Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

linux — Vulnerabilities & Security Advisories 11727

Browse all 11727 CVE security advisories affecting linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-31710 smb: client: fix dir separator in SMB1 UNIX mounts — Linux 5.5 -2026-05-01
CVE-2026-31709 smb: client: validate the whole DACL before rewriting it in cifsacl — Linux 8.8 High2026-05-01
CVE-2026-31708 smb: client: fix OOB read in smb2_ioctl_query_info QUERY_INFO path — Linux 8.1 High2026-05-01
CVE-2026-31706 ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl() — Linux 8.8 High2026-05-01
CVE-2026-31707 ksmbd: validate response sizes in ipc_validate_msg() — Linux 7.1 High2026-05-01
CVE-2026-31705 ksmbd: fix out-of-bounds write in smb2_get_ea() EA alignment — Linux 9.8 Critical2026-05-01
CVE-2026-31704 ksmbd: use check_add_overflow() to prevent u16 DACL size overflow — Linux 8.4 -2026-05-01
CVE-2026-31702 f2fs: fix use-after-free of sbi in f2fs_compress_write_end_io() — Linux 7.1 -2026-05-01
CVE-2026-31703 writeback: Fix use after free in inode_switch_wbs_work_fn() — Linux 7.8 High2026-05-01
CVE-2026-31701 ALSA: caiaq: take a reference on the USB device in create_card() — Linux 7.1 -2026-05-01
CVE-2026-31700 net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() — Linux 7.8 High2026-05-01
CVE-2026-31699 crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed — Linux 7.1 High2026-05-01
CVE-2026-31698 crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed — Linux 7.1 High2026-05-01
CVE-2026-31697 crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed — Linux 7.1 High2026-05-01
CVE-2026-31696 rxrpc: Fix missing validation of ticket length in non-XDR key preparsing — Linux 7.8 -2026-05-01
CVE-2026-31695 wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free — Linux 7.8 High2026-05-01
CVE-2026-31694 fuse: reject oversized dirents in page cache — Linux 7.8 High2026-05-01
CVE-2026-31693 cifs: some missing initializations on replay — Linux 7.8 High2026-04-30
CVE-2026-31692 rtnetlink: add missing netlink_ns_capable() check for peer netns — Linux 7.1 -2026-04-30
CVE-2026-31787 xen/privcmd: fix double free via VMA splitting — Linux 7.1 -2026-04-30
CVE-2026-31786 Buffer overflow in drivers/xen/sys-hypervisor.c — Linux 7.8 High2026-04-30
CVE-2026-31691 igb: remove napi_synchronize() in igb_down() — Linux 7.1 -2026-04-27
CVE-2026-31690 firmware: thead: Fix buffer overflow and use standard endian macros — Linux 8.8AIHighAI2026-04-27
CVE-2026-31689 EDAC/mc: Fix error path ordering in edac_mc_alloc() — Linux 7.8 -2026-04-27
CVE-2026-31688 driver core: enforce device_lock for driver_match_device() — Linux 6.1 -2026-04-27
CVE-2026-31687 gpio: omap: do not register driver in probe() — Linux 6.6AIMediumAI2026-04-27
CVE-2026-31686 mm/kasan: fix double free for kasan pXds — Linux 7.1 -2026-04-27
CVE-2026-31685 netfilter: ip6t_eui64: reject invalid MAC header for all packets — Linux 9.4 Critical2026-04-25
CVE-2026-31684 net: sched: act_csum: validate nested VLAN headers — Linux 7.3AIHighAI2026-04-25
CVE-2026-31683 batman-adv: avoid OGM aggregation when skb tailroom is insufficient — Linux 7.8 High2026-04-25

This page lists every published CVE security advisory associated with linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.