Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12060

All 12060 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-21875 mptcp: always handle address removal under msk socket lock 7.1AIHighAI2025-03-27
CVE-2025-21873 scsi: ufs: core: bsg: Fix crash when arpmb command fails 5.5AIMediumAI2025-03-27
CVE-2025-21874 dm-integrity: Avoid divide by zero in table status in Inline mode 5.5AIMediumAI2025-03-27
CVE-2025-21872 efi: Don't map the entire mokvar table to determine its size 5.5AIMediumAI2025-03-27
CVE-2024-58091 drm/fbdev-dma: Add shadow buffering for deferred I/O 8.4AIHighAI2025-03-27
CVE-2024-58090 sched/core: Prevent rescheduling when interrupts are disabled 5.5AIMediumAI2025-03-27
CVE-2025-21871 tee: optee: Fix supplicant wait loop 5.5AIMediumAI2025-03-27
CVE-2025-21870 ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers 5.5AIMediumAI2025-03-27
CVE-2025-21869 powerpc/code-patching: Disable KASAN report during patching via temporary mm 7.8AIHighAI2025-03-27
CVE-2025-21868 net: allow small head cache usage with large MAX_SKB_FRAGS values 7.1AIHighAI2025-03-27
CVE-2025-21867 bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type() 6.5AIMediumAI2025-03-27
CVE-2022-1804 Accountsservice incorrectly drops privileges CWE-269 5.5 Medium2025-03-25
CVE-2023-52927 netfilter: allow exp not to be removed in nf_ct_find_expectation --2025-03-14
CVE-2025-21866 powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC 7.8 -2025-03-12
CVE-2025-21865 gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl(). 5.5 -2025-03-12
CVE-2025-21863 io_uring: prevent opcode speculation 7.1 -2025-03-12
CVE-2025-21864 tcp: drop secpath at the same time as we currently drop dst 7.5 -2025-03-12
CVE-2025-21862 drop_monitor: fix incorrect initialization order 7.8 -2025-03-12
CVE-2025-21860 mm/zswap: fix inconsistency when zswap_store_page() fails 7.1 -2025-03-12
CVE-2025-21861 mm/migrate_device: don't add folio to be freed to LRU in migrate_device_finalize() --2025-03-12
CVE-2025-21859 USB: gadget: f_midi: f_midi_complete to call queue_work 4.6 -2025-03-12
CVE-2025-21858 geneve: Fix use-after-free in geneve_find_dev(). 5.5 -2025-03-12
CVE-2025-21857 net/sched: cls_api: fix error handling causing NULL dereference 6.5 -2025-03-12
CVE-2025-21856 s390/ism: add release function for struct device 7.8 -2025-03-12
CVE-2025-21854 sockmap, vsock: For connectible sockets allow only connected 6.1 -2025-03-12
CVE-2025-21855 ibmvnic: Don't reference skb after sending to VIOS 7.0 -2025-03-12
CVE-2025-21853 bpf: avoid holding freeze_mutex during mmap operation 4.7 -2025-03-12
CVE-2025-21852 net: Add rx_skb of kfree_skb to raw_tp_null_args[]. 5.5 -2025-03-12
CVE-2025-21850 nvmet: Fix crash when a namespace is disabled 5.5 -2025-03-12
CVE-2025-21851 bpf: Fix softlockup in arena_map_free on 64k page kernel 5.5 -2025-03-12

All 12060 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.