| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2022-50000 | netfilter: flowtable: fix stuck flows on cleanup due to pending work | | |
| CVE-2022-50001 | netfilter: nft_tproxy: restrict to prerouting hook | | |
| CVE-2022-50002 | net/mlx5: LAG, fix logic over MLX5_LAG_FLAG_NDEVS_READY | | |
| CVE-2022-50003 | ice: xsk: prohibit usage of non-balanced queue id | | |
| CVE-2022-50004 | xfrm: policy: fix metadata dst->dev xmit null pointer dereference | | |
| CVE-2022-50005 | nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout | | |
| CVE-2022-50006 | NFSv4.2 fix problems with __nfs42_ssc_open | | |
| CVE-2022-50007 | xfrm: fix refcount leak in __xfrm_policy_check() | | |
| CVE-2022-50008 | kprobes: don't call disarm_kprobe() for disabled kprobes | | |
| CVE-2022-50009 | f2fs: fix null-ptr-deref in f2fs_get_dnode_of_data | | |
| CVE-2022-50010 | video: fbdev: i740fb: Check the argument of i740_calc_vclk() | | |
| CVE-2022-50011 | venus: pm_helpers: Fix warning in OPP during probe | | |
| CVE-2022-50012 | powerpc/64: Init jump labels before parse_early_param() | | |
| CVE-2022-50013 | f2fs: fix to avoid use f2fs_bug_on() in f2fs_new_node_page() | | |
| CVE-2022-50014 | mm/gup: fix FOLL_FORCE COW security issue and remove FOLL_COW | | |
| CVE-2022-50015 | ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before firmware boot | | |
| CVE-2022-50016 | ASoC: SOF: Intel: cnl: Do not process IPC reply before firmware boot | | |
| CVE-2022-50017 | mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start | | |
| CVE-2022-50018 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2022-50019 | tty: serial: Fix refcount leak bug in ucc_uart.c | | |
| CVE-2022-50020 | ext4: avoid resizing to a partial cluster size | | |
| CVE-2022-50021 | ext4: block range must be validated before use in ext4_mb_clear_bb() | | |
| CVE-2022-50022 | drivers:md:fix a potential use-after-free bug | | |
| CVE-2022-50023 | dmaengine: dw-axi-dmac: ignore interrupt if no descriptor | | |
| CVE-2022-50024 | dmaengine: dw-axi-dmac: do not print NULL LLI during error | | |
| CVE-2022-50025 | cxl: Fix a memory leak in an error handling path | | |
| CVE-2022-50026 | habanalabs/gaudi: fix shift out of bounds | | |
| CVE-2022-50027 | scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE | | |
| CVE-2022-50028 | gadgetfs: ep_io - wait until IRQ finishes | | |
| CVE-2022-50029 | clk: qcom: ipq8074: dont disable gcc_sleep_clk_src | | |
| CVE-2022-50030 | scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input | | |
| CVE-2022-50031 | scsi: iscsi: Fix HW conn removal use after free | | |
| CVE-2022-50032 | usb: renesas: Fix refcount leak bug | | |
| CVE-2022-50033 | usb: host: ohci-ppc-of: Fix refcount leak bug | | |
| CVE-2022-50034 | usb: cdns3 fix use-after-free at workaround 2 | | |
| CVE-2022-50035 | drm/amdgpu: Fix use-after-free on amdgpu_bo_list mutex | | |
| CVE-2022-50036 | drm/sun4i: dsi: Prevent underflow when computing packet sizes | | |
| CVE-2022-50037 | drm/i915/ttm: don't leak the ccs state | | |
| CVE-2022-50038 | drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors() | | |
| CVE-2022-50039 | stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove() | | |
| CVE-2022-50040 | net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions() | | |
| CVE-2022-50041 | ice: Fix call trace with null VSI during VF reset | | |
| CVE-2022-50042 | net: genl: fix error path memory leak in policy dumping | | |
| CVE-2022-50043 | net: fix potential refcount leak in ndisc_router_discovery() | | |
| CVE-2022-50044 | net: qrtr: start MHI channel after endpoit creation | | |
| CVE-2022-50045 | powerpc/pci: Fix get_phb_number() locking | | |
| CVE-2022-50046 | net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change() | | |
| CVE-2022-50047 | net: dsa: mv88e6060: prevent crash on an unused port | | |
| CVE-2022-50048 | netfilter: nf_tables: possible module reference underflow in error path | | |
| CVE-2022-50049 | ASoC: DPCM: Don't pick up BE without substream | | |
| CVE-2022-50050 | ASoC: SOF: Intel: hda: Fix potential buffer overflow by snprintf() | | |
| CVE-2022-50051 | ASoC: SOF: debug: Fix potential buffer overflow by snprintf() | | |
| CVE-2022-50052 | ASoC: Intel: avs: Fix potential buffer overflow by snprintf() | | |
| CVE-2022-50053 | iavf: Fix reset error handling | | |
| CVE-2022-50054 | iavf: Fix NULL pointer dereference in iavf_get_link_ksettings | | |
| CVE-2022-50055 | iavf: Fix adminq error handling | | |
| CVE-2022-50056 | fs/ntfs3: Fix missing i_op in ntfs_read_mft | | |
| CVE-2022-50057 | fs/ntfs3: Fix NULL deref in ntfs_update_mftmirr | | |
| CVE-2022-50058 | vdpa_sim_blk: set number of address spaces and virtqueue groups | | |
| CVE-2022-50059 | ceph: don't leak snap_rwsem in handle_cap_grant | | |
| CVE-2022-50060 | octeontx2-af: Fix mcam entry resource leak | | |
| CVE-2022-50061 | pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map | | |
| CVE-2022-50062 | net: bgmac: Fix a BUG triggered by wrong bytes_compl | | |
| CVE-2022-50063 | net: dsa: felix: suppress non-changes to the tagging protocol | | |
| CVE-2022-50064 | virtio-blk: Avoid use-after-free on suspend/resume | | |
| CVE-2022-50065 | virtio_net: fix memory leak inside XPD_TX with mergeable | | |
| CVE-2022-50066 | net: atlantic: fix aq_vec index out of range error | | |
| CVE-2022-50067 | btrfs: unset reloc control if transaction commit fails in prepare_to_relocate() | | |
| CVE-2022-50068 | drm/ttm: Fix dummy res NULL ptr deref bug | | |
| CVE-2022-50069 | BPF: Fix potential bad pointer dereference in bpf_sys_bpf() | | |
| CVE-2022-50070 | mptcp: do not queue data on closed subflows | | |
| CVE-2022-50071 | mptcp: move subflow cleanup in mptcp_destroy_common() | | |
| CVE-2022-50072 | NFSv4/pnfs: Fix a use-after-free bug in open | | |
| CVE-2022-50073 | net: tap: NULL pointer derefence in dev_parse_header_protocol when skb->dev is null | | |
| CVE-2022-50074 | apparmor: Fix memleak in aa_simple_write_to_buffer() | | |
| CVE-2022-50075 | tracing/eprobes: Have event probes be consistent with kprobes and uprobes | | |
| CVE-2022-50076 | cifs: Fix memory leak on the deferred close | | |
| CVE-2022-50077 | apparmor: fix reference count leak in aa_pivotroot() | | |
| CVE-2022-50078 | tracing/eprobes: Do not allow eprobes to use $stack, or % for regs | | |
| CVE-2022-50079 | drm/amd/display: Check correct bounds for stream encoder instances for DCN303 | | |
| CVE-2022-50080 | tee: add overflow check in register_shm_helper() | | |
| CVE-2022-50081 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2022-50082 | ext4: fix warning in ext4_iomap_begin as race between bmap and write | | |
| CVE-2022-50083 | ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h | | |
| CVE-2022-50084 | dm raid: fix address sanitizer warning in raid_status | | |
| CVE-2022-50085 | dm raid: fix address sanitizer warning in raid_resume | | |
| CVE-2022-50086 | block: don't allow the same type rq_qos add more than once | | |
| CVE-2022-50087 | firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails | | |
| CVE-2022-50088 | mm/damon/reclaim: fix potential memory leak in damon_reclaim_init() | | |
| CVE-2022-50089 | btrfs: ensure pages are unlocked on cow_file_range() failure | | |
| CVE-2022-50090 | btrfs: replace BTRFS_MAX_EXTENT_SIZE with fs_info->max_extent_size | | |
| CVE-2022-50091 | locking/csd_lock: Change csdlock_debug from early_param to __setup | | |
| CVE-2022-50092 | dm thin: fix use-after-free crash in dm_sm_register_threshold_callback | | |
| CVE-2022-50093 | iommu/vt-d: avoid invalid memory access via node_online(NUMA_NO_NODE) | | |
| CVE-2022-50094 | spmi: trace: fix stack-out-of-bound access in SPMI tracing functions | | |
| CVE-2022-50095 | posix-cpu-timers: Cleanup CPU timers before freeing them during exec | | |
| CVE-2022-50096 | x86/kprobes: Update kcb status flag after singlestepping | | |
| CVE-2022-50097 | video: fbdev: s3fb: Check the size of screen before memset_io() | | |
| CVE-2022-50098 | scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts | | |
| CVE-2022-50099 | video: fbdev: arkfb: Check the size of screen before memset_io() | | |
| CVE-2022-50100 | sched/core: Do not requeue task on CPU excluded from cpus_mask | | |
| CVE-2022-50101 | video: fbdev: vt8623fb: Check the size of screen before memset_io() | | |
| CVE-2022-50102 | video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock() | | |
| CVE-2022-50103 | sched, cpuset: Fix dl_cpu_busy() panic due to empty cs->cpus_allowed | | |
| CVE-2022-50104 | powerpc/xive: Fix refcount leak in xive_get_max_prio | | |
| CVE-2022-50105 | powerpc/spufs: Fix refcount leak in spufs_init_isolated_loader | | |
| CVE-2022-50106 | powerpc/cell/axon_msi: Fix refcount leak in setup_msi_msg_address | | |
| CVE-2022-50107 | cifs: Fix memory leak when using fscache | | |
| CVE-2022-50108 | mfd: max77620: Fix refcount leak in max77620_initialise_fps | | |
| CVE-2022-50109 | video: fbdev: amba-clcd: Fix refcount leak bugs | | |
| CVE-2022-50110 | watchdog: sp5100_tco: Fix a memory leak of EFCH MMIO resource | | |
| CVE-2022-50111 | ASoC: mt6359: Fix refcount leak bug | | |
| CVE-2022-50112 | rpmsg: qcom_smd: Fix refcount leak in qcom_smd_parse_edge | | |
| CVE-2022-50113 | ASoc: audio-graph-card2: Fix refcount leak bug in __graph_get_type() | | |
| CVE-2022-50114 | net: 9p: fix refcount leak in p9_read_work() error handling | | |
| CVE-2022-50115 | ASoC: SOF: ipc3-topology: Prevent double freeing of ipc_control_data via load_bytes | | |
| CVE-2022-50116 | tty: n_gsm: fix deadlock and link starvation in outgoing data path | | |
| CVE-2022-50117 | vfio: Split migration ops from main device ops | | |
| CVE-2022-50118 | powerpc/perf: Optimize clearing the pending PMI and remove WARN_ON for PMI check in power_pmu_disable | | |
| CVE-2022-50119 | rpmsg: Fix possible refcount leak in rpmsg_register_device_override() | | |
| CVE-2022-50120 | remoteproc: imx_rproc: Fix refcount leak in imx_rproc_addr_init | | |
| CVE-2022-50121 | remoteproc: k3-r5: Fix refcount leak in k3_r5_cluster_of_init | | |
| CVE-2022-50122 | ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe | | |
| CVE-2022-50123 | ASoC: mediatek: mt8173: Fix refcount leak in mt8173_rt5650_rt5676_dev_probe | | |
| CVE-2022-50124 | ASoC: mt6797-mt6351: Fix refcount leak in mt6797_mt6351_dev_probe | | |
| CVE-2022-50125 | ASoC: cros_ec_codec: Fix refcount leak in cros_ec_codec_platform_probe | | |
| CVE-2022-50126 | jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted | | |
| CVE-2022-50127 | RDMA/rxe: Fix error unwind in rxe_create_qp() | | |
| CVE-2022-50128 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2022-50129 | RDMA/srpt: Fix a use-after-free | | |
| CVE-2022-50130 | staging: fbtft: core: set smem_len before fb_deferred_io_init call | | |
| CVE-2022-50131 | HID: mcp2221: prevent a buffer overflow in mcp_smbus_write() | | |
| CVE-2022-50132 | usb: cdns3: change place of 'priv_ep' assignment in cdns3_gadget_ep_dequeue(), cdns3_gadget_ep_enable() | | |
| CVE-2022-50133 | usb: xhci_plat_remove: avoid NULL dereference | | |
| CVE-2022-50134 | RDMA/hfi1: fix potential memory leak in setup_base_ctxt() | | |
| CVE-2022-50135 | RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup | | |
| CVE-2022-50136 | RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event | | |
| CVE-2022-50137 | RDMA/irdma: Fix a window for use-after-free | | |
| CVE-2022-50138 | RDMA/qedr: Fix potential memory leak in __qedr_alloc_mr() | | |
| CVE-2022-50139 | usb: aspeed-vhub: Fix refcount leak bug in ast_vhub_init_desc() | | |
| CVE-2022-50140 | memstick/ms_block: Fix a memory leak | | |
| CVE-2022-50141 | mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch | | |
| CVE-2022-50142 | intel_th: msu: Fix vmalloced buffers | | |
| CVE-2022-50143 | intel_th: Fix a resource leak in an error handling path | | |
| CVE-2022-50144 | soundwire: revisit driver bind/unbind and callbacks | | |
| CVE-2022-50145 | dmaengine: sf-pdma: Add multithread support for a DMA channel | | |
| CVE-2022-50146 | PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors | | |
| CVE-2022-50147 | mm/mempolicy: fix get_nodes out of bound access | | |
| CVE-2022-50148 | kernfs: fix potential NULL dereference in __kernfs_remove | | |
| CVE-2022-50149 | driver core: fix potential deadlock in __driver_attach | | |
| CVE-2022-50150 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2022-50151 | usb: cdns3: fix random warning message when driver load | | |
| CVE-2022-50152 | usb: ohci-nxp: Fix refcount leak in ohci_hcd_nxp_probe | | |
| CVE-2022-50153 | usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe | | |
| CVE-2022-50154 | PCI: mediatek-gen3: Fix refcount leak in mtk_pcie_init_irq_domains() | | |
| CVE-2022-50155 | mtd: parsers: ofpart: Fix refcount leak in bcm4908_partitions_fw_offset | | |
| CVE-2022-50156 | HID: cp2112: prevent a buffer overflow in cp2112_xfer() | | |
| CVE-2022-50157 | PCI: microchip: Fix refcount leak in mc_pcie_init_irq_domains() | | |
| CVE-2022-50158 | mtd: partitions: Fix refcount leak in parse_redboot_of | | |
| CVE-2022-50159 | of: check previous kernel's ima-kexec-buffer against memory bounds | | |
| CVE-2022-50160 | mtd: maps: Fix refcount leak in ap_flash_init | | |
| CVE-2022-50161 | mtd: maps: Fix refcount leak in of_flash_probe_versatile | | |
| CVE-2022-50162 | wifi: libertas: Fix possible refcount leak in if_usb_probe() | | |
| CVE-2022-50163 | ax25: fix incorrect dev_tracker usage | | |
| CVE-2022-50164 | wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue | | |
| CVE-2022-50165 | wifi: wil6210: debugfs: fix uninitialized variable use in `wil_write_file_wmi()` | | |
| CVE-2022-50166 | Bluetooth: When HCI work queue is drained, only queue chained work | | |
| CVE-2022-50167 | bpf: fix potential 32-bit overflow when accessing ARRAY map element | | |
| CVE-2022-50168 | bpf, x86: fix freeing of not-finalized bpf_prog_pack | | |
| CVE-2022-50169 | wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi() | | |
| CVE-2022-50170 | kunit: executor: Fix a memory leak on failure in kunit_filter_tests | | |
| CVE-2022-50171 | crypto: hisilicon/sec - don't sleep when in softirq | | |
| CVE-2022-50172 | mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg | | |
| CVE-2022-50173 | drm/msm/mdp5: Fix global state lock backoff | | |
| CVE-2022-50174 | net: hinic: avoid kernel hung in hinic_get_stats64() | | |
| CVE-2022-50175 | media: tw686x: Fix memory leak in tw686x_video_init | | |
| CVE-2022-50176 | drm/mcde: Fix refcount leak in mcde_dsi_bind | | |
| CVE-2022-50177 | rcutorture: Fix ksoftirqd boosting timing and iteration | | |
| CVE-2022-50178 | wifi: rtw89: 8852a: rfk: fix div 0 exception | | |
| CVE-2022-50179 | ath9k: fix use-after-free in ath9k_hif_usb_rx_cb | | |
| CVE-2022-50180 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2022-50181 | virtio-gpu: fix a missing check to avoid NULL dereference | | |
| CVE-2022-50182 | media: imx-jpeg: Align upwards buffer size | | |
| CVE-2022-50183 | drm/meson: encoder_cvbs: Fix refcount leak in meson_encoder_cvbs_init | | |
| CVE-2022-50184 | drm/meson: encoder_hdmi: Fix refcount leak in meson_encoder_hdmi_init | | |
| CVE-2022-50185 | drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers() | | |
| CVE-2022-50186 | ath11k: fix missing skb drop on htc_tx_completion error | | |
| CVE-2022-50187 | ath11k: fix netdev open race | | |
| CVE-2022-50188 | drm/meson: Fix refcount leak in meson_encoder_hdmi_init | | |
| CVE-2022-50189 | tools/power turbostat: Fix file pointer leak | | |
| CVE-2022-50190 | spi: Fix simplification of devm_spi_register_controller | | |
| CVE-2022-50191 | regulator: of: Fix refcount leak bug in of_get_regulation_constraints() | | |
| CVE-2022-50192 | spi: tegra20-slink: fix UAF in tegra_slink_remove() | | |
| CVE-2022-50193 | erofs: wake up all waiters after z_erofs_lzma_head ready | | |
| CVE-2022-50194 | soc: qcom: aoss: Fix refcount leak in qmp_cooling_devices_register | | |
| CVE-2022-50195 | ARM: dts: qcom: replace gcc PXO with pxo_board fixed clock | | |
| CVE-2022-50196 | soc: qcom: ocmem: Fix refcount leak in of_get_ocmem | | |
| CVE-2022-50197 | cpufreq: zynq: Fix refcount leak in zynq_get_revision | | |
| CVE-2022-50198 | ARM: OMAP2+: Fix refcount leak in omap3xxx_prm_late_init | | |
| CVE-2022-50199 | ARM: OMAP2+: Fix refcount leak in omapdss_init_of | | |
| CVE-2022-50200 | selinux: Add boundary check in put_entry() | | |
| CVE-2022-50201 | selinux: fix memleak in security_read_state_kernel() | | |
| CVE-2022-50202 | PM: hibernate: defer device probing when resuming from hibernation | | |
| CVE-2022-50203 | ARM: OMAP2+: display: Fix refcount leak bug | | |
| CVE-2022-50204 | ARM: OMAP2+: pdata-quirks: Fix refcount leak bug | | |
| CVE-2022-50205 | ext2: Add more validity checks for inode counts | | |
| CVE-2022-50206 | arm64: fix oops in concurrently setting insn_emulation sysctls | | |
| CVE-2022-50207 | ARM: bcm: Fix refcount leak in bcm_kona_smc_init | | |
| CVE-2022-50208 | soc: amlogic: Fix refcount leak in meson-secure-pwrc.c | | |
| CVE-2022-50209 | meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init | | |
| CVE-2022-50210 | MIPS: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK | | |
| CVE-2022-50211 | md-raid10: fix KASAN warning | | |
| CVE-2022-50212 | netfilter: nf_tables: do not allow CHAIN_ID to refer to another table | | |
| CVE-2022-50213 | netfilter: nf_tables: do not allow SET_ID to refer to another table | | |
| CVE-2022-50214 | coresight: Clear the connection field properly | | |
| CVE-2022-50215 | scsi: sg: Allow waiting for commands to complete on removed device | | |
| CVE-2022-50216 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2022-50217 | fuse: write inode in fuse_release() | | |
| CVE-2022-50218 | iio: light: isl29028: Fix the warning in isl29028_remove() | | |
| CVE-2022-50219 | bpf: Fix KASAN use-after-free Read in compute_effective_progs | | |
| CVE-2022-50220 | usbnet: Fix linkwatch use-after-free on disconnect | | |
| CVE-2022-50221 | drm/fb-helper: Fix out-of-bounds access | | |
| CVE-2022-50222 | tty: vt: initialize unicode screen buffer | | |
| CVE-2022-50223 | LoongArch: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK | | |
| CVE-2022-50224 | KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT | | |
| CVE-2022-50225 | riscv:uprobe fix SR_SPIE set/clear handling | | |
| CVE-2022-50226 | crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak | | |
| CVE-2022-50227 | KVM: x86/xen: Initialize Xen timer only once | | |
| CVE-2022-50228 | KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0 | | |
| CVE-2022-50229 | ALSA: bcd2000: Fix a UAF bug on the error path of probing | | |
| CVE-2022-50230 | arm64: set UXN on swapper page tables | | |
| CVE-2022-50231 | crypto: arm64/poly1305 - fix a read out-of-bound | | |
| CVE-2022-50232 | arm64: set UXN on swapper page tables | |