No description is available for this CVE.

No description is available for this CVE.

No description is available for this CVE.

No description is available for this CVE.

No description is available for this CVE.

No description is available for this CVE.

A NULL pointer dereference vulnerability was found in the Linux kernel's XFS filesystem. The xfarray_destroy() and xfblob_destroy() functions are called without checking if the pointer is valid. When these destructors are invoked on NULL pointers during cleanup paths, a kernel crash occurs. The fix adds NULL checks before calling the destructors and nullifies the pointers afterward to prevent double-free issues.

No description is available for this CVE.

A NULL pointer dereference vulnerability was found in the Linux kernel's XFS filesystem scrub/repair code. In xrep_revalidate_allocbt(), when revalidating both the BNOBT and CNTBT btrees, if the first btree validation fails during cross-reference, the second btree cursor is nullified. The code then attempts to revalidate the second btree using the NULL cursor, causing a kernel crash.

A use-after-free vulnerability was found in the Linux kernel's perf subsystem. A race condition exists in perf_mmap() between a failing mmap() setup and concurrent mmap() operations on dependent events. When map_range() fails, the cleanup path runs while the mmap_mutex is released, allowing another thread to observe and access a ring buffer whose reference count has already reached zero. This can result in use-after-free or refcount corruption.

No description is available for this CVE.

A flaw was found in the Linux kernel's mac80211 Wi-Fi subsystem. This vulnerability occurs in the ieee80211_ml_reconfiguration function when processing a Multi-Link (ML) Reconfiguration element. An attacker can provide a crafted link_id value that is not properly bounds-checked, leading to an out-of-bounds write on the stack. This can result in a denial of service (DoS), potentially making the system unavailable.

No description is available for this CVE.

No description is available for this CVE.

A flaw was found in the Linux kernel's Remote Direct Memory Access (RDMA) `umad` (User Mode Access Device) component. A local user can exploit this vulnerability by manipulating input, causing an integer underflow that leads to an out-of-bounds memory write. This memory corruption can result in a denial of service (DoS) by crashing the system, and may also lead to limited information disclosure or data integrity issues.

A NULL pointer dereference vulnerability was found in the Linux kernel's Software iWARP (siw) RDMA driver. In siw_tcp_rx_data(), when siw_get_hdr() returns -EINVAL before set_rx_fpdu_context() is called, the qp->rx_fpdu pointer remains NULL. The error handling path then dereferences qp->rx_fpdu->more_ddp_segs without a NULL check, causing a kernel crash.

No description is available for this CVE.

A flaw was found in the Linux kernel. A local user could exploit a race condition in the TLS (Transport Layer Security) subsystem's `tls_sw_cancel_work_tx()` function. This race condition may allow the system to dereference a freed TLS object, potentially leading to a denial of service.

Inappropriate implementation in Downloads in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

A flaw was found in the Linux kernel's espintcp component. A local attacker with low privileges could exploit a race condition in the espintcp_close() function. This could allow the espintcp_tx_work() worker to access freed memory, potentially leading to a system crash and resulting in a Denial of Service (DoS).