CVE List - 2025 / December
Showing 1101 - 1200 of 3706 CVEs for December 2025 (Page 12 of 38)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-50649 | 2025-12-09 | power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type() |
| CVE-2022-50650 | 2025-12-09 | bpf: Fix reference state management for synchronous callbacks |
| CVE-2022-50651 | 2025-12-09 | ethtool: eeprom: fix null-deref on genl_info in dump |
| CVE-2022-50652 | 2025-12-09 | uio: uio_dmem_genirq: Fix missing unlock in irq configuration |
| CVE-2022-50653 | 2025-12-09 | mmc: atmel-mci: fix return value check of mmc_add_host() |
| CVE-2022-50654 | 2025-12-09 | bpf: Fix panic due to wrong pageattr of im->image |
| CVE-2022-50655 | 2025-12-09 | ppp: associate skb with a device at tx |
| CVE-2022-50656 | 2025-12-09 | nfc: pn533: Clear nfc_target before being used |
| CVE-2023-53777 | 2025-12-09 | erofs: kill hooked chains to avoid loops on deduplicated compressed images |
| CVE-2023-53778 | 2025-12-09 | accel/qaic: Clean up integer overflow checking in map_user_pages() |
| CVE-2023-53779 | 2025-12-09 | mfd: dln2: Fix memory leak in dln2_probe() |
| CVE-2023-53780 | 2025-12-09 | drm/amd/display: fix FCLK pstate change underflow |
| CVE-2023-53781 | 2025-12-09 | smc: Fix use-after-free in tcp_write_timer_handler(). |
| CVE-2023-53782 | 2025-12-09 | dccp: Fix out of bounds access in DCCP error handler |
| CVE-2023-53783 | 2025-12-09 | blk-iocost: fix divide by 0 error in calc_lcoefs() |
| CVE-2023-53784 | 2025-12-09 | drm: bridge: dw_hdmi: fix connector access for scdc |
| CVE-2023-53785 | 2025-12-09 | mt76: mt7921: don't assume adequate headroom for SDIO headers |
| CVE-2023-53786 | 2025-12-09 | dm flakey: fix a crash with invalid table line |
| CVE-2023-53787 | 2025-12-09 | regulator: da9063: fix null pointer deref with partial DT config |
| CVE-2023-53788 | 2025-12-09 | ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set() |
| CVE-2023-53789 | 2025-12-09 | iommu/amd: Improve page fault error reporting |
| CVE-2023-53790 | 2025-12-09 | bpf: Zeroing allocated object from slab in bpf memory allocator |
| CVE-2023-53791 | 2025-12-09 | md: fix warning for holder mismatch from export_rdev() |
| CVE-2023-53792 | 2025-12-09 | nvme-core: fix memory leak in dhchap_ctrl_secret |
| CVE-2023-53793 | 2025-12-09 | perf tool x86: Fix perf_env memory leak |
| CVE-2023-53794 | 2025-12-09 | cifs: fix session state check in reconnect to avoid use-after-free issue |
| CVE-2023-53795 | 2025-12-09 | iommufd: IOMMUFD_DESTROY should not increase the refcount |
| CVE-2023-53796 | 2025-12-09 | f2fs: fix information leak in f2fs_move_inline_dirents() |
| CVE-2023-53797 | 2025-12-09 | HID: wacom: Use ktime_t rather than int when dealing with timestamps |
| CVE-2023-53798 | 2025-12-09 | ethtool: Fix uninitialized number of lanes |
| CVE-2023-53799 | 2025-12-09 | crypto: api - Use work queue in crypto_destroy_instance |
| CVE-2023-53800 | 2025-12-09 | ubi: Fix use-after-free when volume resizing failed |
| CVE-2023-53801 | 2025-12-09 | iommu/sprd: Release dma buffer to avoid memory leak |
| CVE-2023-53802 | 2025-12-09 | wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function |
| CVE-2023-53803 | 2025-12-09 | scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process() |
| CVE-2023-53804 | 2025-12-09 | nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() |
| CVE-2023-53806 | 2025-12-09 | drm/amd/display: populate subvp cmd info only for the top pipe |
| CVE-2023-53807 | 2025-12-09 | clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider() |
| CVE-2023-53808 | 2025-12-09 | wifi: mwifiex: fix memory leak in mwifiex_histogram_read() |
| CVE-2023-53809 | 2025-12-09 | l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register() |
| CVE-2023-53810 | 2025-12-09 | blk-mq: release crypto keyslot before reporting I/O complete |
| CVE-2023-53811 | 2025-12-09 | RDMA/irdma: Cap MSIX used to online CPUs + 1 |
| CVE-2023-53812 | 2025-12-09 | media: mediatek: vcodec: fix decoder disable pm crash |
| CVE-2023-53813 | 2025-12-09 | ext4: fix rbtree traversal bug in ext4_mb_use_preallocated |
| CVE-2023-53814 | 2025-12-09 | PCI: Fix dropping valid root bus resources with .end = zero |
| CVE-2023-53815 | 2025-12-09 | posix-timers: Prevent RT livelock in itimer_delete() |
| CVE-2023-53816 | 2025-12-09 | drm/amdkfd: fix potential kgd_mem UAFs |
| CVE-2023-53817 | 2025-12-09 | crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() |
| CVE-2023-53818 | 2025-12-09 | ARM: zynq: Fix refcount leak in zynq_early_slcr_init |
| CVE-2023-53819 | 2025-12-09 | amdgpu: validate offset_in_bo of drm_amdgpu_gem_va |
| CVE-2025-66470 | 2025-12-09 | NiceGUI Stored/Reflected XSS in ui.interactive_image via unsanitized SVG content |
| CVE-2013-10031 | 2025-12-09 | Plack::Middleware::Session versions before 0.17 for Perl may be vulnerable to HMAC comparison timing attacks |
| CVE-2025-66481 | 2025-12-09 | DeepChat's Incomplete XSS Fix Allows RCE through Mermaid Content |
| CVE-2025-66490 | 2025-12-09 | Traefik doesn't Prevent Path Normalization Bypass in Router + Middleware Rules |
| CVE-2025-66491 | 2025-12-09 | Traefik has Inverted TLS Verification Logic in its ingress-nginx Provider |
| CVE-2025-14285 | 2025-12-09 | code-projects Employee Profile Management System edit_personnel.php sql injection |
| CVE-2023-53820 | 2025-12-09 | loop: loop_set_status_from_info() check before assignment |
| CVE-2025-66507 | 2025-12-09 | 1Panel – CAPTCHA Bypass via Client-Controlled Flag |
| CVE-2022-50657 | 2025-12-09 | riscv: mm: add missing memcpy in kasan_init |
| CVE-2022-50658 | 2025-12-09 | cpufreq: qcom: fix memory leak in error path |
| CVE-2022-50659 | 2025-12-09 | hwrng: geode - Fix PCI device refcount leak |
| CVE-2022-50660 | 2025-12-09 | wifi: ipw2200: fix memory leak in ipw_wdev_init() |
| CVE-2022-50661 | 2025-12-09 | seccomp: Move copy_seccomp() to no failure path. |
| CVE-2022-50662 | 2025-12-09 | RDMA/hns: fix memory leak in hns_roce_alloc_mr() |
| CVE-2022-50663 | 2025-12-09 | net: stmmac: fix possible memory leak in stmmac_dvr_probe() |
| CVE-2022-50664 | 2025-12-09 | media: dvb-frontends: fix leak of memory fw |
| CVE-2022-50665 | 2025-12-09 | wifi: ath11k: fix failed to find the peer with peer_id 0 when disconnected |
| CVE-2022-50666 | 2025-12-09 | RDMA/siw: Fix QP destroy to wait for all references dropped. |
| CVE-2022-50667 | 2025-12-09 | drm/vmwgfx: Fix memory leak in vmw_mksstat_add_ioctl() |
| CVE-2022-50668 | 2025-12-09 | ext4: fix deadlock due to mbcache entry corruption |
| CVE-2022-50669 | 2025-12-09 | misc: ocxl: fix possible name leak in ocxl_file_register_afu() |
| CVE-2022-50670 | 2025-12-09 | mmc: omap_hsmmc: fix return value check of mmc_add_host() |
| CVE-2022-50671 | 2025-12-09 | RDMA/rxe: Fix "kernel NULL pointer dereference" error |
| CVE-2022-50672 | 2025-12-09 | mailbox: zynq-ipi: fix error handling while device_register() fails |
| CVE-2022-50673 | 2025-12-09 | ext4: fix use-after-free in ext4_orphan_cleanup |
| CVE-2022-50674 | 2025-12-09 | riscv: vdso: fix NULL deference in vdso_join_timens() when vfork |
| CVE-2022-50675 | 2025-12-09 | arm64: mte: Avoid setting PG_mte_tagged if no tags cleared or restored |
| CVE-2022-50676 | 2025-12-09 | net: rds: don't hold sock lock when cancelling work from rds_tcp_reset_callbacks() |
| CVE-2022-50677 | 2025-12-09 | ipmi: fix use after free in _ipmi_destroy_user() |
| CVE-2022-50678 | 2025-12-09 | wifi: brcmfmac: fix invalid address access when enabling SCAN log level |
| CVE-2022-50679 | 2025-12-09 | i40e: Fix DMA mappings leak |
| CVE-2023-53821 | 2025-12-09 | ip6_vti: fix slab-use-after-free in decode_session6 |
| CVE-2023-53822 | 2025-12-09 | wifi: ath11k: Ignore frags from uninitialized peer in dp. |
| CVE-2023-53823 | 2025-12-09 | block/rq_qos: protect rq_qos apis with a new lock |
| CVE-2023-53824 | 2025-12-09 | netlink: annotate lockless accesses to nlk->max_recvmsg_len |
| CVE-2023-53825 | 2025-12-09 | kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg(). |
| CVE-2023-53826 | 2025-12-09 | ubi: Fix UAF wear-leveling entry in eraseblk_count_seq_show() |
| CVE-2023-53827 | 2025-12-09 | Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} |
| CVE-2023-53828 | 2025-12-09 | Bluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor() |
| CVE-2023-53829 | 2025-12-09 | f2fs: flush inode if atomic file is aborted |
| CVE-2023-53830 | 2025-12-09 | platform/x86: think-lmi: Fix memory leak when showing current settings |
| CVE-2023-53831 | 2025-12-09 | net: read sk->sk_family once in sk_mc_loop() |
| CVE-2023-53832 | 2025-12-09 | md/raid10: fix null-ptr-deref in raid10_sync_request |
| CVE-2023-53833 | 2025-12-09 | drm/i915: Fix NULL ptr deref by checking new_crtc_state |
| CVE-2023-53834 | 2025-12-09 | iio: adc: ina2xx: avoid NULL pointer dereference on OF device match |
| CVE-2023-53836 | 2025-12-09 | bpf, sockmap: Fix skb refcnt race after locking changes |
| CVE-2023-53837 | 2025-12-09 | drm/msm: fix NULL-deref on snapshot tear down |
| CVE-2023-53838 | 2025-12-09 | f2fs: synchronize atomic write aborts |
| CVE-2023-53839 | 2025-12-09 | dccp: fix data-race around dp->dccps_mss_cache |
| CVE-2023-53840 | 2025-12-09 | usb: early: xhci-dbc: Fix a potential out-of-bound memory access |