Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11726

Browse all 11726 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-31530 cxl/port: Fix use after free of parent_port in cxl_detach_ep() — Linux 7.1AIHighAI2026-04-22
CVE-2026-31529 cxl/region: Fix leakage in __construct_region() — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31528 perf: Make sure to use pmu_ctx->pmu for groups — Linux 7.8 High2026-04-22
CVE-2026-31527 driver core: platform: use generic driver_override infrastructure — Linux 7.1AIHighAI2026-04-22
CVE-2026-31526 bpf: Fix exception exit lock checking for subprogs — Linux 6.1AIMediumAI2026-04-22
CVE-2026-31525 bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN — Linux 7.8 High2026-04-22
CVE-2026-31523 nvme-pci: ensure we're polling a polled queue — Linux 4.7AIMediumAI2026-04-22
CVE-2026-31524 HID: asus: avoid memory leak in asus_report_fixup() — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31522 HID: magicmouse: avoid memory leak in magicmouse_report_fixup() — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31520 HID: apple: avoid memory leak in apple_report_fixup() — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31521 module: Fix kernel panic when a symbol st_shndx is out of bounds — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31519 btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create — Linux 7.1AIHighAI2026-04-22
CVE-2026-31517 xfrm: iptfs: fix skb_put() panic on non-linear skb during reassembly — Linux--AI2026-04-22
CVE-2026-31518 esp: fix skb leak with espintcp and async crypto — Linux 3.3AILowAI2026-04-22
CVE-2026-31516 xfrm: prevent policy_hthresh.work from racing with netns teardown — Linux 7.8 High2026-04-22
CVE-2026-31515 af_key: validate families in pfkey_send_migrate() — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31514 erofs: set fileio bio failed in short read case — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31513 Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req — Linux 8.1 High2026-04-22
CVE-2026-31512 Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() — Linux 4.3AIMediumAI2026-04-22
CVE-2026-31511 Bluetooth: MGMT: Fix dangling pointer on mgmt_add_adv_patterns_monitor_complete — Linux 7.8 High2026-04-22
CVE-2026-31510 Bluetooth: L2CAP: Fix null-ptr-deref on l2cap_sock_ready_cb — Linux 6.5AIMediumAI2026-04-22
CVE-2026-31509 nfc: nci: fix circular locking dependency in nci_close_device — Linux 5.5AIMediumAI2026-04-22
CVE-2026-31508 net: openvswitch: Avoid releasing netdev before teardown completes — Linux 7.8 High2026-04-22
CVE-2026-31507 net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer — Linux 7.8 High2026-04-22
CVE-2026-31506 net: bcmasp: fix double free of WoL irq — Linux 8.8AIHighAI2026-04-22
CVE-2026-31505 iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() — Linux 7.8 High2026-04-22
CVE-2026-31504 net: fix fanout UAF in packet_release() via NETDEV_UP race — Linux 7.8 High2026-04-22
CVE-2026-31503 udp: Fix wildcard bind conflict check when using hash2 — Linux 9.1AICriticalAI2026-04-22
CVE-2026-31502 team: fix header_ops type confusion with non-Ethernet ports — Linux 7.8 High2026-04-22
CVE-2026-31501 net: ti: icssg-prueth: fix use-after-free of CPPI descriptor in RX path — Linux 9.8 Critical2026-04-22

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.