Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12150

All 12150 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

This page serves as the vulnerability aggregation resource for the Linux operating system, focusing on common weakness types and associated security tags. It collects a comprehensive catalog of security vulnerabilities affecting Linux distributions, kernel versions, and major open-source components bundled within the Linux ecosystem. The data spans from early historical reports in the mid-1990s to the present day, ensuring a longitudinal view of the threat landscape. Visitors can utilize this resource to track vendor-specific advisories from major Linux maintainers such as Red Hat, Debian, Ubuntu, and SUSE. Users can also deepen their understanding of specific weakness classes, such as buffer overflows, race conditions, and privilege escalation vectors, by observing how they manifest across different kernel releases and subsystems. Furthermore, the platform allows users to look up a specific product’s vulnerability history, providing context on the remediation speed and frequency of updates for various Linux-based tools and services. This structured approach aids security professionals in assessing risk exposure, patching priorities, and long-term stability trends within the Linux environment without relying on fragmented or outdated information sources.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-23406 apparmor: fix side-effect bug in match_char() macro usage 7.8 High2026-04-01
CVE-2026-23404 apparmor: replace recursive profile removal with iterative approach 5.5AIMediumAI2026-04-01
CVE-2026-23403 apparmor: fix memory leak in verify_header 6.1AIMediumAI2026-04-01
CVE-2026-23402 KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE 4.7AIMediumAI2026-04-01
CVE-2026-23401 KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE 8.8AIHighAI2026-04-01
CVE-2026-23400 rust_binder: call set_notification_done() without proc lock 7.1 -2026-03-29
CVE-2026-23399 nf_tables: nft_dynset: fix possible stateful expression memleak in error path 5.5 -2026-03-28
CVE-2026-23398 icmp: fix NULL pointer dereference in icmp_tag_validation() 6.5 -2026-03-26
CVE-2026-23397 nfnetlink_osf: validate individual option lengths in fingerprints 7.5 -2026-03-26
CVE-2026-23396 wifi: mac80211: fix NULL deref in mesh_matches_local() 6.5 -2026-03-26
CVE-2026-23395 Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ 8.8 High2026-03-25
CVE-2026-23394 af_unix: Give up GC if MSG_PEEK intervened. 6.3 -2026-03-25
CVE-2026-23392 netfilter: nf_tables: release flowtable after rcu grace period on error 7.8 High2026-03-25
CVE-2026-23393 bridge: cfm: Fix race condition in peer_mep deletion 7.8 High2026-03-25
CVE-2026-23391 netfilter: xt_CT: drop pending enqueued packets on template removal 7.8 High2026-03-25
CVE-2026-23390 tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow 7.7 -2026-03-25
CVE-2026-23389 ice: Fix memory leak in ice_set_ringparam() 7.1 -2026-03-25
CVE-2026-23388 Squashfs: check metadata block offset is within range 7.1 -2026-03-25
CVE-2026-23387 pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe() 7.1 -2026-03-25
CVE-2026-23386 gve: fix incorrect buffer cleanup in gve_tx_clean_pending_packets for QPL 7.8 -2026-03-25
CVE-2026-23384 RDMA/ionic: Fix kernel stack leak in ionic_create_cq() --2026-03-25
CVE-2026-23385 netfilter: nf_tables: clone set on flush only 5.5 -2026-03-25
CVE-2026-23383 bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing 7.8 High2026-03-25
CVE-2026-23382 HID: Add HID_CLAIMED_INPUT guards in raw_event callbacks missing them 5.5 -2026-03-25
CVE-2026-23381 net: bridge: fix nd_tbl NULL dereference when IPv6 is disabled 6.2 -2026-03-25
CVE-2026-23380 tracing: Fix WARN_ON in tracing_buffers_mmap_close 5.5 -2026-03-25
CVE-2026-23379 net/sched: ets: fix divide by zero in the offload path 7.7 -2026-03-25
CVE-2026-23378 net/sched: act_ife: Fix metalist update behavior 7.8 High2026-03-25
CVE-2026-23377 ice: change XDP RxQ frag_size from DMA write length to xdp.frame_sz 5.5 -2026-03-25
CVE-2026-23375 mm: thp: deny THP for files on anonymous inodes 5.5 -2026-03-25

All 12150 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.