| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2023-53000 | netlink: prevent potential spectre v1 gadgets | | |
| CVE-2023-53001 | drm/drm_vma_manager: Add drm_vma_node_allow_once() | S | |
| CVE-2023-53002 | drm/i915: Fix a memory leak with reused mmap_offset | S | |
| CVE-2023-53003 | EDAC/qcom: Do not pass llcc_driv_data as edac_device_ctl_info's pvt_info | S | |
| CVE-2023-53004 | ovl: fix tmpfile leak | | |
| CVE-2023-53005 | trace_events_hist: add check for return value of 'create_hist_field' | S | |
| CVE-2023-53006 | cifs: Fix oops due to uncleared server->smbd_conn in reconnect | | |
| CVE-2023-53007 | tracing: Make sure trace_printk() can output as soon as it can be used | | |
| CVE-2023-53008 | cifs: fix potential memory leaks in session setup | S | |
| CVE-2023-53009 | drm/amdkfd: Add sync after creating vram bo | | |
| CVE-2023-53010 | bnxt: Do not read past the end of test names | | |
| CVE-2023-53011 | net: stmmac: enable all safety features by default | S | |
| CVE-2023-53012 | thermal: core: call put_device() only after device_register() fails | | |
| CVE-2023-53013 | ptdma: pt_core_execute_cmd() should use spinlock | S | |
| CVE-2023-53014 | dmaengine: tegra: Fix memory leak in terminate_all() | S | |
| CVE-2023-53015 | HID: betop: check shape of output reports | S | |
| CVE-2023-53016 | Bluetooth: Fix possible deadlock in rfcomm_sk_state_change | S | |
| CVE-2023-53017 | Bluetooth: hci_sync: fix memory leak in hci_update_adv_data() | S | |
| CVE-2023-53018 | Bluetooth: hci_conn: Fix memory leaks | S | |
| CVE-2023-53019 | net: mdio: validate parameter addr in mdiobus_get_phy() | | |
| CVE-2023-53020 | l2tp: close all race conditions in l2tp_tunnel_register() | S | |
| CVE-2023-53021 | net/sched: sch_taprio: fix possible use-after-free | S | |
| CVE-2023-53022 | net: enetc: avoid deadlock in enetc_tx_onestep_tstamp() | S | |
| CVE-2023-53023 | net: nfc: Fix use-after-free in local_cleanup() | S | |
| CVE-2023-53024 | bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation | | |
| CVE-2023-53025 | NFSD: fix use-after-free in nfsd4_ssc_setup_dul() | S | |
| CVE-2023-53026 | RDMA/core: Fix ib block iterator counter overflow | S | |
| CVE-2023-53027 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-53028 | Revert "wifi: mac80211: fix memory leak in ieee80211_if_add()" | S | |
| CVE-2023-53029 | octeontx2-pf: Fix the use of GFP_KERNEL in atomic context on rt | | |
| CVE-2023-53030 | octeontx2-pf: Avoid use of GFP_KERNEL in atomic context | | |
| CVE-2023-53031 | powerpc/imc-pmu: Fix use of mutex in IRQs disabled section | | |
| CVE-2023-53032 | netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function. | | |
| CVE-2023-53033 | netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits | | |
| CVE-2023-53034 | ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans | | |
| CVE-2023-53035 | nilfs2: fix kernel-infoleak in nilfs_ioctl_wrap_copy() | | |
| CVE-2023-53036 | drm/amdgpu: Fix call trace warning and hang when removing amdgpu device | | |
| CVE-2023-53037 | scsi: mpi3mr: Bad drive in topology results kernel crash | | |
| CVE-2023-53038 | scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read() | | |
| CVE-2023-53039 | HID: intel-ish-hid: ipc: Fix potential use-after-free in work function | | |
| CVE-2023-53040 | ca8210: fix mac_len negative array access | | |
| CVE-2023-53041 | scsi: qla2xxx: Perform lockless command completion in abort path | | |
| CVE-2023-53042 | drm/amd/display: Do not set DRR on pipe Commit | | |
| CVE-2023-53043 | arm64: dts: qcom: sc7280: Mark PCIe controller as cache coherent | | |
| CVE-2023-53044 | dm stats: check for and propagate alloc_percpu failure | | |
| CVE-2023-53045 | usb: gadget: u_audio: don't let userspace block driver unbind | | |
| CVE-2023-53046 | Bluetooth: Fix race condition in hci_cmd_sync_clear | | |
| CVE-2023-53047 | tee: amdtee: fix race condition in amdtee_open_session | | |
| CVE-2023-53048 | usb: typec: tcpm: fix warning when handle discover_identity message | | |
| CVE-2023-53049 | usb: ucsi: Fix NULL pointer deref in ucsi_connector_change() | | |
| CVE-2023-53050 | thunderbolt: Fix memory leak in margining | | |
| CVE-2023-53051 | dm crypt: add cond_resched() to dmcrypt_write() | | |
| CVE-2023-53052 | cifs: fix use-after-free bug in refresh_cache_worker() | | |
| CVE-2023-53053 | erspan: do not use skb_mac_header() in ndo_start_xmit() | | |
| CVE-2023-53054 | usb: dwc2: fix a devres leak in hw_enable upon suspend resume | | |
| CVE-2023-53055 | fscrypt: destroy keyring after security_sb_delete() | | |
| CVE-2023-53056 | scsi: qla2xxx: Synchronize the IOCB count to be in order | | |
| CVE-2023-53057 | Bluetooth: HCI: Fix global-out-of-bounds | | |
| CVE-2023-53058 | net/mlx5: E-Switch, Fix an Oops in error handling code | | |
| CVE-2023-53059 | platform/chrome: cros_ec_chardev: fix kernel data leak from ioctl | | |
| CVE-2023-53060 | igb: revert rtnl_lock() that causes deadlock | | |
| CVE-2023-53061 | ksmbd: fix possible refcount leak in smb2_open() | | |
| CVE-2023-53062 | net: usb: smsc95xx: Limit packet length to skb->len | | |
| CVE-2023-53063 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-53064 | iavf: fix hang on reboot with ice | | |
| CVE-2023-53065 | perf/core: Fix perf_output_begin parameter is incorrectly invoked in perf_event_bpf_output | | |
| CVE-2023-53066 | qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info | | |
| CVE-2023-53067 | LoongArch: Only call get_timer_irq() once in constant_clockevent_init() | | |
| CVE-2023-53068 | net: usb: lan78xx: Limit packet length to skb->len | | |
| CVE-2023-53069 | octeontx2-vf: Add missing free for alloc_percpu | | |
| CVE-2023-53070 | ACPI: PPTT: Fix to avoid sleep in the atomic context when PPTT is absent | | |
| CVE-2023-53071 | wifi: mt76: do not run mt76_unregister_device() on unregistered hw | | |
| CVE-2023-53072 | mptcp: use the workqueue to destroy unaccepted sockets | | |
| CVE-2023-53073 | perf/x86/amd/core: Always clear status for idx | | |
| CVE-2023-53074 | drm/amdgpu: fix ttm_bo calltrace warning in psp_hw_fini | | |
| CVE-2023-53075 | ftrace: Fix invalid address access in lookup_rec() when index is 0 | | |
| CVE-2023-53076 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-53077 | drm/amd/display: fix shift-out-of-bounds in CalculateVMAndRowBytes | | |
| CVE-2023-53078 | scsi: scsi_dh_alua: Fix memleak for 'qdata' in alua_activate() | | |
| CVE-2023-53079 | net/mlx5: Fix steering rules cleanup | | |
| CVE-2023-53080 | xsk: Add missing overflow check in xdp_umem_reg | | |
| CVE-2023-53081 | ocfs2: fix data corruption after failed write | | |
| CVE-2023-53082 | vp_vdpa: fix the crash in hot unplug with vp_vdpa | | |
| CVE-2023-53083 | nfsd: don't replace page in rq_pages if it's a continuation of last page | | |
| CVE-2023-53084 | drm/shmem-helper: Remove another errant put in error path | | |
| CVE-2023-53085 | drm/edid: fix info leak when failing to get panel id | | |
| CVE-2023-53086 | wifi: mt76: connac: do not check WED status for non-mmio devices | | |
| CVE-2023-53087 | drm/i915/active: Fix misuse of non-idle barriers as fence trackers | | |
| CVE-2023-53088 | mptcp: fix UaF in listener shutdown | | |
| CVE-2023-53089 | ext4: fix task hung in ext4_xattr_delete_inode | | |
| CVE-2023-53090 | drm/amdkfd: Fix an illegal memory access | | |
| CVE-2023-53091 | ext4: update s_journal_inum if it changes after journal replay | | |
| CVE-2023-53092 | interconnect: exynos: fix node leak in probe PM QoS error path | | |
| CVE-2023-53093 | tracing: Do not let histogram values have some modifiers | | |
| CVE-2023-53094 | tty: serial: fsl_lpuart: fix race on RX DMA shutdown | | |
| CVE-2023-53095 | drm/ttm: Fix a NULL pointer dereference | | |
| CVE-2023-53096 | interconnect: fix mem leak when freeing nodes | | |
| CVE-2023-53097 | powerpc/iommu: fix memory leak with using debugfs_lookup() | | |
| CVE-2023-53098 | media: rc: gpio-ir-recv: add remove function | | |
| CVE-2023-53099 | firmware: xilinx: don't make a sleepable memory allocation from an atomic context | | |
| CVE-2023-53100 | ext4: fix WARNING in ext4_update_inline_data | | |
| CVE-2023-53101 | ext4: zero i_disksize when initializing the bootloader inode | | |
| CVE-2023-53102 | ice: xsk: disable txq irq before flushing hw | | |
| CVE-2023-53103 | bonding: restore bond's IFF_SLAVE flag if a non-eth dev enslave fails | | |
| CVE-2023-53104 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-53105 | net/mlx5e: Fix cleanup null-ptr deref on encap lock | | |
| CVE-2023-53106 | nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition | | |
| CVE-2023-53107 | veth: Fix use after free in XDP_REDIRECT | | |
| CVE-2023-53108 | net/iucv: Fix size of interrupt data | | |
| CVE-2023-53109 | net: tunnels: annotate lockless accesses to dev->needed_headroom | | |
| CVE-2023-53110 | net/smc: fix NULL sndbuf_desc in smc_cdc_tx_handler() | | |
| CVE-2023-53111 | loop: Fix use-after-free issues | | |
| CVE-2023-53112 | drm/i915/sseu: fix max_subslices array-index-out-of-bounds access | | |
| CVE-2023-53113 | wifi: nl80211: fix NULL-ptr deref in offchan check | | |
| CVE-2023-53114 | i40e: Fix kernel crash during reboot when adapter is in recovery mode | | |
| CVE-2023-53115 | scsi: mpi3mr: Fix memory leaks in mpi3mr_init_ioc() | | |
| CVE-2023-53116 | nvmet: avoid potential UAF in nvmet_req_complete() | | |
| CVE-2023-53117 | fs: prevent out-of-bounds array speculation when closing a file descriptor | | |
| CVE-2023-53118 | scsi: core: Fix a procfs host directory removal regression | | |
| CVE-2023-53119 | nfc: pn533: initialize struct pn533_out_arg properly | | |
| CVE-2023-53120 | scsi: mpi3mr: Fix config page DMA memory leak | | |
| CVE-2023-53121 | tcp: tcp_make_synack() can be called from process context | | |
| CVE-2023-53122 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-53123 | PCI: s390: Fix use-after-free of PCI resources with per-function hotplug | | |
| CVE-2023-53124 | scsi: mpt3sas: Fix NULL pointer access in mpt3sas_transport_port_add() | | |
| CVE-2023-53125 | net: usb: smsc75xx: Limit packet length to skb->len | | |
| CVE-2023-53126 | scsi: mpi3mr: Fix sas_hba.phy memory leak in mpi3mr_remove() | | |
| CVE-2023-53127 | scsi: mpi3mr: Fix expander node leak in mpi3mr_remove() | | |
| CVE-2023-53128 | scsi: mpi3mr: Fix throttle_groups memory leak | | |
| CVE-2023-53129 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-53130 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-53131 | SUNRPC: Fix a server shutdown leak | | |
| CVE-2023-53132 | scsi: mpi3mr: Fix mpi3mr_hba_port memory leak in mpi3mr_remove() | | |
| CVE-2023-53133 | bpf, sockmap: Fix an infinite loop error when len is 0 in tcp_bpf_recvmsg_parser() | | |
| CVE-2023-53134 | bnxt_en: Avoid order-5 memory allocation for TPA data | | |
| CVE-2023-53135 | riscv: Use READ_ONCE_NOCHECK in imprecise unwinding stack mode | | |
| CVE-2023-53136 | af_unix: fix struct pid leaks in OOB support | | |
| CVE-2023-53137 | ext4: Fix possible corruption when moving a directory | | |
| CVE-2023-53138 | net: caif: Fix use-after-free in cfusbl_device_notify() | | |
| CVE-2023-53139 | nfc: fdp: add null check of devm_kmalloc_array in fdp_nci_i2c_read_device_properties | | |
| CVE-2023-53140 | scsi: core: Remove the /proc/scsi/${proc_name} directory earlier | | |
| CVE-2023-53141 | ila: do not generate empty messages in ila_xlat_nl_cmd_get_mapping() | | |
| CVE-2023-53142 | ice: copy last block omitted in ice_get_module_eeprom() | | |
| CVE-2023-53143 | ext4: fix another off-by-one fsmap error on 1k block filesystems | | |
| CVE-2023-53144 | erofs: fix wrong kunmap when using LZMA on HIGHMEM platforms | | |
| CVE-2023-53145 | Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition | | |
| CVE-2023-53146 | media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() | | |
| CVE-2023-53154 | parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing n... | E |