Linux 产品漏洞列表 / CVE 中文分析 11611

Linux 产品相关 11611 条漏洞，AI 中文标题与摘要、CVSS、POC 一站汇总。

ベンダー: n/a

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2026-23406	apparmor: fix side-effect bug in match_char() macro usage	7.8	High	2026-04-01
CVE-2026-23404	apparmor: replace recursive profile removal with iterative approach	5.5^AI	Medium^AI	2026-04-01
CVE-2026-23403	apparmor: fix memory leak in verify_header	6.1^AI	Medium^AI	2026-04-01
CVE-2026-23402	KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE	4.7^AI	Medium^AI	2026-04-01
CVE-2026-23401	KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE	8.8^AI	High^AI	2026-04-01
CVE-2026-23400	rust_binder: call set_notification_done() without proc lock	7.1	-	2026-03-29
CVE-2026-23399	nf_tables: nft_dynset: fix possible stateful expression memleak in error path	5.5	-	2026-03-28
CVE-2026-23398	icmp: fix NULL pointer dereference in icmp_tag_validation()	6.5	-	2026-03-26
CVE-2026-23397	nfnetlink_osf: validate individual option lengths in fingerprints	7.5	-	2026-03-26
CVE-2026-23396	wifi: mac80211: fix NULL deref in mesh_matches_local()	6.5	-	2026-03-26
CVE-2026-23395	Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ	8.8	High	2026-03-25
CVE-2026-23394	af_unix: Give up GC if MSG_PEEK intervened.	6.3	-	2026-03-25
CVE-2026-23392	netfilter: nf_tables: release flowtable after rcu grace period on error	7.8	High	2026-03-25
CVE-2026-23393	bridge: cfm: Fix race condition in peer_mep deletion	7.8	High	2026-03-25
CVE-2026-23391	netfilter: xt_CT: drop pending enqueued packets on template removal	7.8	High	2026-03-25
CVE-2026-23390	tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow	7.7	-	2026-03-25
CVE-2026-23389	ice: Fix memory leak in ice_set_ringparam()	7.1	-	2026-03-25
CVE-2026-23388	Squashfs: check metadata block offset is within range	7.1	-	2026-03-25
CVE-2026-23387	pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()	7.1	-	2026-03-25
CVE-2026-23386	gve: fix incorrect buffer cleanup in gve_tx_clean_pending_packets for QPL	7.8	-	2026-03-25
CVE-2026-23384	RDMA/ionic: Fix kernel stack leak in ionic_create_cq()	-	-	2026-03-25
CVE-2026-23385	netfilter: nf_tables: clone set on flush only	5.5	-	2026-03-25
CVE-2026-23383	bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing	7.8	High	2026-03-25
CVE-2026-23382	HID: Add HID_CLAIMED_INPUT guards in raw_event callbacks missing them	5.5	-	2026-03-25
CVE-2026-23381	net: bridge: fix nd_tbl NULL dereference when IPv6 is disabled	6.2	-	2026-03-25
CVE-2026-23380	tracing: Fix WARN_ON in tracing_buffers_mmap_close	5.5	-	2026-03-25
CVE-2026-23379	net/sched: ets: fix divide by zero in the offload path	7.7	-	2026-03-25
CVE-2026-23378	net/sched: act_ife: Fix metalist update behavior	7.8	High	2026-03-25
CVE-2026-23377	ice: change XDP RxQ frag_size from DMA write length to xdp.frame_sz	5.5	-	2026-03-25
CVE-2026-23375	mm: thp: deny THP for files on anonymous inodes	5.5	-	2026-03-25

Linux 产品累计公开 11611 条 CVE 漏洞，本页提供按时间倒序的完整列表，包含 CVSS、CWE、AI 中文摘要与可获取的 POC 链接。

目標達成 すべての支援者に感謝 — 100%達成しました！

Linux 产品漏洞列表 / CVE 中文分析 11611

目標達成すべての支援者に感謝 — 100%達成しました！