Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12154

All 12154 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of vulnerability data for the Linux operating system, focusing on common weakness classifications such as memory corruption, privilege escalation, and input validation errors. It collects security issues affecting kernel modules, core utilities, and subsystem components across various distributions and upstream sources. The database covers reports from early 2010 to the present, ensuring historical context for long-term support and maintenance cycles. Users can track vendor-specific advisories from major distributions like Debian, Red Hat, and Canonical to understand patching timelines and severity assessments. The resource also allows for a deeper understanding of specific weakness classes by analyzing how they manifest in Linux environments, including technical details and mitigation strategies. Additionally, visitors can look up a product's vulnerability history by examining trends and recurrence patterns for specific components or subsystems. This aggregated view simplifies the process of monitoring security posture by consolidating disparate sources into a single, searchable interface. The information is structured to help security professionals, developers, and system administrators assess risk more effectively. By providing a centralized access point, this page reduces the effort required to cross-reference multiple vendor bulletins and security advisories. The goal is to enhance situational awareness and facilitate informed decision-making regarding system updates and configuration hardening.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2023-52452 bpf: Fix accesses to uninit stack slots 3.3 -2024-02-22
CVE-2023-52451 powerpc/pseries/memhp: Fix access beyond end of drmem array 7.8 -2024-02-22
CVE-2023-52450 perf/x86/intel/uncore: Fix NULL pointer dereference issue in upi_fill_topology() 5.5 -2024-02-22
CVE-2023-52449 mtd: Fix gluebi NULL pointer dereference caused by ftl notifier 5.5 -2024-02-22
CVE-2023-52448 gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump 5.5 -2024-02-22
CVE-2023-52447 bpf: Defer the free of inner map when necessary 7.1 -2024-02-22
CVE-2023-52446 bpf: Fix a race condition between btf_put() and map_free() 6.3 -2024-02-22
CVE-2023-52445 media: pvrusb2: fix use after free on context disconnection 7.8 -2024-02-22
CVE-2023-52444 f2fs: fix to avoid dirent corruption 7.8 -2024-02-22
CVE-2024-26589 bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS 7.8 -2024-02-22
CVE-2024-26590 erofs: fix inconsistent per-file compression format 6.2 -2024-02-22
CVE-2024-26588 LoongArch: BPF: Prevent out-of-bounds memory access 5.5 -2024-02-22
CVE-2024-26586 mlxsw: spectrum_acl_tcam: Fix stack corruption 7.8 -2024-02-22
CVE-2024-26587 net: netdevsim: don't try to destroy PHC on VFs 5.5 -2024-02-22
CVE-2023-52443 apparmor: avoid crash when parsed profile name is empty 5.5 -2024-02-22
CVE-2024-26585 tls: fix race between tx work scheduling and socket close 4.7AIMediumAI2024-02-21
CVE-2024-26583 tls: fix race between async notify and socket close 6.3AIMediumAI2024-02-21
CVE-2024-26584 net: tls: handle backlogging of crypto requests 5.5AIMediumAI2024-02-21
CVE-2024-26582 net: tls: fix use-after-free with partial reads and async decrypt 7.8AIHighAI2024-02-21
CVE-2023-52442 ksmbd: validate session id and tree id in compound request --AI2024-02-21
CVE-2023-52441 ksmbd: fix out of bounds in init_smb2_rsp_hdr() 5.5AIMediumAI2024-02-21
CVE-2023-52440 ksmbd: fix slub overflow in ksmbd_decode_ntlmssp_auth_blob() 7.8AIHighAI2024-02-21
CVE-2023-52438 binder: fix use-after-free in shinker's callback 7.8 -2024-02-20
CVE-2023-52439 uio: Fix use-after-free in uio_open 7.8 -2024-02-20
CVE-2023-52436 f2fs: explicitly null-terminate the xattr list 7.1 -2024-02-20
CVE-2023-52435 net: prevent mss overflow in skb_segment() 5.5AIMediumAI2024-02-20
CVE-2023-52434 smb: client: fix potential OOBs in smb2_parse_contexts() 5.5AIMediumAI2024-02-20
CVE-2023-52433 netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction 8.2AIHighAI2024-02-20
CVE-2024-26581 netfilter: nft_set_rbtree: skip end interval element from gc 6.5AIMediumAI2024-02-20
CVE-2023-46838 Linux: netback processing of zero-length transmit fragment 7.5 -2024-01-29

All 12154 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.