Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11743

Browse all 11743 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-23393 bridge: cfm: Fix race condition in peer_mep deletion — Linux 7.8 High2026-03-25
CVE-2026-23391 netfilter: xt_CT: drop pending enqueued packets on template removal — Linux 7.8 High2026-03-25
CVE-2026-23390 tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow — Linux 7.7 -2026-03-25
CVE-2026-23389 ice: Fix memory leak in ice_set_ringparam() — Linux 7.1 -2026-03-25
CVE-2026-23388 Squashfs: check metadata block offset is within range — Linux 7.1 -2026-03-25
CVE-2026-23387 pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe() — Linux 7.1 -2026-03-25
CVE-2026-23386 gve: fix incorrect buffer cleanup in gve_tx_clean_pending_packets for QPL — Linux 7.8 -2026-03-25
CVE-2026-23384 RDMA/ionic: Fix kernel stack leak in ionic_create_cq() — Linux--2026-03-25
CVE-2026-23385 netfilter: nf_tables: clone set on flush only — Linux 5.5 -2026-03-25
CVE-2026-23383 bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing — Linux 7.8 High2026-03-25
CVE-2026-23382 HID: Add HID_CLAIMED_INPUT guards in raw_event callbacks missing them — Linux 5.5 -2026-03-25
CVE-2026-23381 net: bridge: fix nd_tbl NULL dereference when IPv6 is disabled — Linux 6.2 -2026-03-25
CVE-2026-23380 tracing: Fix WARN_ON in tracing_buffers_mmap_close — Linux 5.5 -2026-03-25
CVE-2026-23379 net/sched: ets: fix divide by zero in the offload path — Linux 7.7 -2026-03-25
CVE-2026-23378 net/sched: act_ife: Fix metalist update behavior — Linux 7.8 High2026-03-25
CVE-2026-23377 ice: change XDP RxQ frag_size from DMA write length to xdp.frame_sz — Linux 5.5 -2026-03-25
CVE-2026-23375 mm: thp: deny THP for files on anonymous inodes — Linux 5.5 -2026-03-25
CVE-2026-23376 nvmet-fcloop: Check remoteport port_state before calling done callback — Linux 5.5 -2026-03-25
CVE-2026-23374 blktrace: fix __this_cpu_read/write in preemptible context — Linux 7.8 -2026-03-25
CVE-2026-23373 wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config — Linux 5.5 -2026-03-25
CVE-2026-23372 nfc: rawsock: cancel tx_work before socket teardown — Linux 7.8 High2026-03-25
CVE-2026-23371 sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting — Linux--2026-03-25
CVE-2026-23370 platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data — Linux 5.5 -2026-03-25
CVE-2026-23369 i2c: i801: Revert "i2c: i801: replace acpi_lock with I2C bus lock" — Linux 7.1 -2026-03-25
CVE-2026-23368 net: phy: register phy led_triggers during probe to avoid AB-BA deadlock — Linux 5.5 -2026-03-25
CVE-2026-23367 wifi: radiotap: reject radiotap with unknown bits — Linux 5.7 -2026-03-25
CVE-2026-23366 drm/client: Do not destroy NULL modes — Linux 5.5 -2026-03-25
CVE-2026-23365 net: usb: kalmia: validate USB endpoints — Linux 6.2 -2026-03-25
CVE-2026-23364 ksmbd: Compare MACs in constant time — Linux 7.4 High2026-03-25
CVE-2026-23363 wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211() — Linux 7.3 -2026-03-25

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.