Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11726

Browse all 11726 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-31591 KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish — Linux 8.8 -2026-04-24
CVE-2026-31590 KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION — Linux 6.2 -2026-04-24
CVE-2026-31589 mm: call ->free_folio() directly in folio_unmap_invalidate() — Linux 9.8 Critical2026-04-24
CVE-2026-31587 ASoC: qcom: q6apm: move component registration to unmanaged version — Linux 7.8 High2026-04-24
CVE-2026-31588 KVM: x86: Use scratch field in MMIO fragment to hold small write values — Linux 8.8 High2026-04-24
CVE-2026-31586 mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() — Linux 7.8 High2026-04-24
CVE-2026-31584 media: mediatek: vcodec: fix use-after-free in encoder release path — Linux 7.8 High2026-04-24
CVE-2026-31585 media: vidtv: fix nfeeds state corruption on start_streaming failure — Linux 8.1AIHighAI2026-04-24
CVE-2026-31583 media: em28xx: fix use-after-free in em28xx_v4l2_open() — Linux 4.7 -2026-04-24
CVE-2026-31581 ALSA: 6fire: fix use-after-free on disconnect — Linux 7.8 -2026-04-24
CVE-2026-31582 hwmon: (powerz) Fix use-after-free on USB disconnect — Linux 7.1AIHighAI2026-04-24
CVE-2026-31580 bcache: fix cached_dev.sb_bio use-after-free and crash — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31579 wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31578 media: as102: fix to not free memory after the device is registered in as102_usb_probe() — Linux 7.0AIHighAI2026-04-24
CVE-2026-31577 nilfs2: fix NULL i_assoc_inode dereference in nilfs_mdt_save_to_shadow_map — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31575 mm/userfaultfd: fix hugetlb fault mutex hash calculation — Linux 5.5 -2026-04-24
CVE-2026-31576 media: hackrf: fix to not free memory after the device is registered in hackrf_probe() — Linux 7.0AIHighAI2026-04-24
CVE-2026-31574 clockevents: Add missing resets of the next_event_forced flag — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31573 media: verisilicon: Fix kernel panic due to __initconst misuse — Linux 5.5AIMediumAI2026-04-24
CVE-2026-31572 i2c: designware: amdisp: Fix resume-probe race condition issue — Linux 6.3AIMediumAI2026-04-24
CVE-2026-31571 drm/i915: Unlink NV12 planes earlier — Linux 6.1 -2026-04-24
CVE-2026-31570 can: gw: fix OOB heap access in cgw_csum_crc8_rel() — Linux 8.8 High2026-04-24
CVE-2026-31569 LoongArch: KVM: Handle the case that EIOINTC's coremap is empty — Linux 7.3 High2026-04-24
CVE-2026-31568 s390/mm: Add missing secure storage access fixups for donated memory — Linux 8.8AIHighAI2026-04-24
CVE-2026-31566 drm/amdgpu: Fix fence put before wait in amdgpu_amdkfd_submit_ib — Linux 7.8 High2026-04-24
CVE-2026-31567 PM: sleep: Drop spurious WARN_ON() from pm_restore_gfp_mask() — Linux 3.3AILowAI2026-04-24
CVE-2026-31565 RDMA/irdma: Fix deadlock during netdev reset with active connections — Linux 7.1AIHighAI2026-04-24
CVE-2026-31564 LoongArch: KVM: Fix base address calculation in kvm_eiointc_regs_access() — Linux 7.8AIHighAI2026-04-24
CVE-2026-31563 net: macb: Use dev_consume_skb_any() to free TX SKBs — Linux 7.5 High2026-04-24
CVE-2026-31562 drm/mediatek: dsi: Store driver data before invoking mipi_dsi_host_register — Linux 5.5AIMediumAI2026-04-24

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.