Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

linux — Vulnerabilities & Security Advisories 12150

All 12150 CVE vulnerabilities found in linux, with AI-generated Chinese analysis, references, and POCs.

This page serves as the vulnerability aggregation resource for the Linux operating system, focusing on common weakness types and associated security tags. It collects a comprehensive catalog of security vulnerabilities affecting Linux distributions, kernel versions, and major open-source components bundled within the Linux ecosystem. The data spans from early historical reports in the mid-1990s to the present day, ensuring a longitudinal view of the threat landscape. Visitors can utilize this resource to track vendor-specific advisories from major Linux maintainers such as Red Hat, Debian, Ubuntu, and SUSE. Users can also deepen their understanding of specific weakness classes, such as buffer overflows, race conditions, and privilege escalation vectors, by observing how they manifest across different kernel releases and subsystems. Furthermore, the platform allows users to look up a specific product’s vulnerability history, providing context on the remediation speed and frequency of updates for various Linux-based tools and services. This structured approach aids security professionals in assessing risk exposure, patching priorities, and long-term stability trends within the Linux environment without relying on fragmented or outdated information sources.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2025-71071 iommu/mediatek: fix use-after-free on probe deferral 7.8AIHighAI2026-01-13
CVE-2025-71070 ublk: clean up user copy references on ublk server exit 7.1AIHighAI2026-01-13
CVE-2025-71069 f2fs: invalidate dentry cache on failed whiteout creation 5.5AIMediumAI2026-01-13
CVE-2025-71068 svcrdma: bound check rq_pages index in inline path 7.1AIHighAI2026-01-13
CVE-2025-71067 ntfs: set dummy blocksize to read boot_block when mounting 5.5AIMediumAI2026-01-13
CVE-2025-71066 net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change 7.0AIHighAI2026-01-13
CVE-2025-71064 net: hns3: using the num_tqps in the vf driver to apply for resources 7.8AIHighAI2026-01-13
CVE-2025-71065 f2fs: fix to avoid potential deadlock 5.5AIMediumAI2026-01-13
CVE-2025-68823 ublk: fix deadlock when reading partition table 5.5AIMediumAI2026-01-13
CVE-2025-68822 Input: alps - fix use-after-free bugs caused by dev3_register_work 6.5AIMediumAI2026-01-13
CVE-2025-68821 fuse: fix readahead reclaim deadlock 5.5AIMediumAI2026-01-13
CVE-2025-68819 media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() 5.5AIMediumAI2026-01-13
CVE-2025-68820 ext4: xattr: fix null pointer deref in ext4_raw_inode() 5.0AIMediumAI2026-01-13
CVE-2025-68818 scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path" 7.8AIHighAI2026-01-13
CVE-2025-68817 ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency 7.0AIHighAI2026-01-13
CVE-2025-68815 net/sched: ets: Remove drr class from the active list if it changes to strict 7.1AIHighAI2026-01-13
CVE-2025-68816 net/mlx5: fw_tracer, Validate format string parameters 7.8AIHighAI2026-01-13
CVE-2025-68814 io_uring: fix filename leak in __io_openat_prep() 5.5AIMediumAI2026-01-13
CVE-2025-68813 ipvs: fix ipv4 null-ptr-deref in route error path 5.5AIMediumAI2026-01-13
CVE-2025-68811 svcrdma: use rc_pageoff for memcpy byte offset 7.7AIHighAI2026-01-13
CVE-2025-68810 KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot 7.1AIHighAI2026-01-13
CVE-2025-68809 ksmbd: vfs: fix race on m_flags in vfs_cache 7.0AIHighAI2026-01-13
CVE-2025-68808 media: vidtv: initialize local pointers upon transfer of memory ownership 7.8AIHighAI2026-01-13
CVE-2025-68807 block: fix race between wbt_enable_default and IO submission 4.7AIMediumAI2026-01-13
CVE-2025-68806 ksmbd: fix buffer validation by including null terminator size in EA length 7.8AIHighAI2026-01-13
CVE-2025-68805 fuse: fix io-uring list corruption for terminated non-committed requests 7.8AIHighAI2026-01-13
CVE-2025-68804 platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver 8.1AIHighAI2026-01-13
CVE-2025-68803 NFSD: NFSv4 file creation neglects setting ACL 6.5AIMediumAI2026-01-13
CVE-2025-68802 drm/xe: Limit num_syncs to prevent oversized allocations 5.5AIMediumAI2026-01-13
CVE-2025-68800 mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats 7.8AIHighAI2026-01-13

All 12150 known CVE vulnerabilities affecting linux with full Chinese analysis, references, and POCs where available.