Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12060

All 12060 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-38631 clk: imx95-blk-ctl: Fix synchronous abort 5.5AIMediumAI2025-08-22
CVE-2025-38632 pinmux: fix race causing mux_owner NULL with active mux_usecount 4.7AIMediumAI2025-08-22
CVE-2025-38630 fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref 5.5AIMediumAI2025-08-22
CVE-2025-38629 ALSA: usb: scarlett2: Fix missing NULL check 5.5AIMediumAI2025-08-22
CVE-2025-38628 vdpa/mlx5: Fix release of uninitialized resources on error path 7.8AIHighAI2025-08-22
CVE-2025-38627 f2fs: compress: fix UAF of f2fs_inode_info in f2fs_free_dic 7.8AIHighAI2025-08-22
CVE-2025-38626 f2fs: fix to trigger foreground gc during f2fs_map_blocks() in lfs mode 5.5AIMediumAI2025-08-22
CVE-2025-38625 vfio/pds: Fix missing detach_ioas op 4.7AIMediumAI2025-08-22
CVE-2025-38624 PCI: pnv_php: Clean up allocated IRQs on unplug 6.5AIMediumAI2025-08-22
CVE-2025-38623 PCI: pnv_php: Fix surprise plug detection and recovery 7.5AIHighAI2025-08-22
CVE-2025-38622 net: drop UFO packets in udp_rcv_segment() 6.2AIMediumAI2025-08-22
CVE-2025-38621 md: make rdev_addable usable for rcu mode 5.5AIMediumAI2025-08-22
CVE-2025-38619 media: ti: j721e-csi2rx: fix list_del corruption 7.8AIHighAI2025-08-22
CVE-2025-38620 zloop: fix KASAN use-after-free of tag set 7.1AIHighAI2025-08-22
CVE-2025-38618 vsock: Do not allow binding to VMADDR_PORT_ANY 8.4AIHighAI2025-08-22
CVE-2025-38617 net/packet: fix a race in packet_set_ring() and packet_notifier() 4.7AIMediumAI2025-08-22
CVE-2025-38616 tls: handle data disappearing from under the TLS ULP 7.5AIHighAI2025-08-22
CVE-2024-58239 tls: stop recv() if initial process_rx_list gave us non-DATA 7.1AIHighAI2025-08-22
CVE-2025-38615 fs/ntfs3: cancle set bad inode after removing name fails 7.1AIHighAI2025-08-19
CVE-2025-38614 eventpoll: Fix semi-unbounded recursion 6.2AIMediumAI2025-08-19
CVE-2025-38612 staging: fbtft: fix potential memory leak in fbtft_framebuffer_alloc() 5.5AIMediumAI2025-08-19
CVE-2025-38613 staging: gpib: fix unset padding field copy back to userspace 7.8AIHighAI2025-08-19
CVE-2025-38609 PM / devfreq: Check governor before using governor->name 5.5AIMediumAI2025-08-19
CVE-2025-38610 powercap: dtpm_cpu: Fix NULL pointer dereference in get_pd_power_uw() 5.5AIMediumAI2025-08-19
CVE-2025-38608 bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls 8.1AIHighAI2025-08-19
CVE-2025-38607 bpf: handle jset (if a & b ...) as a jump in CFG computation 5.5AIMediumAI2025-08-19
CVE-2025-38606 wifi: ath12k: Avoid accessing uninitialized arvif->ar during beacon miss 5.5AIMediumAI2025-08-19
CVE-2025-38605 wifi: ath12k: Pass ab pointer directly to ath12k_dp_tx_get_encap_type() 5.5AIMediumAI2025-08-19
CVE-2025-38604 wifi: rtl818x: Kill URBs before clearing tx status queue 7.3AIHighAI2025-08-19
CVE-2025-38602 iwlwifi: Add missing check for alloc_ordered_workqueue 5.7AIMediumAI2025-08-19

All 12060 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.