Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12059

All 12059 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-68296 drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup 7.0AIHighAI2025-12-16
CVE-2025-68295 smb: client: fix memory leak in cifs_construct_tcon() 5.5AIMediumAI2025-12-16
CVE-2025-68294 io_uring/net: ensure vectored buffer node import is tied to notification 7.8AIHighAI2025-12-16
CVE-2025-68293 mm/huge_memory: fix NULL pointer deference when splitting folio 5.5AIMediumAI2025-12-16
CVE-2025-68292 mm/memfd: fix information leak in hugetlb folios 5.5AIMediumAI2025-12-16
CVE-2025-68291 mptcp: Initialise rcv_mss before calling tcp_send_active_reset() in mptcp_do_fastclose(). 7.5AIHighAI2025-12-16
CVE-2025-68290 most: usb: fix double free on late probe failure 7.1AIHighAI2025-12-16
CVE-2025-68288 usb: storage: Fix memory leak in USB bulk transport 4.6AIMediumAI2025-12-16
CVE-2025-68289 usb: gadget: f_eem: Fix memory leak in eem_unwrap 5.5AIMediumAI2025-12-16
CVE-2025-68287 usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths 6.7AIMediumAI2025-12-16
CVE-2025-68286 drm/amd/display: Check NULL before accessing 5.5AIMediumAI2025-12-16
CVE-2025-68285 libceph: fix potential use-after-free in have_mon_and_osd_map() 5.5AIMediumAI2025-12-16
CVE-2025-68284 libceph: prevent potential out-of-bounds writes in handle_auth_session_key() 9.8AICriticalAI2025-12-16
CVE-2025-68283 libceph: replace BUG_ON with bounds check for map->max_osd 9.1AICriticalAI2025-12-16
CVE-2025-68282 usb: gadget: udc: fix use-after-free in usb_gadget_state_work 7.0AIHighAI2025-12-16
CVE-2025-68281 ASoC: SDCA: bug fix while parsing mipi-sdca-control-cn-list 5.5AIMediumAI2025-12-16
CVE-2025-68266 bfs: Reconstruct file type when loading from disk 7.1AIHighAI2025-12-16
CVE-2025-68265 nvme: fix admin request_queue lifetime 8.4AIHighAI2025-12-16
CVE-2025-68264 ext4: refresh inline data size before write operations 5.5AIMediumAI2025-12-16
CVE-2025-68263 ksmbd: ipc: fix use-after-free in ipc_msg_send_request 9.8 Critical2025-12-16
CVE-2025-68262 crypto: zstd - fix double-free in per-CPU stream cleanup 7.8AIHighAI2025-12-16
CVE-2025-68261 ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() 6.0AIMediumAI2025-12-16
CVE-2025-68259 KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced 5.5AIMediumAI2025-12-16
CVE-2025-68260 rust_binder: fix race condition on death_list 7.0AIHighAI2025-12-16
CVE-2025-68258 comedi: multiq3: sanitize config options in multiq3_attach() 5.5AIMediumAI2025-12-16
CVE-2025-68257 comedi: check device's attached status in compat ioctls 5.5AIMediumAI2025-12-16
CVE-2025-68256 staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser 7.8AIHighAI2025-12-16
CVE-2025-68255 staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing 7.8AIHighAI2025-12-16
CVE-2025-68254 staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing 5.5AIMediumAI2025-12-16
CVE-2025-68253 mm: don't spin in add_stack_record when gfp flags don't allow 7.1AIHighAI2025-12-16

All 12059 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.