Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

linux — Vulnerabilities & Security Advisories 12265

Browse all 12265 CVE security advisories affecting linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2025-68254 staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68253 mm: don't spin in add_stack_record when gfp flags don't allow — Linux 7.1AIHighAI2025-12-16
CVE-2025-68252 misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68251 erofs: avoid infinite loops due to corrupted subpage compact indexes — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68250 hung_task: fix warnings caused by unaligned lock pointers — Linux 7.1AIHighAI2025-12-16
CVE-2025-68249 most: usb: hdm_probe: Fix calling put_device() before device initialization — Linux 7.1AIHighAI2025-12-16
CVE-2025-68248 vmw_balloon: indicate success when effectively deflating during migration — Linux 4.3AIMediumAI2025-12-16
CVE-2025-68246 ksmbd: close accepted socket when per-IP limit rejects connection — Linux 7.5AIHighAI2025-12-16
CVE-2025-68247 posix-timers: Plug potential memory leak in do_timer_create() — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68245 net: netpoll: fix incorrect refcount handling causing incorrect cleanup — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68244 drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD — Linux 7.8AIHighAI2025-12-16
CVE-2025-68242 NFS: Fix LTP test failures when timestamps are delegated — Linux--AI2025-12-16
CVE-2025-68243 NFS: Check the TLS certificate fields in nfs_match_client() — Linux 7.5AIHighAI2025-12-16
CVE-2025-68241 ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe — Linux 6.3AIMediumAI2025-12-16
CVE-2025-68240 nilfs2: avoid having an active sc_timer before freeing sci — Linux 7.8AIHighAI2025-12-16
CVE-2025-68239 binfmt_misc: restore write access before closing files opened by open_exec() — Linux 7.1AIHighAI2025-12-16
CVE-2025-68238 mtd: rawnand: cadence: fix DMA device NULL pointer dereference — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68237 mtdchar: fix integer overflow in read/write ioctls — Linux 7.8AIHighAI2025-12-16
CVE-2025-68236 scsi: ufs: ufs-qcom: Fix UFS OCP issue during UFS power down (PC=3) — Linux 7.1AIHighAI2025-12-16
CVE-2025-68235 nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68234 io_uring/cmd_net: fix wrong argument types for skb_queue_splice() — Linux 7.1AIHighAI2025-12-16
CVE-2025-68233 drm/tegra: Add call to put_pid() — Linux 7.1AIHighAI2025-12-16
CVE-2025-68232 veth: more robust handing of race to avoid txq getting stuck — Linux 4.7AIMediumAI2025-12-16
CVE-2025-68231 mm/mempool: fix poisoning order>0 pages with HIGHMEM — Linux 7.8AIHighAI2025-12-16
CVE-2025-68230 drm/amdgpu: fix gpu page fault after hibernation on PF passthrough — Linux 7.8AIHighAI2025-12-16
CVE-2025-68229 scsi: target: tcm_loop: Fix segfault in tcm_loop_tpg_address_show() — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68228 drm/plane: Fix create_in_format_blob() return value — Linux 5.5AIMediumAI2025-12-16
CVE-2025-68227 mptcp: Fix proto fallback detection with BPF — Linux 8.8AIHighAI2025-12-16
CVE-2025-68226 smb: client: fix incomplete backport in cfids_invalidation_worker() — Linux 7.8AIHighAI2025-12-16
CVE-2025-68225 lib/test_kho: check if KHO is enabled — Linux 7.1AIHighAI2025-12-16

This page lists every published CVE security advisory associated with linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.