmk80xx: fix bulk-buffer overflow | | |
| CVE-2021-47475 | comedi: vmk80xx: fix transfer-buffer overflows | | |
| CVE-2021-47476 | comedi: ni_usb6501: fix NULL-deref in command paths | S | |
| CVE-2021-47477 | comedi: dt9812: fix DMA buffers on stack | | |
| CVE-2021-47478 | isofs: Fix out of bound access for corrupted isofs image | S | |
| CVE-2021-47479 | staging: rtl8712: fix use-after-free in rtl8712_dl_fw | | |
| CVE-2021-47480 | scsi: core: Put LLD module refcnt after SCSI device is released | | |
| CVE-2021-47481 | RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR | | |
| CVE-2021-47482 | net: batman-adv: fix error handling | S | |
| CVE-2021-47483 | regmap: Fix possible double-free in regcache_rbtree_exit() | S | |
| CVE-2021-47484 | octeontx2-af: Fix possible null pointer dereference. | S | |
| CVE-2021-47485 | IB/qib: Protect from buffer overflow in struct qib_user_sdma_pkt fields | S | |
| CVE-2021-47486 | riscv, bpf: Fix potential NULL dereference | S | |
| CVE-2021-47487 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47488 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47489 | drm/amdgpu: Fix even more out of bound writes from debugfs | S | |
| CVE-2021-47490 | drm/ttm: fix memleak in ttm_transfered_destroy | S | |
| CVE-2021-47491 | mm: khugepaged: skip huge page collapse for special files | | |
| CVE-2021-47492 | mm, thp: bail out early in collapse_file for writeback page | | |
| CVE-2021-47493 | ocfs2: fix race between searching chunks and release journal_head from buffer_head | | |
| CVE-2021-47494 | cfg80211: fix management registrations locking | | |
| CVE-2021-47495 | usbnet: sanity check for maxpacket | | |
| CVE-2021-47496 | net/tls: Fix flipped sign in tls_err_abort() calls | | |
| CVE-2021-47497 | nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells | | |
| CVE-2021-47498 | dm rq: don't queue request to blk-mq during DM suspend | S | |
| CVE-2021-47499 | iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove | S | |
| CVE-2021-47500 | iio: mma8452: Fix trigger reference couting | S | |
| CVE-2021-47501 | i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc | S | |
| CVE-2021-47502 | ASoC: codecs: wcd934x: handle channel mappping list correctly | | |
| CVE-2021-47503 | scsi: pm80xx: Do not call scsi_remove_host() in pm8001_alloc() | S | |
| CVE-2021-47504 | io_uring: ensure task_work gets run as part of cancelations | | |
| CVE-2021-47505 | aio: fix use-after-free due to missing POLLFREE handling | S | |
| CVE-2021-47506 | nfsd: fix use-after-free due to delegation race | S | |
| CVE-2021-47507 | nfsd: Fix nsfd startup race (again) | | |
| CVE-2021-47508 | btrfs: free exchange changeset on failures | | |
| CVE-2021-47509 | ALSA: pcm: oss: Limit the period size to 16MB | | |
| CVE-2021-47510 | btrfs: fix re-dirty process of tree-log nodes | | |
| CVE-2021-47511 | ALSA: pcm: oss: Fix negative period/buffer sizes | | |
| CVE-2021-47512 | net/sched: fq_pie: prevent dismantle issue | S | |
| CVE-2021-47513 | net: dsa: felix: Fix memory leak in felix_setup_mmio_filtering | S | |
| CVE-2021-47514 | devlink: fix netns refcount leak in devlink_nl_cmd_reload() | S | |
| CVE-2021-47515 | seg6: fix the iif in the IPv6 socket control block | | |
| CVE-2021-47516 | nfp: Fix memory leak in nfp_cpp_area_cache_add() | S | |
| CVE-2021-47517 | ethtool: do not perform operations on net devices being unregistered | S | |
| CVE-2021-47518 | nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done | S | |
| CVE-2021-47519 | can: m_can: m_can_read_fifo: fix memory leak in error branch | S | |
| CVE-2021-47520 | can: pch_can: pch_can_rx_normal: fix use after free | S | |
| CVE-2021-47521 | can: sja1000: fix use after free in ems_pcmcia_add_card() | S | |
| CVE-2021-47522 | HID: bigbenff: prevent null pointer dereference | S | |
| CVE-2021-47523 | IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr | | |
| CVE-2021-47524 | serial: liteuart: fix minor-number leak on probe errors | | |
| CVE-2021-47525 | serial: liteuart: fix use-after-free and memleak on unbind | S | |
| CVE-2021-47526 | serial: liteuart: Fix NULL pointer dereference in ->remove() | S | |
| CVE-2021-47527 | serial: core: fix transmit-buffer reset and memleak | | |
| CVE-2021-47528 | usb: cdnsp: Fix a NULL pointer dereference in cdnsp_endpoint_init() | S | |
| CVE-2021-47529 | iwlwifi: Fix memory leaks in error handling path | S | |
| CVE-2021-47530 | drm/msm: Fix wait_fence submitqueue leak | | |
| CVE-2021-47531 | drm/msm: Fix mmap to include VM_IO and VM_DONTDUMP | | |
| CVE-2021-47532 | drm/msm/devfreq: Fix OPP refcnt leak | | |
| CVE-2021-47533 | drm/vc4: kms: Clear the HVS FIFO commit pointer once done | | |
| CVE-2021-47534 | drm/vc4: kms: Add missing drm_crtc_commit_put | S | |
| CVE-2021-47535 | drm/msm/a6xx: Allocate enough space for GMU registers | S | |
| CVE-2021-47536 | net/smc: fix wrong list_del in smc_lgr_cleanup_early | | |
| CVE-2021-47537 | octeontx2-af: Fix a memleak bug in rvu_mbox_init() | S | |
| CVE-2021-47538 | rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() | | |
| CVE-2021-47539 | rxrpc: Fix rxrpc_peer leak in rxrpc_look_up_bundle() | | |
| CVE-2021-47540 | mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode | S | |
| CVE-2021-47541 | net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() | S | |
| CVE-2021-47542 | net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() | S | |
| CVE-2021-47543 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47544 | tcp: fix page frag corruption on page fault | | |
| CVE-2021-47545 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47546 | ipv6: fix memory leak in fib6_rule_suppress | S | |
| CVE-2021-47547 | net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound | S | |
| CVE-2021-47548 | ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() | S | |
| CVE-2021-47549 | sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl | S | |
| CVE-2021-47550 | drm/amd/amdgpu: fix potential memleak | S | |
| CVE-2021-47551 | drm/amd/amdkfd: Fix kernel panic when reset failed and been triggered again | S | |
| CVE-2021-47552 | blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release() | S | |
| CVE-2021-47553 | sched/scs: Reset task stack state in bringup_cpu() | | |
| CVE-2021-47554 | vdpa_sim: avoid putting an uninitialized iova_domain | S | |
| CVE-2021-47555 | net: vlan: fix underflow for the real_dev refcnt | | |
| CVE-2021-47556 | ethtool: ioctl: fix potential NULL deref in ethtool_set_coalesce() | S | |
| CVE-2021-47557 | net/sched: sch_ets: don't peek at classes beyond 'nbands' | S | |
| CVE-2021-47558 | net: stmmac: Disable Tx queues when reconfiguring the interface | | |
| CVE-2021-47559 | net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() | S | |
| CVE-2021-47560 | mlxsw: spectrum: Protect driver from buggy firmware | S | |
| CVE-2021-47561 | i2c: virtio: disable timeout handling | | |
| CVE-2021-47562 | ice: fix vsi->txq_map sizing | S | |
| CVE-2021-47563 | ice: avoid bpf_prog refcount underflow | S | |
| CVE-2021-47564 | net: marvell: prestera: fix double free issue on err path | S | |
| CVE-2021-47565 | scsi: mpt3sas: Fix kernel panic during drive powercycle test | | |
| CVE-2021-47566 | proc/vmcore: fix clearing user buffer by properly using clear_user() | | |
| CVE-2021-47567 | powerpc/32: Fix hardlockup on vmap stack overflow | | |
| CVE-2021-47568 | ksmbd: fix memleak in get_file_stream_info() | S | |
| CVE-2021-47569 | io_uring: fail cancellation for EXITING tasks | | |
| CVE-2021-47570 | staging: r8188eu: fix a memory leak in rtw_wx_read32() | S | |
| CVE-2021-47571 | staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() | S | |
| CVE-2021-47572 | net: nexthop: fix null pointer dereference when IPv6 is not enabled | S | |
| CVE-2021-47573 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47574 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47575 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47576 | scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select() | S | |
| CVE-2021-47577 | io-wq: check for wq exit after adding new worker task_work | | |
| CVE-2021-47578 | scsi: scsi_debug: Don't call kcalloc() if size arg is zero | S | |
| CVE-2021-47579 | ovl: fix warning in ovl_create_real() | | |
| CVE-2021-47580 | scsi: scsi_debug: Fix type in min_t to avoid stack OOB | S | |
| CVE-2021-47581 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47582 | USB: core: Make do_proc_control() and do_proc_bulk() killable | | |
| CVE-2021-47583 | media: mxl111sf: change mutex_init() location | S | |
| CVE-2021-47584 | iocost: Fix divide-by-zero on donation from low hweight cgroup | S | |
| CVE-2021-47585 | btrfs: fix memory leak in __add_inode_ref() | S | |
| CVE-2021-47586 | net: stmmac: dwmac-rk: fix oob read in rk_gmac_setup | S | |
| CVE-2021-47587 | net: systemport: Add global locking for descriptor lifecycle | S | |
| CVE-2021-47588 | sit: do not call ipip6_dev_free() from sit_init_net() | | |
| CVE-2021-47589 | igbvf: fix double free in `igbvf_probe` | S | |
| CVE-2021-47590 | mptcp: fix deadlock in __mptcp_push_pending() | S | |
| CVE-2021-47591 | mptcp: remove tcp ulp setsockopt support | S | |
| CVE-2021-47592 | net: stmmac: fix tc flower deletion for VLAN priority Rx steering | S | |
| CVE-2021-47593 | mptcp: clear 'kern' flag from fallback sockets | S | |
| CVE-2021-47594 | mptcp: never allow the PM to close a listener subflow | S | |
| CVE-2021-47595 | net/sched: sch_ets: don't remove idle classes from the round-robin list | S | |
| CVE-2021-47596 | net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg | S | |
| CVE-2021-47597 | inet_diag: fix kernel-infoleak for UDP sockets | S | |
| CVE-2021-47598 | sch_cake: do not call cake_destroy() from cake_init() | S | |
| CVE-2021-47599 | btrfs: use latest_dev in btrfs_show_devname | S | |
| CVE-2021-47600 | dm btree remove: fix use after free in rebalance_children() | S | |
| CVE-2021-47601 | tee: amdtee: fix an IS_ERR() vs NULL bug | S | |
| CVE-2021-47602 | mac80211: track only QoS data frames for admission control | S | |
| CVE-2021-47603 | audit: improve robustness of the audit queue handling | S | |
| CVE-2021-47604 | vduse: check that offset is within bounds in get_config() | S | |
| CVE-2021-47605 | vduse: fix memory corruption in vduse_dev_ioctl() | S | |
| CVE-2021-47606 | net: netlink: af_netlink: Prevent empty skb by adding a check on len. | S | |
| CVE-2021-47607 | bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg | S | |
| CVE-2021-47608 | bpf: Fix kernel address leakage in atomic fetch | S | |
| CVE-2021-47609 | firmware: arm_scpi: Fix string overflow in SCPI genpd driver | S | |
| CVE-2021-47610 | drm/msm: Fix null ptr access msm_ioctl_gem_submit() | S | |
| CVE-2021-47611 | mac80211: validate extended element ID is present | S | |
| CVE-2021-47612 | nfc: fix segfault in nfc_genl_dump_devices_done | S | |
| CVE-2021-47613 | i2c: virtio: fix completion handling | S | |
| CVE-2021-47614 | RDMA/irdma: Fix a user-after-free in add_pble_prm | S | |
| CVE-2021-47615 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2021-47616 | RDMA: Fix use-after-free in rxe_queue_cleanup | S | |
| CVE-2021-47617 | PCI: pciehp: Fix infinite loop in IRQ handler upon power fault | S | |
| CVE-2021-47618 | ARM: 9170/1: fix panic when kasan and kprobe are enabled | | |
| CVE-2021-47619 | i40e: Fix queues reservation for XDP | S | |
| CVE-2021-47620 | Bluetooth: refactor malicious adv data check | S | |
| CVE-2021-47621 | ClassGraph before 4.8.112 was not resistant to XML eXternal Entity (XXE) attacks.... | | |
| CVE-2021-47622 | scsi: ufs: Fix a deadlock in the error handler | S | |
| CVE-2021-47623 | powerpc/fixmap: Fix VM debug warning on unmap | | |
| CVE-2021-47624 | net/sunrpc: fix reference count leaks in rpc_sysfs_xprt_state_change | S | |
| CVE-2021-47631 | ARM: davinci: da850-evm: Avoid NULL pointer dereference | S | |
| CVE-2021-47632 | powerpc/set_memory: Avoid spinlock recursion in change_page_attr() | S | |
| CVE-2021-47633 | ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 | | |
| CVE-2021-47634 | ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl | S | |
| CVE-2021-47635 | ubifs: Fix to add refcount once page is set private | | |
| CVE-2021-47636 | ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock() | S | |
| CVE-2021-47637 | ubifs: Fix deadlock in concurrent rename whiteout and inode writeback | S | |
| CVE-2021-47638 | ubifs: rename_whiteout: Fix double free for whiteout_ui->data | S | |
| CVE-2021-47639 | KVM: x86/mmu: Zap _all_ roots when unmapping gfn range in TDP MMU | S | |
| CVE-2021-47640 | powerpc/kasan: Fix early region not updated correctly | S | |
| CVE-2021-47641 | video: fbdev: cirrusfb: check pixclock to avoid divide by zero | S | |
| CVE-2021-47642 | video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow | | |
| CVE-2021-47643 | media: ir_toy: free before error exiting | | |
| CVE-2021-47644 | media: staging: media: zoran: move videodev alloc | S | |
| CVE-2021-47645 | media: staging: media: zoran: calculate the right buffer number for zoran_reap_stat_com | S | |
| CVE-2021-47646 | Revert "Revert "block, bfq: honor already-setup queue merges"" | S | |
| CVE-2021-47647 | clk: qcom: ipq8074: fix PCI-E clock oops | | |
| CVE-2021-47648 | gpu: host1x: Fix a memory leak in 'host1x_remove()' | S | |
| CVE-2021-47649 | udmabuf: validate ubuf->pagecount | | |
| CVE-2021-47650 | ASoC: soc-compress: prevent the potentially use of null pointer | | |
| CVE-2021-47651 | soc: qcom: rpmpd: Check for null return of devm_kcalloc | S | |
| CVE-2021-47652 | video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe() | S | |
| CVE-2021-47653 | media: davinci: vpif: fix use-after-free on driver unbind | S | |
| CVE-2021-47654 | samples/landlock: Fix path_list memory leak | S | |
| CVE-2021-47655 | media: venus: vdec: fixed possible memory leak issue | S | |
| CVE-2021-47656 | jffs2: fix use-after-free in jffs2_clear_xattr_subsystem | S | |
| CVE-2021-47657 | drm/virtio: Ensure that objs is not NULL in virtio_gpu_array_put_free() | S | |
| CVE-2021-47658 | drm/amd/pm: fix a potential gpu_metrics_table memory leak | | |
| CVE-2021-47659 | drm/plane: Move range check for format_count earlier | | |
| CVE-2021-47660 | fs/ntfs3: Fix some memory leaks in an error handling path of 'log_replay()' | S | |
| CVE-2021-47662 | Unauthenticated remote shutdown of the cobot | | |
| CVE-2021-47663 | Improper session handling | | |
| CVE-2021-47664 | Enumeration of valid user names | | |
| CVE-2021-47667 | An OS command injection vulnerability in lib/NSSDropoff.php in ZendTo 5.24-3 through 6.x before 6.10... | E | |
| CVE-2021-47668 | can: dev: can_restart: fix use after free bug | S | |
| CVE-2021-47669 | can: vxcan: vxcan_xmit: fix use after free bug | S | |
| CVE-2021-47670 | can: peak_usb: fix use after free bugs | S | |
| CVE-2021-47671 | can: etas_es58x: es58x_rx_err_msg(): fix memory leak in error path | S | |
| CVE-2021-47688 | In WhiteBeam 0.2.0 through 0.2.1 before 0.2.2, a user with local access to a server can bypass the a... | |