Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12060

All 12060 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-38663 nilfs2: reject invalid file types when reading inodes 5.5AIMediumAI2025-08-22
CVE-2025-38662 ASoC: mediatek: mt8365-dai-i2s: pass correct size to mt8365_dai_set_priv 6.5AIMediumAI2025-08-22
CVE-2025-38661 platform/x86: alienware-wmi-wmax: Fix `dmi_system_id` array 7.8AIHighAI2025-08-22
CVE-2025-38660 [ceph] parse_longname(): strrchr() expects NUL-terminated string 7.7AIHighAI2025-08-22
CVE-2025-38658 nvmet: pci-epf: Do not complete commands twice if nvmet_req_init() fails 7.8AIHighAI2025-08-22
CVE-2025-38659 gfs2: No more self recovery --AI2025-08-22
CVE-2025-38657 wifi: rtw89: mcc: prevent shift wrapping in rtw89_core_mlsr_switch() 6.7AIMediumAI2025-08-22
CVE-2025-38656 wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start() 7.3AIHighAI2025-08-22
CVE-2025-38655 pinctrl: canaan: k230: add NULL check in DT parse 5.5AIMediumAI2025-08-22
CVE-2025-38654 pinctrl: canaan: k230: Fix order of DT parse and pinctrl register 7.3AIHighAI2025-08-22
CVE-2025-38653 proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al 7.1AIHighAI2025-08-22
CVE-2025-38652 f2fs: fix to avoid out-of-boundary access in devs.path 7.1AIHighAI2025-08-22
CVE-2025-38651 landlock: Fix warning from KUnit tests 5.5AIMediumAI2025-08-22
CVE-2025-38650 hfsplus: remove mutex_lock check in hfsplus_free_extents 8.1AIHighAI2025-08-22
CVE-2025-38649 arm64: dts: qcom: qcs615: fix a crash issue caused by infinite loop for Coresight 5.5AIMediumAI2025-08-22
CVE-2025-38648 spi: stm32: Check for cfg availability in stm32_spi_probe 5.5AIMediumAI2025-08-22
CVE-2025-38647 wifi: rtw89: sar: drop lockdep assertion in rtw89_set_sar_from_acpi 5.5AIMediumAI2025-08-22
CVE-2025-38646 wifi: rtw89: avoid NULL dereference when RX problematic packet on unsupported 6 GHz band 5.7AIMediumAI2025-08-22
CVE-2025-38645 net/mlx5: Check device memory pointer before usage 5.5AIMediumAI2025-08-22
CVE-2025-38644 wifi: mac80211: reject TDLS operations when station is not associated 5.7AIMediumAI2025-08-22
CVE-2025-38643 wifi: cfg80211: Add missing lock in cfg80211_check_and_end_cac() 5.7AIMediumAI2025-08-22
CVE-2025-38642 wifi: mac80211: fix WARN_ON for monitor mode on some devices 2.6AILowAI2025-08-22
CVE-2025-38641 Bluetooth: btusb: Fix potential NULL dereference on kmalloc failure 6.5AIMediumAI2025-08-22
CVE-2025-38640 bpf: Disable migration in nf_hook_run_bpf(). 7.1AIHighAI2025-08-22
CVE-2025-38639 netfilter: xt_nfacct: don't assume acct name is null-terminated 7.1AIHighAI2025-08-22
CVE-2025-38638 ipv6: add a retry logic in net6_rt_notify() 7.1AIHighAI2025-08-22
CVE-2025-38636 rv: Use strings in da monitors tracepoints 7.1AIHighAI2025-08-22
CVE-2025-38635 clk: davinci: Add NULL check in davinci_lpsc_clk_register() 5.5AIMediumAI2025-08-22
CVE-2025-38634 power: supply: cpcap-charger: Fix null check for power_supply_get_by_name 5.5AIMediumAI2025-08-22
CVE-2025-38633 clk: spacemit: mark K1 pll1_d8 as critical 5.5AIMediumAI2025-08-22

All 12060 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.