Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12060

All 12060 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-37739 f2fs: fix to avoid out-of-bounds access in f2fs_truncate_inode_blocks() 7.1AIHighAI2025-05-01
CVE-2025-37738 ext4: ignore xattrs past end 7.8AIHighAI2025-05-01
CVE-2025-23163 net: vlan: don't propagate flags on open 5.5AIMediumAI2025-05-01
CVE-2025-23162 drm/xe/vf: Don't try to trigger a full GT reset if VF 5.5AIMediumAI2025-05-01
CVE-2025-23161 PCI: vmd: Make vmd_dev::cfg_lock a raw_spinlock_t type 7.8AIHighAI2025-05-01
CVE-2025-23159 media: venus: hfi: add a check to handle OOB in sfr region 7.8AIHighAI2025-05-01
CVE-2025-23160 media: mediatek: vcodec: Fix a resource leak related to the scp device in FW initialization 5.5AIMediumAI2025-05-01
CVE-2025-23158 media: venus: hfi: add check to handle incorrect queue size 7.1AIHighAI2025-05-01
CVE-2025-23156 media: venus: hfi_parser: refactor hfi packet parsing logic 8.1AIHighAI2025-05-01
CVE-2025-23157 media: venus: hfi_parser: add check to avoid out of bound access 8.4AIHighAI2025-05-01
CVE-2025-23155 net: stmmac: Fix accessing freed irq affinity_hint 7.1AIHighAI2025-05-01
CVE-2025-23154 io_uring/net: fix io_req_post_cqe abuse by send bundle 5.5AIMediumAI2025-05-01
CVE-2025-23153 arm/crc-t10dif: fix use of out-of-scope array in crc_t10dif_arch() 8.8AIHighAI2025-05-01
CVE-2025-23152 arm64/crc-t10dif: fix use of out-of-scope array in crc_t10dif_arch() 8.8AIHighAI2025-05-01
CVE-2025-23151 bus: mhi: host: Fix race between unprepare and queue_buf 4.7AIMediumAI2025-05-01
CVE-2025-23150 ext4: fix off-by-one error in do_split 7.3AIHighAI2025-05-01
CVE-2025-23149 tpm: do not start chip while suspended 5.5AIMediumAI2025-05-01
CVE-2025-23148 soc: samsung: exynos-chipid: Add NULL pointer check in exynos_chipid_probe() 6.5AIMediumAI2025-05-01
CVE-2025-23147 i3c: Add NULL pointer check in i3c_master_queue_ibi() 5.5AIMediumAI2025-05-01
CVE-2025-23145 mptcp: fix NULL pointer in can_accept_new_subflow 5.5AIMediumAI2025-05-01
CVE-2025-23146 mfd: ene-kb3930: Fix a potential NULL pointer dereference 5.5AIMediumAI2025-05-01
CVE-2025-23144 backlight: led_bl: Hold led_access lock when calling led_sysfs_disable() 5.5AIMediumAI2025-05-01
CVE-2025-23142 sctp: detect and prevent references to a freed transport in sendmsg 7.5AIHighAI2025-05-01
CVE-2025-23143 net: Fix null-ptr-deref by sock_lock_init_class_and_name() and rmmod. 6.2AIMediumAI2025-05-01
CVE-2025-23141 KVM: x86: Acquire SRCU in KVM_GET_MP_STATE to protect guest memory accesses 7.8AIHighAI2025-05-01
CVE-2025-23140 misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq error 5.5AIMediumAI2025-05-01
CVE-2024-58099 vmxnet3: Fix packet corruption in vmxnet3_xdp_xmit_frame 8.1AIHighAI2025-04-29
CVE-2025-37838 HSI: ssi_protocol: Fix use after free vulnerability in ssi_protocol Driver Due to Race Condition 6.3 -2025-04-18
CVE-2025-40364 io_uring: fix io_req_prep_async with provided buffers 7.1 -2025-04-18
CVE-2025-40325 md/raid10: wait barrier before returning discard request with REQ_NOWAIT 7.1 -2025-04-18

All 12060 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.