Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11727

Browse all 11727 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2024-35885 mlxbf_gige: stop interface during shutdown — Linux 5.5 -2024-05-19
CVE-2024-35884 udp: do not accept non-tunnel GSO skbs landing in a tunnel — Linux 7.5 -2024-05-19
CVE-2024-35883 spi: mchp-pci1xxx: Fix a possible null pointer dereference in pci1xxx_spi_probe — Linux 5.5 -2024-05-19
CVE-2024-35882 SUNRPC: Fix a slow server-side memory leak with RPC-over-TCP — Linux 7.5 -2024-05-19
CVE-2024-35880 io_uring/kbuf: hold io_buffer_list reference over mmap — Linux 6.3 -2024-05-19
CVE-2024-35879 of: dynamic: Synchronize of_changeset_destroy() with the devlink removals — Linux 6.5 -2024-05-19
CVE-2024-35878 of: module: prevent NULL pointer dereference in vsnprintf() — Linux 5.5 -2024-05-19
CVE-2024-35877 x86/mm/pat: fix VM_PAT handling in COW mappings — Linux 7.8 -2024-05-19
CVE-2024-35875 x86/coco: Require seeding RNG with RDRAND on CoCo systems — Linux 8.8 -2024-05-19
CVE-2024-35874 aio: Fix null ptr deref in aio_complete() wakeup — Linux 7.1 -2024-05-19
CVE-2024-35873 riscv: Fix vector state restore in rt_sigreturn() — Linux 7.1 -2024-05-19
CVE-2024-35872 mm/secretmem: fix GUP-fast succeeding on secretmem folios — Linux 5.5 -2024-05-19
CVE-2024-35871 riscv: process: Fix kernel gp leakage — Linux 7.1 -2024-05-19
CVE-2024-35869 smb: client: guarantee refcounted children from parent session — Linux 7.8 -2024-05-19
CVE-2024-35870 smb: client: fix UAF in smb2_reconnect_server() — Linux 7.1 -2024-05-19
CVE-2024-35868 smb: client: fix potential UAF in cifs_stats_proc_write() — Linux 8.8 -2024-05-19
CVE-2024-35867 smb: client: fix potential UAF in cifs_stats_proc_show() — Linux 8.8 -2024-05-19
CVE-2024-35866 smb: client: fix potential UAF in cifs_dump_full_key() — Linux 8.8 -2024-05-19
CVE-2024-35865 smb: client: fix potential UAF in smb2_is_valid_oplock_break() — Linux 8.8 -2024-05-19
CVE-2024-35864 smb: client: fix potential UAF in smb2_is_valid_lease_break() — Linux 8.8 -2024-05-19
CVE-2024-35863 smb: client: fix potential UAF in is_valid_oplock_break() — Linux 8.8 -2024-05-19
CVE-2024-35862 smb: client: fix potential UAF in smb2_is_network_name_deleted() — Linux 8.8 -2024-05-19
CVE-2024-35861 smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect() — Linux 8.8 -2024-05-19
CVE-2024-35860 bpf: support deferring bpf_link dealloc to after RCU grace period — Linux 3.3 -2024-05-19
CVE-2024-35859 block: fix module reference leakage from bdev_open_by_dev error path — Linux 5.5 -2024-05-17
CVE-2024-35857 icmp: prevent possible NULL dereferences from icmp_build_probe() — Linux 5.5 -2024-05-17
CVE-2024-35858 net: bcmasp: fix memory leak when bringing down interface — Linux 6.5 -2024-05-17
CVE-2024-35856 Bluetooth: btusb: mediatek: Fix double free of skb in coredump — Linux 6.5 -2024-05-17
CVE-2024-35855 mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update — Linux 7.0 -2024-05-17
CVE-2024-35854 mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash — Linux 7.1 -2024-05-17

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.