Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11726

Browse all 11726 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-31681 netfilter: xt_multiport: validate range encoding in checkentry — Linux 7.1AIHighAI2026-04-25
CVE-2026-31680 net: ipv6: flowlabel: defer exclusive option free until RCU teardown — Linux 7.8 High2026-04-25
CVE-2026-31679 openvswitch: validate MPLS set/set_masked payload length — Linux 7.1 High2026-04-25
CVE-2026-31678 openvswitch: defer tunnel netdev_put to RCU release — Linux 7.8 High2026-04-25
CVE-2026-31677 crypto: af_alg - limit RX SG extraction by receive buffer budget — Linux 8.8AIHighAI2026-04-25
CVE-2026-31676 rxrpc: only handle RESPONSE during service challenge — Linux 7.5 High2026-04-25
CVE-2026-31675 net/sched: sch_netem: fix out-of-bounds access in packet corruption — Linux 7.8 High2026-04-25
CVE-2026-31674 netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() — Linux 7.1 High2026-04-25
CVE-2026-31673 af_unix: read UNIX_DIAG_VFS data under unix_state_lock — Linux 7.8 High2026-04-25
CVE-2026-31672 wifi: rt2x00usb: fix devres lifetime — Linux 5.7 -2026-04-24
CVE-2026-31671 xfrm_user: fix info leak in build_report() — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31670 net: rfkill: prevent unlimited numbers of rfkill events from being created — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31668 seg6: separate dst_cache for input and output paths in seg6 lwtunnel — Linux 9.8 Critical2026-04-24
CVE-2026-31669 mptcp: fix slab-use-after-free in __inet_lookup_established — Linux 9.8 Critical2026-04-24
CVE-2026-31667 Input: uinput - fix circular locking dependency with ff-core — Linux 7.8 High2026-04-24
CVE-2026-31665 netfilter: nft_ct: fix use-after-free in timeout object destroy — Linux 7.8 High2026-04-24
CVE-2026-31666 btrfs: fix incorrect return value after changing leaf in lookup_extent_data_ref() — Linux 7.8 High2026-04-24
CVE-2026-31664 xfrm: clear trailing padding in build_polexpire() — Linux 5.5 -2026-04-24
CVE-2026-31663 xfrm: hold dev ref until after transport_finish NF_HOOK — Linux 7.8 High2026-04-24
CVE-2026-31662 tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG — Linux 7.5 High2026-04-24
CVE-2026-31661 wifi: brcmsmac: Fix dma_free_coherent() size — Linux 7.3 -2026-04-24
CVE-2026-31660 nfc: pn533: allocate rx skb before consuming bytes — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31658 net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() — Linux 2.5AILowAI2026-04-24
CVE-2026-31659 batman-adv: reject oversized global TT response buffers — Linux 9.8 Critical2026-04-24
CVE-2026-31657 batman-adv: hold claim backbone gateways by reference — Linux 9.8 Critical2026-04-24
CVE-2026-31656 drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat — Linux 7.8 High2026-04-24
CVE-2026-31655 pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled — Linux 7.5 -2026-04-24
CVE-2026-31653 mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31654 mm/vma: fix memory leak in __mmap_region() — Linux 5.0AIMediumAI2026-04-24
CVE-2026-31652 mm/damon/stat: deallocate damon_call() failure leaking damon_ctx — Linux 5.5AIMediumAI2026-04-24

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.