Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12059

All 12059 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-40266 KVM: arm64: Check the untrusted offset in FF-A memory share 7.8AIHighAI2025-12-04
CVE-2025-40264 be2net: pass wrb_params in case of OS2BMC 5.5AIMediumAI2025-12-04
CVE-2025-40263 Input: cros_ec_keyb - fix an invalid memory access 5.5AIMediumAI2025-12-04
CVE-2025-40262 Input: imx_sc_key - fix memory corruption on unload 7.8AIHighAI2025-12-04
CVE-2025-40260 sched_ext: Fix scx_enable() crash on helper kthread creation failure 5.5AIMediumAI2025-12-04
CVE-2025-40261 nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() 6.5AIMediumAI2025-12-04
CVE-2025-40259 scsi: sg: Do not sleep in atomic context 5.5AIMediumAI2025-12-04
CVE-2025-40258 mptcp: fix race condition in mptcp_schedule_work() 6.3AIMediumAI2025-12-04
CVE-2025-40257 mptcp: fix a race in mptcp_pm_del_add_timer() 7.0AIHighAI2025-12-04
CVE-2025-40256 xfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added 7.1AIHighAI2025-12-04
CVE-2025-40255 net: core: prevent NULL deref in generic_hwtstamp_ioctl_lower() 5.5AIMediumAI2025-12-04
CVE-2025-40254 net: openvswitch: remove never-working support for setting nsh fields 7.8AIHighAI2025-12-04
CVE-2025-40253 s390/ctcm: Fix double-kfree 7.1AIHighAI2025-12-04
CVE-2025-40252 net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() 7.1AIHighAI2025-12-04
CVE-2025-40251 devlink: rate: Unset parent pointer in devl_rate_nodes_destroy 5.5AIMediumAI2025-12-04
CVE-2025-40250 net/mlx5: Clean up only new IRQ glue on request_irq() failure 5.5AIMediumAI2025-12-04
CVE-2025-40248 vsock: Ignore signal/timeout on connect() if already established 6.5AIMediumAI2025-12-04
CVE-2025-40249 gpio: cdev: make sure the cdev fd is still active before emitting events 5.7AIMediumAI2025-12-04
CVE-2025-40247 drm/msm: Fix pgtable prealloc error path 5.5AIMediumAI2025-12-04
CVE-2025-40246 xfs: fix out of bounds memory read error in symlink repair 7.7AIHighAI2025-12-04
CVE-2025-40245 nios2: ensure that memblock.current_limit is set when setting pfn limits 7.3AIHighAI2025-12-04
CVE-2025-40244 hfsplus: fix KMSAN uninit-value issue in __hfsplus_ext_cache_extent() 7.1AIHighAI2025-12-04
CVE-2025-40243 hfs: fix KMSAN uninit-value issue in hfs_find_set_zero_bits() 7.1AIHighAI2025-12-04
CVE-2025-40242 gfs2: Fix unlikely race in gdlm_put_lock 7.0AIHighAI2025-12-04
CVE-2025-40241 erofs: fix crafted invalid cases for encoded extents 5.5AIMediumAI2025-12-04
CVE-2025-40240 sctp: avoid NULL dereference when chunk data buffer is missing 5.5AIMediumAI2025-12-04
CVE-2025-40239 net: phy: micrel: always set shared->phydev for LAN8814 4.7AIMediumAI2025-12-04
CVE-2025-40238 net/mlx5: Fix IPsec cleanup over MPV device 5.5AIMediumAI2025-12-04
CVE-2025-40237 fs/notify: call exportfs_encode_fid with s_umount 6.3AIMediumAI2025-12-04
CVE-2025-40235 btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() 5.5AIMediumAI2025-12-04

All 12059 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.