Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 11726

Browse all 11726 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-43355 iio: light: bh1780: fix PM runtime leak on error path — Linux--2026-05-08
CVE-2026-43354 iio: proximity: hx9023s: Protect against division by zero in set_samp_freq — Linux--2026-05-08
CVE-2026-43352 i3c: mipi-i3c-hci: Correct RING_CTRL_ABORT handling in DMA dequeue — Linux--2026-05-08
CVE-2026-43353 i3c: mipi-i3c-hci: Fix race in DMA ring dequeue — Linux--2026-05-08
CVE-2026-43351 KVM: arm64: Eagerly init vgic dist/redist on vgic creation — Linux--2026-05-08
CVE-2026-43350 smb: client: require a full NFS mode SID before reading mode bits — Linux--2026-05-08
CVE-2026-43349 f2fs: fix to avoid uninit-value access in f2fs_sanity_check_node_footer — Linux--2026-05-08
CVE-2026-43348 mshv_vtl: Fix vmemmap_shift exceeding MAX_FOLIO_ORDER — Linux--2026-05-08
CVE-2026-43347 arm64: dts: qcom: monaco: Reserve full Gunyah metadata region — Linux--2026-05-08
CVE-2026-43346 ice: ptp: don't WARN when controlling PF is unavailable — Linux--2026-05-08
CVE-2026-43345 net: ipa: fix event ring index not programmed for IPA v5.0+ — Linux--2026-05-08
CVE-2026-43344 perf/x86/intel/uncore: Fix die ID init and look up bugs — Linux--2026-05-08
CVE-2026-43343 usb: gadget: f_subset: Fix unbalanced refcnt in geth_free — Linux--2026-05-08
CVE-2026-43342 usb: gadget: f_rndis: Protect RNDIS options with mutex — Linux--2026-05-08
CVE-2026-43340 comedi: Reinit dev->spinlock between attachments to low-level drivers — Linux--2026-05-08
CVE-2026-43341 net/ipv6: ioam6: prevent schema length wraparound in trace fill — Linux--2026-05-08
CVE-2026-43339 ipv6: prevent possible UaF in addrconf_permanent_addr() — Linux--2026-05-08
CVE-2026-43338 btrfs: reserve enough transaction items for qgroup ioctls — Linux--2026-05-08
CVE-2026-43337 drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw() — Linux--2026-05-08
CVE-2026-43336 lib/crypto: chacha: Zeroize permuted_state before it leaves scope — Linux--2026-05-08
CVE-2026-43335 interconnect: qcom: sm8450: Fix NULL pointer dereference in icc_link_nodes() — Linux--2026-05-08
CVE-2026-43334 Bluetooth: SMP: force responder MITM requirements before building the pairing response — Linux--2026-05-08
CVE-2026-43333 bpf: reject direct access to nullable PTR_TO_BUF pointers — Linux--2026-05-08
CVE-2026-43332 thermal: core: Fix thermal zone device registration error path — Linux--2026-05-08
CVE-2026-43331 x86/kexec: Disable KCOV instrumentation after load_segments() — Linux--2026-05-08
CVE-2026-43330 crypto: caam - fix overflow on long hmac keys — Linux--2026-05-08
CVE-2026-43328 cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error path — Linux--2026-05-08
CVE-2026-43329 netfilter: flowtable: strictly check for maximum number of actions — Linux--2026-05-08
CVE-2026-43327 USB: dummy-hcd: Fix locking/synchronization error — Linux--2026-05-08
CVE-2026-43325 wifi: iwlwifi: mvm: don't send a 6E related command when not supported — Linux--2026-05-08

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.