Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

linux — Vulnerabilities & Security Advisories 11743

Browse all 11743 CVE security advisories affecting linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-23245 net/sched: act_gate: snapshot parameters with RCU on replace — Linux 7.8 High2026-03-18
CVE-2026-23243 RDMA/umad: Reject negative data_len in ib_umad_write — Linux 7.8 High2026-03-18
CVE-2026-23242 RDMA/siw: Fix potential NULL pointer dereference in header processing — Linux 7.5 High2026-03-18
CVE-2025-71267 fs: ntfs3: fix infinite loop triggered by zero-sized ATTR_LIST — Linux 5.5 -2026-03-18
CVE-2025-71266 fs: ntfs3: check return value of indx_find to avoid infinite loop — Linux 5.5 -2026-03-18
CVE-2025-71265 fs: ntfs3: fix infinite loop in attr_load_runs_range on inconsistent metadata — Linux 5.5 -2026-03-18
CVE-2026-23241 audit: add missing syscalls to read class — Linux 6.1AIMediumAI2026-03-17
CVE-2025-71239 audit: add fchmodat2() to change attributes class — Linux 5.5AIMediumAI2026-03-17
CVE-2026-23240 tls: Fix race condition in tls_sw_cancel_work_tx() — Linux 9.8 Critical2026-03-10
CVE-2026-23239 espintcp: Fix race condition in espintcp_close() — Linux 7.8 High2026-03-10
CVE-2024-14027 xattr: switch to CLASS(fd) — Linux--AI2026-03-09
CVE-2026-23238 romfs: check sb_set_blocksize() return value — Linux 5.7AIMediumAI2026-03-04
CVE-2026-23237 platform/x86: classmate-laptop: Add missing NULL pointer checks — Linux 7.8AIHighAI2026-03-04
CVE-2026-23236 fbdev: smscufx: properly copy ioctl memory to kernelspace — Linux 7.3 High2026-03-04
CVE-2026-23235 f2fs: fix out-of-bounds access in sysfs attribute read/write — Linux 7.8AIHighAI2026-03-04
CVE-2026-23234 f2fs: fix to avoid UAF in f2fs_write_end_io() — Linux 7.0AIHighAI2026-03-04
CVE-2026-23233 f2fs: fix to avoid mapping wrong physical block for swapfile — Linux 7.1AIHighAI2026-03-04
CVE-2026-23232 Revert "f2fs: block cache/dio write during f2fs_enable_checkpoint()" — Linux 5.5AIMediumAI2026-03-04
CVE-2025-71238 scsi: qla2xxx: Fix bsg_done() causing double free — Linux 5.5AIMediumAI2026-03-04
CVE-2026-23231 netfilter: nf_tables: fix use-after-free in nf_tables_addchain() — Linux 7.8 High2026-03-04
CVE-2026-23230 smb: client: split cached_fid bitfields to avoid shared-byte RMW races — Linux 8.8 High2026-02-18
CVE-2026-23229 crypto: virtio - Add spinlock protection with virtqueue notification — Linux 5.5AIMediumAI2026-02-18
CVE-2026-23228 smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection() — Linux 8.1AIHighAI2026-02-18
CVE-2026-23227 drm/exynos: vidi: use ctx->lock to protect struct vidi_context member variables related to memory alloc/free — Linux 7.8 High2026-02-18
CVE-2026-23226 ksmbd: add chann_lock to protect ksmbd_chann_list xarray — Linux 8.8 High2026-02-18
CVE-2026-23225 sched/mmcid: Don't assume CID is CPU owned on mode switch — Linux 7.8 High2026-02-18
CVE-2026-23223 xfs: fix UAF in xchk_btree_check_block_owner — Linux 7.1AIHighAI2026-02-18
CVE-2026-23224 erofs: fix UAF issue for file-backed mounts w/ directio option — Linux 7.8 High2026-02-18
CVE-2026-23222 crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly — Linux 7.8 High2026-02-18
CVE-2026-23221 bus: fsl-mc: fix use-after-free in driver_override_show() — Linux 7.8AIHighAI2026-02-18

This page lists every published CVE security advisory associated with linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.