Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12059

All 12059 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-40052 smb: client: fix crypto buffers in non-linear memory 7.1AIHighAI2025-10-28
CVE-2025-40053 net: dlink: handle copy_thresh allocation failure 6.5AIMediumAI2025-10-28
CVE-2025-40050 bpf: Skip scalar adjustment for BPF_NEG if dst is a pointer 7.1AIHighAI2025-10-28
CVE-2025-40051 vhost: vringh: Modify the return value check 7.1AIHighAI2025-10-28
CVE-2025-40049 Squashfs: fix uninit-value in squashfs_get_parent 8.1AIHighAI2025-10-28
CVE-2025-40048 uio_hv_generic: Let userspace take care of interrupt mask 5.5AIMediumAI2025-10-28
CVE-2025-40047 io_uring/waitid: always prune wait queue entry in io_waitid_wait() 7.1AIHighAI2025-10-28
CVE-2025-40046 io_uring/zcrx: fix overshooting recv limit 7.1AIHighAI2025-10-28
CVE-2025-40044 fs: udf: fix OOB read in lengthAllocDescs handling 5.5AIMediumAI2025-10-28
CVE-2025-40045 ASoC: codecs: wcd937x: set the comp soundwire port correctly 7.8AIHighAI2025-10-28
CVE-2025-40043 net: nfc: nci: Add parameter validation for packet data 8.1AIHighAI2025-10-28
CVE-2025-40042 tracing: Fix race condition in kprobe initialization causing NULL pointer dereference 4.7AIMediumAI2025-10-28
CVE-2025-40041 LoongArch: BPF: Sign-extend struct ops return values properly 5.5AIMediumAI2025-10-28
CVE-2025-40040 mm/ksm: fix flag-dropping behavior in ksm_madvise 5.5AIMediumAI2025-10-28
CVE-2025-40039 ksmbd: Fix race condition in RPC handle list access 7.0AIHighAI2025-10-28
CVE-2025-40038 KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid 6.1AIMediumAI2025-10-28
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args 8.1AIHighAI2025-10-28
CVE-2025-40037 fbdev: simplefb: Fix use after free in simplefb_detach_genpds() 7.1AIHighAI2025-10-28
CVE-2025-40035 Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak 5.5AIMediumAI2025-10-28
CVE-2025-40034 PCI/AER: Avoid NULL pointer dereference in aer_ratelimit() 5.5AIMediumAI2025-10-28
CVE-2025-40033 remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() 5.5AIMediumAI2025-10-28
CVE-2025-40032 PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release 5.5AIMediumAI2025-10-28
CVE-2025-40031 tee: fix register_shm_helper() 5.5AIMediumAI2025-10-28
CVE-2025-40030 pinctrl: check the return value of pinmux_ops::get_function_name() 6.5AIMediumAI2025-10-28
CVE-2025-40029 bus: fsl-mc: Check return value of platform_get_resource() 5.5AIMediumAI2025-10-28
CVE-2025-40028 binder: fix double-free in dbitmap 7.8AIHighAI2025-10-28
CVE-2025-40027 net/9p: fix double req put in p9_fd_cancelled 7.1AIHighAI2025-10-28
CVE-2025-40026 KVM: x86: Don't (re)check L1 intercepts when completing userspace I/O 7.8AIHighAI2025-10-28
CVE-2025-40025 f2fs: fix to do sanity check on node footer for non inode dnode 7.8AIHighAI2025-10-28
CVE-2025-40023 drm/xe/vf: Don't expose sysfs attributes not applicable for VFs 5.5 -2025-10-24

All 12059 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.