Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11727

Browse all 11727 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Found 11597 results / 11727Clear Filters
Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-43017 Bluetooth: MGMT: validate mesh send advertising payload length — Linux 8.3 -2026-05-01
CVE-2026-43018 Bluetooth: hci_event: fix potential UAF in hci_le_remote_conn_param_req_evt — Linux 8.8 High2026-05-01
CVE-2026-43016 bpf: sockmap: Fix use-after-free of sk->sk_socket in sk_psock_verdict_data_ready(). — Linux 7.8 High2026-05-01
CVE-2026-43014 net: macb: properly unregister fixed rate clocks — Linux 6.5 -2026-05-01
CVE-2026-43015 net: macb: fix clk handling on PCI glue driver removal — Linux 7.8 -2026-05-01
CVE-2026-43013 net/mlx5: lag: Check for LAG device before creating debugfs — Linux 5.5 -2026-05-01
CVE-2026-43011 net/x25: Fix potential double free of skb — Linux 9.8 Critical2026-05-01
CVE-2026-43012 net/mlx5: Fix switchdev mode rollback in case of failure — Linux 7.1 -2026-05-01
CVE-2026-43010 bpf: Reject sleepable kprobe_multi programs at attach time — Linux 5.5 -2026-05-01
CVE-2026-43009 bpf: Fix incorrect pruning due to atomic fetch precision tracking — Linux 7.8 High2026-05-01
CVE-2026-43008 gpio: qixis-fpga: Fix error handling for devm_regmap_init_mmio() — Linux 5.5 -2026-05-01
CVE-2026-43007 accel/qaic: Handle DBC deactivation if the owner went away — Linux 7.1 -2026-05-01
CVE-2026-43006 io_uring/rsrc: reject zero-length fixed buffer import — Linux 7.1 High2026-05-01
CVE-2026-43005 hwmon: (tps53679) Fix array access with zero-length block read — Linux 7.1 -2026-05-01
CVE-2026-43004 spi: stm32-ospi: Fix resource leak in remove() callback — Linux 5.5 -2026-05-01
CVE-2026-31785 drm/xe/xe_pagefault: Disallow writes to read-only VMAs — Linux 5.5 -2026-05-01
CVE-2026-31784 drm/xe/pxp: Clear restart flag in pxp_start after jumping back — Linux 7.1 -2026-05-01
CVE-2026-31783 spi: amlogic: spifc-a4: unregister ECC engine on probe failure and remove() callback — Linux 7.8 -2026-05-01
CVE-2026-31782 perf/x86: Fix potential bad container_of in intel_pmu_hw_config — Linux 7.8 High2026-05-01
CVE-2026-31781 drm/ioc32: stop speculation on the drm_compat_ioctl path — Linux 5.5 -2026-05-01
CVE-2026-31779 wifi: iwlwifi: mvm: fix potential out-of-bounds read in iwl_mvm_nd_match_info_handler() — Linux 8.1 High2026-05-01
CVE-2026-31780 wifi: wilc1000: fix u8 overflow in SSID scan buffer size calculation — Linux 7.8 High2026-05-01
CVE-2026-31778 ALSA: caiaq: fix stack out-of-bounds read in init_card — Linux 5.5 -2026-05-01
CVE-2026-31777 ALSA: ctxfi: Check the error for index mapping — Linux 7.8 -2026-05-01
CVE-2026-31776 ALSA: ctxfi: Fix missing SPDIFI1 index handling — Linux 7.8 -2026-05-01
CVE-2026-31775 ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization — Linux 5.5 -2026-05-01
CVE-2026-31774 io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() — Linux 7.1 High2026-05-01
CVE-2026-31773 Bluetooth: SMP: derive legacy responder STK authentication from MITM state — Linux 8.8 High2026-05-01
CVE-2026-31772 Bluetooth: hci_sync: fix stack buffer overflow in hci_le_big_create_sync — Linux 7.8 High2026-05-01
CVE-2026-31771 Bluetooth: hci_event: move wake reason storage into validated event handlers — Linux 8.1 High2026-05-01

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.