Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12060

All 12060 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-39919 wifi: mt76: mt7996: add missing check for rx wcid entries 8.8AIHighAI2025-10-01
CVE-2025-39918 wifi: mt76: fix linked list corruption 5.5AIMediumAI2025-10-01
CVE-2025-39916 mm/damon/reclaim: avoid divide-by-zero in damon_reclaim_apply_parameters() 5.5AIMediumAI2025-10-01
CVE-2025-39917 bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt 7.8AIHighAI2025-10-01
CVE-2025-39915 net: phy: transfer phy_config_inband() locking responsibility to phylink 5.3AIMediumAI2025-10-01
CVE-2025-39914 tracing: Silence warning when chunk allocation fails in trace_pid_write 5.5AIMediumAI2025-10-01
CVE-2025-39913 tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork. 5.5AIMediumAI2025-10-01
CVE-2025-39912 nfs/localio: restore creds before releasing pageio data 6.6AIMediumAI2025-10-01
CVE-2025-39911 i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path 7.1AIHighAI2025-10-01
CVE-2025-39910 mm/vmalloc, mm/kasan: respect gfp mask in kasan_populate_vmalloc() 7.1AIHighAI2025-10-01
CVE-2025-39909 mm/damon/lru_sort: avoid divide-by-zero in damon_lru_sort_apply_parameters() 5.5AIMediumAI2025-10-01
CVE-2025-39908 net: dev_ioctl: take ops lock in hwtstamp lower paths 7.1AIHighAI2025-10-01
CVE-2025-39907 mtd: rawnand: stm32_fmc2: avoid overlapping mappings on ECC buffer --AI2025-10-01
CVE-2025-39906 drm/amd/display: remove oem i2c adapter on finish 5.5AIMediumAI2025-10-01
CVE-2025-39905 net: phylink: add lock for serializing concurrent pl->phydev writes with resolver 8.8AIHighAI2025-10-01
CVE-2025-39904 arm64: kexec: initialize kexec_buf struct in load_other_segments() 8.1AIHighAI2025-10-01
CVE-2025-39903 of_numa: fix uninitialized memory nodes causing kernel panic 5.5AIMediumAI2025-10-01
CVE-2025-39902 mm/slub: avoid accessing metadata when pointer is invalid in object_err() 5.5AIMediumAI2025-10-01
CVE-2025-39901 i40e: remove read access to debugfs files 7.1AIHighAI2025-10-01
CVE-2025-39900 net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y --AI2025-10-01
CVE-2025-39899 mm/userfaultfd: fix kmap_local LIFO ordering for CONFIG_HIGHPTE 7.7AIHighAI2025-10-01
CVE-2025-39897 net: xilinx: axienet: Add error handling for RX metadata pointer retrieval 7.7AIHighAI2025-10-01
CVE-2025-39896 accel/ivpu: Prevent recovery work from being queued during device removal 7.8AIHighAI2025-10-01
CVE-2025-39895 sched: Fix sched_numa_find_nth_cpu() if mask offline 7.1AIHighAI2025-10-01
CVE-2025-39894 netfilter: br_netfilter: do not check confirmed bit in br_nf_local_in() after confirm --AI2025-10-01
CVE-2025-39892 ASoC: soc-core: care NULL dirver name on snd_soc_lookup_component_nolocked() 5.5AIMediumAI2025-10-01
CVE-2025-39893 spi: spi-qpic-snand: unregister ECC engine on probe error and device remove 7.8AIHighAI2025-10-01
CVE-2025-39891 wifi: mwifiex: Initialize the chan_stats array to zero 5.7AIMediumAI2025-10-01
CVE-2025-39890 wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event 5.7AIMediumAI2025-09-24
CVE-2025-39889 Bluetooth: l2cap: Check encryption key size on incoming connection 8.1 High2025-09-24

All 12060 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.