Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

linux — Vulnerabilities & Security Advisories 12265

Browse all 12265 CVE security advisories affecting linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2022-50615 perf/x86/intel/uncore: Fix reference count leak in snr_uncore_mmio_map() — Linux 5.5AIMediumAI2025-12-08
CVE-2022-50614 misc: pci_endpoint_test: Fix pci_endpoint_test_{copy,write,read}() panic — Linux 5.5 -2025-12-08
CVE-2022-50583 md/raid0, raid10: Don't set discard sectors for request queue — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40326 NFSD: Define actions for the new time_deleg FATTR4 attributes — Linux 7.5AIHighAI2025-12-08
CVE-2025-40324 NFSD: Fix crash in nfsd4_read_release() — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40323 fbcon: Set fb_display[i]->mode to NULL when the mode is released — Linux 7.1AIHighAI2025-12-08
CVE-2025-40322 fbdev: bitblit: bound-check glyph index in bit_putcs* — Linux 7.7 -2025-12-08
CVE-2025-40321 wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode — Linux 5.7AIMediumAI2025-12-08
CVE-2025-40320 smb: client: fix potential cfid UAF in smb2_query_info_compound — Linux 7.7AIHighAI2025-12-08
CVE-2025-40319 bpf: Sync pending IRQ work before freeing ring buffer — Linux 7.0AIHighAI2025-12-08
CVE-2025-40318 Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once — Linux 7.5 -2025-12-08
CVE-2025-40317 regmap: slimbus: fix bus_context pointer in regmap init calls — Linux 3.3 -2025-12-08
CVE-2025-40316 drm/mediatek: Fix device use-after-free on unbind — Linux 7.1AIHighAI2025-12-08
CVE-2025-40315 usb: gadget: f_fs: Fix epfile null pointer access after ep enable. — Linux 4.7AIMediumAI2025-12-08
CVE-2025-40314 usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget — Linux 7.8AIHighAI2025-12-08
CVE-2025-40313 ntfs3: pretend $Extend records as regular files — Linux 7.8AIHighAI2025-12-08
CVE-2025-40312 jfs: Verify inode mode when loading from disk — Linux 7.8AIHighAI2025-12-08
CVE-2025-40311 accel/habanalabs: support mapping cb with vmalloc-backed coherent memory — Linux 4.7AIMediumAI2025-12-08
CVE-2025-40310 amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw — Linux 4.7AIMediumAI2025-12-08
CVE-2025-40309 Bluetooth: SCO: Fix UAF on sco_conn_free — Linux 8.4AIHighAI2025-12-08
CVE-2025-40308 Bluetooth: bcsp: receive data only if registered — Linux 6.2AIMediumAI2025-12-08
CVE-2025-40307 exfat: validate cluster allocation bits of the allocation bitmap — Linux 7.7AIHighAI2025-12-08
CVE-2025-40306 orangefs: fix xattr related buffer overflow... — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40305 9p/trans_fd: p9_fd_request: kick rx thread if EPOLLIN — Linux 5.5 -2025-12-08
CVE-2025-40304 fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds — Linux 8.4AIHighAI2025-12-08
CVE-2025-40303 btrfs: ensure no dirty metadata is written back for an fs with errors — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40302 media: videobuf2: forbid remove_bufs when legacy fileio is active — Linux 7.8 -2025-12-08
CVE-2025-40301 Bluetooth: hci_event: validate skb length for unknown CC opcode — Linux--2025-12-08
CVE-2025-40299 gve: Implement gettimex64 with -EOPNOTSUPP — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40298 gve: Implement settime64 with -EOPNOTSUPP — Linux 7.1AIHighAI2025-12-08

This page lists every published CVE security advisory associated with linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.