Vulnerability-Lookup

CVE-2022-50371 (GCVE-0-2022-50371)

Vulnerability from cvelistv5 – Published: 2025-09-17 14:56 – Updated: 2026-01-14 18:42

Title

led: qcom-lpg: Fix sleeping in atomic

Summary

In the Linux kernel, the following vulnerability has been resolved: led: qcom-lpg: Fix sleeping in atomic lpg_brighness_set() function can sleep, while led's brightness_set() callback must be non-blocking. Change LPG driver to use brightness_set_blocking() instead. BUG: sleeping function called from invalid context at kernel/locking/mutex.c:580 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 0, name: swapper/0 preempt_count: 101, expected: 0 INFO: lockdep is turned off. CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.0-rc1-00014-gbe99b089c6fc-dirty #85 Hardware name: Qualcomm Technologies, Inc. DB820c (DT) Call trace: dump_backtrace.part.0+0xe4/0xf0 show_stack+0x18/0x40 dump_stack_lvl+0x88/0xb4 dump_stack+0x18/0x34 __might_resched+0x170/0x254 __might_sleep+0x48/0x9c __mutex_lock+0x4c/0x400 mutex_lock_nested+0x2c/0x40 lpg_brightness_single_set+0x40/0x90 led_set_brightness_nosleep+0x34/0x60 led_heartbeat_function+0x80/0x170 call_timer_fn+0xb8/0x340 __run_timers.part.0+0x20c/0x254 run_timer_softirq+0x3c/0x7c _stext+0x14c/0x578 ____do_softirq+0x10/0x20 call_on_irq_stack+0x2c/0x5c do_softirq_own_stack+0x1c/0x30 __irq_exit_rcu+0x164/0x170 irq_exit_rcu+0x10/0x40 el1_interrupt+0x38/0x50 el1h_64_irq_handler+0x18/0x2c el1h_64_irq+0x64/0x68 cpuidle_enter_state+0xc8/0x380 cpuidle_enter+0x38/0x50 do_idle+0x244/0x2d0 cpu_startup_entry+0x24/0x30 rest_init+0x128/0x1a0 arch_post_acpi_subsys_init+0x0/0x18 start_kernel+0x6f4/0x734 __primary_switched+0xbc/0xc4

Severity ?

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-667 - Improper Locking

Assigner

Linux

References

URL

Tags

	https://git.kernel.org/stable/c/9deba7b51d5ee7a2d…
	https://git.kernel.org/stable/c/380304391fa7fb084…
	https://git.kernel.org/stable/c/3031993b3474794ec…

Impacted products

Vendor

Product

Version

Linux

Affected: 24e2d05d1b68981f22c984c766fabc5a93c83dba , < 9deba7b51d5ee7a2d93fabb69f9b8189241f90e3 (git)
Affected: 24e2d05d1b68981f22c984c766fabc5a93c83dba , < 380304391fa7fb084745f26b4b9a59f4666520c1 (git)
Affected: 24e2d05d1b68981f22c984c766fabc5a93c83dba , < 3031993b3474794ecb71b6f969a3e60e4bda9d8a (git)

Linux

Affected: 5.19
Unaffected: 0 , < 5.19 (semver)
Unaffected: 6.0.16 , ≤ 6.0.* (semver)
Unaffected: 6.1.2 , ≤ 6.1.* (semver)
Unaffected: 6.2 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-50371",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-14T18:36:15.417007Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-667",
                "description": "CWE-667 Improper Locking",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-14T18:42:59.970Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/leds/rgb/leds-qcom-lpg.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "9deba7b51d5ee7a2d93fabb69f9b8189241f90e3",
              "status": "affected",
              "version": "24e2d05d1b68981f22c984c766fabc5a93c83dba",
              "versionType": "git"
            },
            {
              "lessThan": "380304391fa7fb084745f26b4b9a59f4666520c1",
              "status": "affected",
              "version": "24e2d05d1b68981f22c984c766fabc5a93c83dba",
              "versionType": "git"
            },
            {
              "lessThan": "3031993b3474794ecb71b6f969a3e60e4bda9d8a",
              "status": "affected",
              "version": "24e2d05d1b68981f22c984c766fabc5a93c83dba",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/leds/rgb/leds-qcom-lpg.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.*",
              "status": "unaffected",
              "version": "6.0.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.2",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0.16",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.2",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.2",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nled: qcom-lpg: Fix sleeping in atomic\n\nlpg_brighness_set() function can sleep, while led\u0027s brightness_set()\ncallback must be non-blocking. Change LPG driver to use\nbrightness_set_blocking() instead.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:580\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 0, name: swapper/0\npreempt_count: 101, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W          6.1.0-rc1-00014-gbe99b089c6fc-dirty #85\nHardware name: Qualcomm Technologies, Inc. DB820c (DT)\nCall trace:\n dump_backtrace.part.0+0xe4/0xf0\n show_stack+0x18/0x40\n dump_stack_lvl+0x88/0xb4\n dump_stack+0x18/0x34\n __might_resched+0x170/0x254\n __might_sleep+0x48/0x9c\n __mutex_lock+0x4c/0x400\n mutex_lock_nested+0x2c/0x40\n lpg_brightness_single_set+0x40/0x90\n led_set_brightness_nosleep+0x34/0x60\n led_heartbeat_function+0x80/0x170\n call_timer_fn+0xb8/0x340\n __run_timers.part.0+0x20c/0x254\n run_timer_softirq+0x3c/0x7c\n _stext+0x14c/0x578\n ____do_softirq+0x10/0x20\n call_on_irq_stack+0x2c/0x5c\n do_softirq_own_stack+0x1c/0x30\n __irq_exit_rcu+0x164/0x170\n irq_exit_rcu+0x10/0x40\n el1_interrupt+0x38/0x50\n el1h_64_irq_handler+0x18/0x2c\n el1h_64_irq+0x64/0x68\n cpuidle_enter_state+0xc8/0x380\n cpuidle_enter+0x38/0x50\n do_idle+0x244/0x2d0\n cpu_startup_entry+0x24/0x30\n rest_init+0x128/0x1a0\n arch_post_acpi_subsys_init+0x0/0x18\n start_kernel+0x6f4/0x734\n __primary_switched+0xbc/0xc4"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-17T14:56:26.854Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/9deba7b51d5ee7a2d93fabb69f9b8189241f90e3"
        },
        {
          "url": "https://git.kernel.org/stable/c/380304391fa7fb084745f26b4b9a59f4666520c1"
        },
        {
          "url": "https://git.kernel.org/stable/c/3031993b3474794ecb71b6f969a3e60e4bda9d8a"
        }
      ],
      "title": "led: qcom-lpg: Fix sleeping in atomic",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-50371",
    "datePublished": "2025-09-17T14:56:26.854Z",
    "dateReserved": "2025-09-17T14:53:06.995Z",
    "dateUpdated": "2026-01-14T18:42:59.970Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-50371\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-09-17T15:15:36.070\",\"lastModified\":\"2026-01-14T19:16:10.223\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nled: qcom-lpg: Fix sleeping in atomic\\n\\nlpg_brighness_set() function can sleep, while led\u0027s brightness_set()\\ncallback must be non-blocking. Change LPG driver to use\\nbrightness_set_blocking() instead.\\n\\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:580\\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 0, name: swapper/0\\npreempt_count: 101, expected: 0\\nINFO: lockdep is turned off.\\nCPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W          6.1.0-rc1-00014-gbe99b089c6fc-dirty #85\\nHardware name: Qualcomm Technologies, Inc. DB820c (DT)\\nCall trace:\\n dump_backtrace.part.0+0xe4/0xf0\\n show_stack+0x18/0x40\\n dump_stack_lvl+0x88/0xb4\\n dump_stack+0x18/0x34\\n __might_resched+0x170/0x254\\n __might_sleep+0x48/0x9c\\n __mutex_lock+0x4c/0x400\\n mutex_lock_nested+0x2c/0x40\\n lpg_brightness_single_set+0x40/0x90\\n led_set_brightness_nosleep+0x34/0x60\\n led_heartbeat_function+0x80/0x170\\n call_timer_fn+0xb8/0x340\\n __run_timers.part.0+0x20c/0x254\\n run_timer_softirq+0x3c/0x7c\\n _stext+0x14c/0x578\\n ____do_softirq+0x10/0x20\\n call_on_irq_stack+0x2c/0x5c\\n do_softirq_own_stack+0x1c/0x30\\n __irq_exit_rcu+0x164/0x170\\n irq_exit_rcu+0x10/0x40\\n el1_interrupt+0x38/0x50\\n el1h_64_irq_handler+0x18/0x2c\\n el1h_64_irq+0x64/0x68\\n cpuidle_enter_state+0xc8/0x380\\n cpuidle_enter+0x38/0x50\\n do_idle+0x244/0x2d0\\n cpu_startup_entry+0x24/0x30\\n rest_init+0x128/0x1a0\\n arch_post_acpi_subsys_init+0x0/0x18\\n start_kernel+0x6f4/0x734\\n __primary_switched+0xbc/0xc4\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-667\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-667\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.19\",\"versionEndExcluding\":\"6.0.16\",\"matchCriteriaId\":\"A08EEDC4-2AA1-45E2-9BEC-F711E077B623\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.1\",\"versionEndExcluding\":\"6.1.2\",\"matchCriteriaId\":\"77239F4B-6BB2-4B9E-A654-36A52396116C\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/3031993b3474794ecb71b6f969a3e60e4bda9d8a\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/380304391fa7fb084745f26b4b9a59f4666520c1\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/9deba7b51d5ee7a2d93fabb69f9b8189241f90e3\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-50371\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-01-14T18:36:15.417007Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-667\", \"description\": \"CWE-667 Improper Locking\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-01-14T18:36:11.294Z\"}}], \"cna\": {\"title\": \"led: qcom-lpg: Fix sleeping in atomic\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"24e2d05d1b68981f22c984c766fabc5a93c83dba\", \"lessThan\": \"9deba7b51d5ee7a2d93fabb69f9b8189241f90e3\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"24e2d05d1b68981f22c984c766fabc5a93c83dba\", \"lessThan\": \"380304391fa7fb084745f26b4b9a59f4666520c1\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"24e2d05d1b68981f22c984c766fabc5a93c83dba\", \"lessThan\": \"3031993b3474794ecb71b6f969a3e60e4bda9d8a\", \"versionType\": \"git\"}], \"programFiles\": [\"drivers/leds/rgb/leds-qcom-lpg.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.19\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"5.19\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"6.0.16\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.0.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.2\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.2\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"drivers/leds/rgb/leds-qcom-lpg.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/9deba7b51d5ee7a2d93fabb69f9b8189241f90e3\"}, {\"url\": \"https://git.kernel.org/stable/c/380304391fa7fb084745f26b4b9a59f4666520c1\"}, {\"url\": \"https://git.kernel.org/stable/c/3031993b3474794ecb71b6f969a3e60e4bda9d8a\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nled: qcom-lpg: Fix sleeping in atomic\\n\\nlpg_brighness_set() function can sleep, while led\u0027s brightness_set()\\ncallback must be non-blocking. Change LPG driver to use\\nbrightness_set_blocking() instead.\\n\\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:580\\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 0, name: swapper/0\\npreempt_count: 101, expected: 0\\nINFO: lockdep is turned off.\\nCPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W          6.1.0-rc1-00014-gbe99b089c6fc-dirty #85\\nHardware name: Qualcomm Technologies, Inc. DB820c (DT)\\nCall trace:\\n dump_backtrace.part.0+0xe4/0xf0\\n show_stack+0x18/0x40\\n dump_stack_lvl+0x88/0xb4\\n dump_stack+0x18/0x34\\n __might_resched+0x170/0x254\\n __might_sleep+0x48/0x9c\\n __mutex_lock+0x4c/0x400\\n mutex_lock_nested+0x2c/0x40\\n lpg_brightness_single_set+0x40/0x90\\n led_set_brightness_nosleep+0x34/0x60\\n led_heartbeat_function+0x80/0x170\\n call_timer_fn+0xb8/0x340\\n __run_timers.part.0+0x20c/0x254\\n run_timer_softirq+0x3c/0x7c\\n _stext+0x14c/0x578\\n ____do_softirq+0x10/0x20\\n call_on_irq_stack+0x2c/0x5c\\n do_softirq_own_stack+0x1c/0x30\\n __irq_exit_rcu+0x164/0x170\\n irq_exit_rcu+0x10/0x40\\n el1_interrupt+0x38/0x50\\n el1h_64_irq_handler+0x18/0x2c\\n el1h_64_irq+0x64/0x68\\n cpuidle_enter_state+0xc8/0x380\\n cpuidle_enter+0x38/0x50\\n do_idle+0x244/0x2d0\\n cpu_startup_entry+0x24/0x30\\n rest_init+0x128/0x1a0\\n arch_post_acpi_subsys_init+0x0/0x18\\n start_kernel+0x6f4/0x734\\n __primary_switched+0xbc/0xc4\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.0.16\", \"versionStartIncluding\": \"5.19\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.1.2\", \"versionStartIncluding\": \"5.19\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.2\", \"versionStartIncluding\": \"5.19\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2025-09-17T14:56:26.854Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2022-50371\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-01-14T18:42:59.970Z\", \"dateReserved\": \"2025-09-17T14:53:06.995Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2025-09-17T14:56:26.854Z\", \"assignerShortName\": \"Linux\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

GHSA-2X9F-2VFM-PQM9

Vulnerability from github – Published: 2025-09-17 15:30 – Updated: 2025-12-12 18:30

Details

In the Linux kernel, the following vulnerability has been resolved:

led: qcom-lpg: Fix sleeping in atomic

lpg_brighness_set() function can sleep, while led's brightness_set() callback must be non-blocking. Change LPG driver to use brightness_set_blocking() instead.

BUG: sleeping function called from invalid context at kernel/locking/mutex.c:580 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 0, name: swapper/0 preempt_count: 101, expected: 0 INFO: lockdep is turned off. CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.0-rc1-00014-gbe99b089c6fc-dirty #85 Hardware name: Qualcomm Technologies, Inc. DB820c (DT) Call trace: dump_backtrace.part.0+0xe4/0xf0 show_stack+0x18/0x40 dump_stack_lvl+0x88/0xb4 dump_stack+0x18/0x34 __might_resched+0x170/0x254 __might_sleep+0x48/0x9c __mutex_lock+0x4c/0x400 mutex_lock_nested+0x2c/0x40 lpg_brightness_single_set+0x40/0x90 led_set_brightness_nosleep+0x34/0x60 led_heartbeat_function+0x80/0x170 call_timer_fn+0xb8/0x340 __run_timers.part.0+0x20c/0x254 run_timer_softirq+0x3c/0x7c _stext+0x14c/0x578 _dosoftirq+0x10/0x20 call_on_irq_stack+0x2c/0x5c do_softirq_own_stack+0x1c/0x30 irq_exit_rcu+0x164/0x170 irq_exit_rcu+0x10/0x40 el1_interrupt+0x38/0x50 el1h_64_irq_handler+0x18/0x2c el1h_64_irq+0x64/0x68 cpuidle_enter_state+0xc8/0x380 cpuidle_enter+0x38/0x50 do_idle+0x244/0x2d0 cpu_startup_entry+0x24/0x30 rest_init+0x128/0x1a0 arch_post_acpi_subsys_init+0x0/0x18 start_kernel+0x6f4/0x734 __primary_switched+0xbc/0xc4

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-50371"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-667"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-09-17T15:15:36Z",
    "severity": "MODERATE"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nled: qcom-lpg: Fix sleeping in atomic\n\nlpg_brighness_set() function can sleep, while led\u0027s brightness_set()\ncallback must be non-blocking. Change LPG driver to use\nbrightness_set_blocking() instead.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:580\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 0, name: swapper/0\npreempt_count: 101, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W          6.1.0-rc1-00014-gbe99b089c6fc-dirty #85\nHardware name: Qualcomm Technologies, Inc. DB820c (DT)\nCall trace:\n dump_backtrace.part.0+0xe4/0xf0\n show_stack+0x18/0x40\n dump_stack_lvl+0x88/0xb4\n dump_stack+0x18/0x34\n __might_resched+0x170/0x254\n __might_sleep+0x48/0x9c\n __mutex_lock+0x4c/0x400\n mutex_lock_nested+0x2c/0x40\n lpg_brightness_single_set+0x40/0x90\n led_set_brightness_nosleep+0x34/0x60\n led_heartbeat_function+0x80/0x170\n call_timer_fn+0xb8/0x340\n __run_timers.part.0+0x20c/0x254\n run_timer_softirq+0x3c/0x7c\n _stext+0x14c/0x578\n ____do_softirq+0x10/0x20\n call_on_irq_stack+0x2c/0x5c\n do_softirq_own_stack+0x1c/0x30\n __irq_exit_rcu+0x164/0x170\n irq_exit_rcu+0x10/0x40\n el1_interrupt+0x38/0x50\n el1h_64_irq_handler+0x18/0x2c\n el1h_64_irq+0x64/0x68\n cpuidle_enter_state+0xc8/0x380\n cpuidle_enter+0x38/0x50\n do_idle+0x244/0x2d0\n cpu_startup_entry+0x24/0x30\n rest_init+0x128/0x1a0\n arch_post_acpi_subsys_init+0x0/0x18\n start_kernel+0x6f4/0x734\n __primary_switched+0xbc/0xc4",
  "id": "GHSA-2x9f-2vfm-pqm9",
  "modified": "2025-12-12T18:30:27Z",
  "published": "2025-09-17T15:30:37Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50371"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/3031993b3474794ecb71b6f969a3e60e4bda9d8a"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/380304391fa7fb084745f26b4b9a59f4666520c1"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/9deba7b51d5ee7a2d93fabb69f9b8189241f90e3"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2022-50371

Vulnerability from fkie_nvd - Published: 2025-09-17 15:15 - Updated: 2025-12-12 16:34

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/3031993b3474794ecb71b6f969a3e60e4bda9d8a	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/380304391fa7fb084745f26b4b9a59f4666520c1	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/9deba7b51d5ee7a2d93fabb69f9b8189241f90e3	Patch

Impacted products

	Vendor	Product	Version
	linux	linux_kernel	*
	linux	linux_kernel	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A08EEDC4-2AA1-45E2-9BEC-F711E077B623",
              "versionEndExcluding": "6.0.16",
              "versionStartIncluding": "5.19",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "77239F4B-6BB2-4B9E-A654-36A52396116C",
              "versionEndExcluding": "6.1.2",
              "versionStartIncluding": "6.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nled: qcom-lpg: Fix sleeping in atomic\n\nlpg_brighness_set() function can sleep, while led\u0027s brightness_set()\ncallback must be non-blocking. Change LPG driver to use\nbrightness_set_blocking() instead.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:580\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 0, name: swapper/0\npreempt_count: 101, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W          6.1.0-rc1-00014-gbe99b089c6fc-dirty #85\nHardware name: Qualcomm Technologies, Inc. DB820c (DT)\nCall trace:\n dump_backtrace.part.0+0xe4/0xf0\n show_stack+0x18/0x40\n dump_stack_lvl+0x88/0xb4\n dump_stack+0x18/0x34\n __might_resched+0x170/0x254\n __might_sleep+0x48/0x9c\n __mutex_lock+0x4c/0x400\n mutex_lock_nested+0x2c/0x40\n lpg_brightness_single_set+0x40/0x90\n led_set_brightness_nosleep+0x34/0x60\n led_heartbeat_function+0x80/0x170\n call_timer_fn+0xb8/0x340\n __run_timers.part.0+0x20c/0x254\n run_timer_softirq+0x3c/0x7c\n _stext+0x14c/0x578\n ____do_softirq+0x10/0x20\n call_on_irq_stack+0x2c/0x5c\n do_softirq_own_stack+0x1c/0x30\n __irq_exit_rcu+0x164/0x170\n irq_exit_rcu+0x10/0x40\n el1_interrupt+0x38/0x50\n el1h_64_irq_handler+0x18/0x2c\n el1h_64_irq+0x64/0x68\n cpuidle_enter_state+0xc8/0x380\n cpuidle_enter+0x38/0x50\n do_idle+0x244/0x2d0\n cpu_startup_entry+0x24/0x30\n rest_init+0x128/0x1a0\n arch_post_acpi_subsys_init+0x0/0x18\n start_kernel+0x6f4/0x734\n __primary_switched+0xbc/0xc4"
    }
  ],
  "id": "CVE-2022-50371",
  "lastModified": "2025-12-12T16:34:14.853",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2025-09-17T15:15:36.070",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/3031993b3474794ecb71b6f969a3e60e4bda9d8a"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/380304391fa7fb084745f26b4b9a59f4666520c1"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/9deba7b51d5ee7a2d93fabb69f9b8189241f90e3"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-667"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

WID-SEC-W-2025-2087

Vulnerability from csaf_certbund - Published: 2025-09-17 22:00 - Updated: 2025-12-23 23:00

Summary

Linux Kernel: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff

Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen oder nicht näher beschriebene Auswirkungen zu erzielen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren oder nicht n\u00e4her beschriebene Auswirkungen zu erzielen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2087 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2087.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2087 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2087"
      },
      {
        "category": "external",
        "summary": "Kernel CVE Announce Mailingliste",
        "url": "https://lore.kernel.org/linux-cve-announce/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50353",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091711-CVE-2022-50353-2f1e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50354",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091714-CVE-2022-50354-45cc@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50355",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091714-CVE-2022-50355-11ce@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50356",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091714-CVE-2022-50356-fe76@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50357",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091714-CVE-2022-50357-4ae9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50358",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091714-CVE-2022-50358-6a86@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50359",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091714-CVE-2022-50359-e9fb@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50360",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091715-CVE-2022-50360-00c7@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50361",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091715-CVE-2022-50361-60ad@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50362",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091715-CVE-2022-50362-3640@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50363",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091715-CVE-2022-50363-7e9b@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50364",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091715-CVE-2022-50364-b594@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50365",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091716-CVE-2022-50365-9a71@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50366",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091716-CVE-2022-50366-0f75@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50367",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091716-CVE-2022-50367-651c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50368",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091716-CVE-2022-50368-ae84@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50369",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091716-CVE-2022-50369-bc92@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50370",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091716-CVE-2022-50370-7271@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50371",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091717-CVE-2022-50371-593f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50372",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091717-CVE-2022-50372-e3b5@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50373",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091717-CVE-2022-50373-ce58@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2022-50374",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091717-CVE-2022-50374-6da4@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53335",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091717-CVE-2023-53335-1e5d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53336",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091718-CVE-2023-53336-0abd@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53337",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091718-CVE-2023-53337-ac33@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53338",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091718-CVE-2023-53338-8224@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53339",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091718-CVE-2023-53339-437d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53340",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091718-CVE-2023-53340-c694@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53341",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091718-CVE-2023-53341-896e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53342",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091719-CVE-2023-53342-8505@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53343",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091719-CVE-2023-53343-880b@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53344",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091719-CVE-2023-53344-b8a4@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53345",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091719-CVE-2023-53345-0807@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53346",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091719-CVE-2023-53346-2268@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53347",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091719-CVE-2023-53347-ed20@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53348",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091720-CVE-2023-53348-513e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53349",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091720-CVE-2023-53349-deef@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53350",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091720-CVE-2023-53350-86b6@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53351",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091720-CVE-2023-53351-7b67@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53352",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091720-CVE-2023-53352-9be5@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53353",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091720-CVE-2023-53353-2611@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53354",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091721-CVE-2023-53354-771f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53355",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091721-CVE-2023-53355-823c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53356",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091721-CVE-2023-53356-5383@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53357",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091721-CVE-2023-53357-15aa@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53358",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091721-CVE-2023-53358-29d3@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53359",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091722-CVE-2023-53359-0569@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53360",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091722-CVE-2023-53360-a553@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53361",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091722-CVE-2023-53361-922a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53362",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091722-CVE-2023-53362-740e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53363",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091722-CVE-2023-53363-4ac2@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53364",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091722-CVE-2023-53364-8e1b@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53365",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091723-CVE-2023-53365-acb1@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53366",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091723-CVE-2023-53366-c8e7@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53367",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091723-CVE-2023-53367-ccb9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2023-53368",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091723-CVE-2023-53368-3371@gregkh/"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2025-3038 vom 2025-10-15",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-3038.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03615-1 vom 2025-10-16",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BVPLWRQN6MVKFQDJSEKN2JP6PMSGIO4Q/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03614-1 vom 2025-10-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022911.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03600-1 vom 2025-10-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VHWHH7ZSMFJ6PQZ3CBDGGCWHNBCWD26Z/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03613-1 vom 2025-10-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022915.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03626-1 vom 2025-10-17",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Z3DYHRRLY43MYRNEEU5SFR4ZRMSPITED/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03628-1 vom 2025-10-17",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/O6BEPQBC4GULLYP5G3VVU4ZS37B7I6EV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03634-1 vom 2025-10-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022925.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3716-1 vom 2025-10-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022962.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3761-1 vom 2025-10-23",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MLTPAKCOQABZPEY7O35CI42PHK5WNIUQ/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3751-1 vom 2025-10-23",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NMB6RXALFYMRMM4UK7R54RAQRCZJEBH4/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20851-1 vom 2025-10-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023025.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20861-1 vom 2025-10-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023019.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20870-1 vom 2025-10-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023060.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20898-1 vom 2025-10-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023116.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19409 vom 2025-11-03",
        "url": "https://access.redhat.com/errata/RHSA-2025:19409"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-19409 vom 2025-11-04",
        "url": "https://linux.oracle.com/errata/ELSA-2025-19409.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2025-390 vom 2025-11-05",
        "url": "https://www.dell.com/support/kbdoc/000385230"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19886 vom 2025-11-06",
        "url": "https://access.redhat.com/errata/RHSA-2025:19886"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19932 vom 2025-11-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:19932"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19931 vom 2025-11-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:19931"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21084 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21084"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21051 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21051"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-19931 vom 2025-11-11",
        "url": "https://linux.oracle.com/errata/ELSA-2025-19931.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4057-1 vom 2025-11-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023254.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21083 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21083"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21091 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21091"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21128 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21128"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21136 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21136"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:19932 vom 2025-11-13",
        "url": "https://errata.build.resf.org/RLSA-2025:19932"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21112 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21112"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:19931 vom 2025-11-13",
        "url": "https://errata.build.resf.org/RLSA-2025:19931"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4111-1 vom 2025-11-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023294.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4135-1 vom 2025-11-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023300.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4132-1 vom 2025-11-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023302.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4139-1 vom 2025-11-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023306.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4141-1 vom 2025-11-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023304.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4149-1 vom 2025-11-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023309.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22006 vom 2025-11-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:22006"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4189-1 vom 2025-11-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023334.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4188-1 vom 2025-11-24",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LVPUJWNDCBFGM2O2EFX4S5QBPKDARVQ7/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22066 vom 2025-11-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:22066"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22072 vom 2025-11-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:22072"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22095 vom 2025-11-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:22095"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22087 vom 2025-11-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:22087"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22124 vom 2025-11-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:22124"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21926 vom 2025-11-26",
        "url": "http://linux.oracle.com/errata/ELSA-2025-21926.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21469 vom 2025-11-27",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21469.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21112 vom 2025-11-27",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21112.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4315-1 vom 2025-12-01",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023442.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22752 vom 2025-12-04",
        "url": "https://access.redhat.com/errata/RHSA-2025:22752"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4320-1 vom 2025-12-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023445.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7253912 vom 2025-12-05",
        "url": "https://www.ibm.com/support/pages/node/7253912"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22910 vom 2025-12-09",
        "url": "https://access.redhat.com/errata/RHSA-2025:22910"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22914 vom 2025-12-09",
        "url": "https://access.redhat.com/errata/RHSA-2025:22914"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23463 vom 2025-12-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:23463"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23960 vom 2025-12-22",
        "url": "https://access.redhat.com/errata/RHSA-2025:23960"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23947 vom 2025-12-22",
        "url": "https://access.redhat.com/errata/RHSA-2025:23947"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4515-1 vom 2025-12-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023647.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-12-23T23:00:00.000+00:00",
      "generator": {
        "date": "2025-12-24T10:30:21.637+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-2087",
      "initial_release_date": "2025-09-17T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-09-17T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-10-14T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-10-15T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-16T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-19T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-21T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-23T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-26T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-27T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-30T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-02T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-03T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-11-04T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2025-11-05T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-09T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-11T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Red Hat, Oracle Linux und SUSE aufgenommen"
        },
        {
          "date": "2025-11-12T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Red Hat und Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2025-11-16T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-19T23:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-20T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-24T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Red Hat und SUSE aufgenommen"
        },
        {
          "date": "2025-11-25T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-26T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-01T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-12-04T23:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Red Hat und SUSE aufgenommen"
        },
        {
          "date": "2025-12-07T23:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-12-08T23:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-12-17T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-12-22T23:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-12-23T23:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "31"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Appliance \u003c5.32.00.18",
                "product": {
                  "name": "Dell Secure Connect Gateway Appliance \u003c5.32.00.18",
                  "product_id": "T048301"
                }
              },
              {
                "category": "product_version",
                "name": "Appliance 5.32.00.18",
                "product": {
                  "name": "Dell Secure Connect Gateway Appliance 5.32.00.18",
                  "product_id": "T048301-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:secure_connect_gateway:appliance__5.32.00.18"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Secure Connect Gateway"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM QRadar SIEM",
            "product": {
              "name": "IBM QRadar SIEM",
              "product_id": "T021415",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:qradar_siem:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T028463",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:unspecified"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-50353",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50353"
    },
    {
      "cve": "CVE-2022-50354",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50354"
    },
    {
      "cve": "CVE-2022-50355",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50355"
    },
    {
      "cve": "CVE-2022-50356",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50356"
    },
    {
      "cve": "CVE-2022-50357",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50357"
    },
    {
      "cve": "CVE-2022-50358",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50358"
    },
    {
      "cve": "CVE-2022-50359",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50359"
    },
    {
      "cve": "CVE-2022-50360",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50360"
    },
    {
      "cve": "CVE-2022-50361",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50361"
    },
    {
      "cve": "CVE-2022-50362",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50362"
    },
    {
      "cve": "CVE-2022-50363",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50363"
    },
    {
      "cve": "CVE-2022-50364",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50364"
    },
    {
      "cve": "CVE-2022-50365",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50365"
    },
    {
      "cve": "CVE-2022-50366",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50366"
    },
    {
      "cve": "CVE-2022-50367",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50367"
    },
    {
      "cve": "CVE-2022-50368",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50368"
    },
    {
      "cve": "CVE-2022-50369",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50369"
    },
    {
      "cve": "CVE-2022-50370",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50370"
    },
    {
      "cve": "CVE-2022-50371",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50371"
    },
    {
      "cve": "CVE-2022-50372",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50372"
    },
    {
      "cve": "CVE-2022-50373",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50373"
    },
    {
      "cve": "CVE-2022-50374",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2022-50374"
    },
    {
      "cve": "CVE-2023-53335",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53335"
    },
    {
      "cve": "CVE-2023-53336",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53336"
    },
    {
      "cve": "CVE-2023-53337",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53337"
    },
    {
      "cve": "CVE-2023-53338",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53338"
    },
    {
      "cve": "CVE-2023-53339",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53339"
    },
    {
      "cve": "CVE-2023-53340",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53340"
    },
    {
      "cve": "CVE-2023-53341",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53341"
    },
    {
      "cve": "CVE-2023-53342",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53342"
    },
    {
      "cve": "CVE-2023-53343",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53343"
    },
    {
      "cve": "CVE-2023-53344",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53344"
    },
    {
      "cve": "CVE-2023-53345",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53345"
    },
    {
      "cve": "CVE-2023-53346",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53346"
    },
    {
      "cve": "CVE-2023-53347",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53347"
    },
    {
      "cve": "CVE-2023-53348",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53348"
    },
    {
      "cve": "CVE-2023-53349",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53349"
    },
    {
      "cve": "CVE-2023-53350",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53350"
    },
    {
      "cve": "CVE-2023-53351",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53351"
    },
    {
      "cve": "CVE-2023-53352",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53352"
    },
    {
      "cve": "CVE-2023-53353",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53353"
    },
    {
      "cve": "CVE-2023-53354",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53354"
    },
    {
      "cve": "CVE-2023-53355",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53355"
    },
    {
      "cve": "CVE-2023-53356",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53356"
    },
    {
      "cve": "CVE-2023-53357",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53357"
    },
    {
      "cve": "CVE-2023-53358",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53358"
    },
    {
      "cve": "CVE-2023-53359",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53359"
    },
    {
      "cve": "CVE-2023-53360",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53360"
    },
    {
      "cve": "CVE-2023-53361",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53361"
    },
    {
      "cve": "CVE-2023-53362",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53362"
    },
    {
      "cve": "CVE-2023-53363",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53363"
    },
    {
      "cve": "CVE-2023-53364",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53364"
    },
    {
      "cve": "CVE-2023-53365",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53365"
    },
    {
      "cve": "CVE-2023-53366",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53366"
    },
    {
      "cve": "CVE-2023-53367",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53367"
    },
    {
      "cve": "CVE-2023-53368",
      "product_status": {
        "known_affected": [
          "T028463",
          "T002207",
          "67646",
          "T021415",
          "398363",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-17T22:00:00.000+00:00",
      "title": "CVE-2023-53368"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-50371 (GCVE-0-2022-50371)

GHSA-2X9F-2VFM-PQM9

FKIE_CVE-2022-50371

WID-SEC-W-2025-2087

Tags

Sightings

Nomenclature