Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11726

Browse all 11726 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-31621 bnge: return after auxiliary_device_uninit() in error path — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31620 ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 — Linux 4.6AIMediumAI2026-04-24
CVE-2026-31619 ALSA: fireworks: bound device-supplied status before string array lookup — Linux 7.5 -2026-04-24
CVE-2026-31618 fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31617 usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() — Linux 7.3 -2026-04-24
CVE-2026-31615 usb: gadget: renesas_usb3: validate endpoint index in standard request handlers — Linux 7.1AIHighAI2026-04-24
CVE-2026-31616 usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() — Linux 6.1AIMediumAI2026-04-24
CVE-2026-31614 smb: client: fix off-by-8 bounds check in check_wsl_eas() — Linux 7.1AIHighAI2026-04-24
CVE-2026-31612 ksmbd: validate EaNameLength in smb2_get_ea() — Linux 7.5 High2026-04-24
CVE-2026-31613 smb: client: fix OOB reads parsing symlink error response — Linux 8.1 High2026-04-24
CVE-2026-31611 ksmbd: require 3 sub-authorities before reading sub_auth[2] — Linux 8.6 High2026-04-24
CVE-2026-31610 ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc — Linux 3.3AILowAI2026-04-24
CVE-2026-31609 smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() — Linux 9.8 Critical2026-04-24
CVE-2026-31608 smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() — Linux 9.8 Critical2026-04-24
CVE-2026-31606 usb: gadget: f_hid: don't call cdev_init while cdev in use — Linux 7.8AIHighAI2026-04-24
CVE-2026-31607 usbip: validate number_of_packets in usbip_pack_ret_submit() — Linux 9.8 Critical2026-04-24
CVE-2026-31605 fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31603 staging: sm750fb: fix division by zero in ps_to_hz() — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31604 wifi: rtw88: fix device leak on probe failure — Linux 6.8AIMediumAI2026-04-24
CVE-2026-31602 ALSA: ctxfi: Limit PTP to a single page — Linux 7.8 High2026-04-24
CVE-2026-31600 arm64: mm: Handle invalid large leaf mappings correctly — Linux 7.5 High2026-04-24
CVE-2026-31601 vfio/xe: Reorganize the init to decouple migration from reset — Linux 7.1AIHighAI2026-04-24
CVE-2026-31599 media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections — Linux 5.0AIMediumAI2026-04-24
CVE-2026-31598 ocfs2: fix possible deadlock between unlink and dio_end_io_write — Linux 7.5 High2026-04-24
CVE-2026-31597 ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY — Linux 7.8 High2026-04-24
CVE-2026-31596 ocfs2: handle invalid dinode in ocfs2_group_extend — Linux 7.1AIHighAI2026-04-24
CVE-2026-31594 PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31595 PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup — Linux 7.1AIHighAI2026-04-24
CVE-2026-31593 KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU — Linux 8.8AIHighAI2026-04-24
CVE-2026-31592 KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock — Linux 7.0AIHighAI2026-04-24

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.