Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11726

Browse all 11726 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-31739 crypto: tegra - Add missing CRYPTO_ALG_ASYNC — Linux 8.8 High2026-05-01
CVE-2026-31738 vxlan: validate ND option lengths in vxlan_na_create — Linux 9.1 -2026-05-01
CVE-2026-31737 net: ftgmac100: fix ring allocation unwind on open failure — Linux 6.1 -2026-05-01
CVE-2026-31736 net: ethernet: mtk_ppe: avoid NULL deref when gmac0 is disabled — Linux 7.5 -2026-05-01
CVE-2026-31735 iommupt: Fix short gather if the unmap goes into a large mapping — Linux 8.8 High2026-05-01
CVE-2026-31733 sched_ext: Fix stale direct dispatch state in ddsp_dsq_id — Linux 5.5 -2026-05-01
CVE-2026-31734 sched_ext: Fix is_bpf_migration_disabled() false negative on non-PREEMPT_RCU — Linux 6.1 -2026-05-01
CVE-2026-31732 gpio: Fix resource leaks on errors in gpiochip_add_data_with_key() — Linux 5.5 -2026-05-01
CVE-2026-31730 misc: fastrpc: possible double-free of cctx->remote_heap — Linux 7.8 High2026-05-01
CVE-2026-31731 thermal: core: Address thermal zone removal races with resume — Linux 7.8 High2026-05-01
CVE-2026-31729 usb: typec: ucsi: validate connector number in ucsi_notify_common() — Linux 5.5 -2026-05-01
CVE-2026-31728 usb: gadget: u_ether: Fix race between gether_disconnect and eth_stop — Linux 4.7 -2026-05-01
CVE-2026-31727 usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo — Linux 5.5 -2026-05-01
CVE-2026-31726 usb: gadget: uvc: fix NULL pointer dereference during unbind race — Linux 4.7 -2026-05-01
CVE-2026-31725 usb: gadget: f_ecm: Fix net_device lifecycle with device_move — Linux 7.3 -2026-05-01
CVE-2026-31724 usb: gadget: f_eem: Fix net_device lifecycle with device_move — Linux 7.1 -2026-05-01
CVE-2026-31723 usb: gadget: f_subset: Fix net_device lifecycle with device_move — Linux 7.3 -2026-05-01
CVE-2026-31722 usb: gadget: f_rndis: Fix net_device lifecycle with device_move — Linux 7.3 -2026-05-01
CVE-2026-31720 usb: gadget: f_uac1_legacy: validate control request size — Linux 6.1 -2026-05-01
CVE-2026-31721 usb: gadget: f_hid: move list and spinlock inits from bind to alloc — Linux 7.8 -2026-05-01
CVE-2026-31718 ksmbd: fix use-after-free in __ksmbd_close_fd() via durable scavenger — Linux 9.8 Critical2026-05-01
CVE-2026-31719 crypto: krb5enc - fix async decrypt skipping hash verification — Linux 7.5 High2026-05-01
CVE-2026-31717 ksmbd: validate owner of durable handle on reconnect — Linux 8.8 High2026-05-01
CVE-2026-31716 fs/ntfs3: validate rec->used in journal-replay file record check — Linux 7.8 High2026-05-01
CVE-2026-31715 f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io() — Linux 5.5 -2026-05-01
CVE-2026-31714 f2fs: fix to avoid memory leak in f2fs_rename() — Linux 5.5 -2026-05-01
CVE-2026-31713 fuse: abort on fatal signal during sync init — Linux 6.5 -2026-05-01
CVE-2026-31712 ksmbd: require minimum ACE size in smb_check_perm_dacl() — Linux 8.3 High2026-05-01
CVE-2026-31711 smb: server: fix active_num_conn leak on transport allocation failure — Linux 7.5 High2026-05-01
CVE-2026-31710 smb: client: fix dir separator in SMB1 UNIX mounts — Linux 5.5 -2026-05-01

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.