Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Linux — Vulnerabilities & Security Advisories 12718

Browse all 12718 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

CVE IDTitleCVSSSeverityPublished
CVE-2025-38094 net: cadence: macb: Fix a possible deadlock in macb_halt_tx. — Linux 5.5AIMediumAI2025-07-03
CVE-2025-38092 ksmbd: use list_first_entry_or_null for opinfo_get_list() — Linux 7.1AIHighAI2025-07-02
CVE-2025-38093 arm64: dts: qcom: x1e80100: Add GPU cooling — Linux 5.5AIMediumAI2025-07-02
CVE-2025-38091 drm/amd/display: check stream id dml21 wrapper to get plane_id — Linux 5.5AIMediumAI2025-07-02
CVE-2025-38090 drivers/rapidio/rio_cm.c: prevent possible heap overwrite — Linux 7.8 -2025-06-30
CVE-2025-38089 sunrpc: handle SVC_GARBAGE during svc auth processing as auth error — Linux 7.5 -2025-06-30
CVE-2025-38088 powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap — Linux 7.8 -2025-06-30
CVE-2025-38087 net/sched: fix use-after-free in taprio_dev_notifier — Linux 7.0 -2025-06-30
CVE-2025-38086 net: ch9200: fix uninitialised access during mii_nway_restart — Linux 7.1AIHighAI2025-06-28
CVE-2025-38085 mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race — Linux 5.5AIMediumAI2025-06-28
CVE-2025-38084 mm/hugetlb: unshare page tables during VMA split, not before — Linux 6.1AIMediumAI2025-06-28
CVE-2025-38083 net_sched: prio: fix a race in prio_tune() — Linux 7.0 -2025-06-20
CVE-2022-50232 arm64: set UXN on swapper page tables — Linux 7.3AIHighAI2025-06-18
CVE-2022-50231 crypto: arm64/poly1305 - fix a read out-of-bound — Linux 7.1AIHighAI2025-06-18
CVE-2022-50230 arm64: set UXN on swapper page tables — Linux 7.3AIHighAI2025-06-18
CVE-2022-50229 ALSA: bcd2000: Fix a UAF bug on the error path of probing — Linux 7.1AIHighAI2025-06-18
CVE-2022-50228 KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0 — Linux 7.1AIHighAI2025-06-18
CVE-2022-50227 KVM: x86/xen: Initialize Xen timer only once — Linux 5.5AIMediumAI2025-06-18
CVE-2022-50225 riscv:uprobe fix SR_SPIE set/clear handling — Linux 5.5AIMediumAI2025-06-18
CVE-2022-50226 crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak — Linux 6.1AIMediumAI2025-06-18
CVE-2022-50224 KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT — Linux 5.5AIMediumAI2025-06-18
CVE-2022-50223 LoongArch: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK — Linux 5.5AIMediumAI2025-06-18
CVE-2022-50222 tty: vt: initialize unicode screen buffer — Linux 5.5AIMediumAI2025-06-18
CVE-2022-50221 drm/fb-helper: Fix out-of-bounds access — Linux--AI2025-06-18
CVE-2022-50219 bpf: Fix KASAN use-after-free Read in compute_effective_progs — Linux 7.1AIHighAI2025-06-18
CVE-2022-50220 usbnet: Fix linkwatch use-after-free on disconnect — Linux 6.2AIMediumAI2025-06-18
CVE-2022-50218 iio: light: isl29028: Fix the warning in isl29028_remove() — Linux 5.5AIMediumAI2025-06-18
CVE-2022-50217 fuse: write inode in fuse_release() — Linux 4.7AIMediumAI2025-06-18
CVE-2022-50215 scsi: sg: Allow waiting for commands to complete on removed device — Linux 7.3AIHighAI2025-06-18
CVE-2022-50214 coresight: Clear the connection field properly — Linux 8.4AIHighAI2025-06-18

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.