Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

linux — Vulnerabilities & Security Advisories 11743

Browse all 11743 CVE security advisories affecting linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Found 11613 results / 11743Clear Filters
Top products by linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-23016 inet: frags: drop fraglist conntrack references — Linux 6.1AIMediumAI2026-01-31
CVE-2026-23015 gpio: mpsse: fix reference leak in gpio_mpsse_probe() error paths — Linux 5.5AIMediumAI2026-01-31
CVE-2025-71184 btrfs: fix NULL dereference on root when tracing inode eviction — Linux 5.5AIMediumAI2026-01-31
CVE-2025-71183 btrfs: always detect conflicting inodes when logging inode refs — Linux 7.1AIHighAI2026-01-31
CVE-2025-71182 can: j1939: make j1939_session_activate() fail if device is no longer registered — Linux 5.5AIMediumAI2026-01-31
CVE-2025-71181 rust_binder: remove spin_lock() in rust_shrink_free_page() — Linux 5.5AIMediumAI2026-01-31
CVE-2025-71180 counter: interrupt-cnt: Drop IRQF_NO_THREAD flag — Linux 5.5AIMediumAI2026-01-31
CVE-2026-23014 perf: Ensure swevent hrtimer is properly destroyed — Linux 7.8 High2026-01-28
CVE-2026-23013 net: octeon_ep_vf: fix free_irq dev_id mismatch in IRQ rollback — Linux 7.0 High2026-01-25
CVE-2026-23012 mm/damon/core: remove call_control in inactive contexts — Linux 5.5 -2026-01-25
CVE-2026-23011 ipv4: ip_gre: make ipgre_header() robust — Linux 5.5 -2026-01-25
CVE-2026-23010 ipv6: Fix use-after-free in inet6_addr_del(). — Linux 7.8 High2026-01-25
CVE-2026-23009 xhci: sideband: don't dereference freed ring when removing sideband endpoint — Linux 5.5 -2026-01-25
CVE-2026-23008 drm/vmwgfx: Fix KMS with 3D on HW version 10 — Linux 5.5 -2026-01-25
CVE-2026-23007 block: zero non-PI portion of auto integrity buffer — Linux 6.1 -2026-01-25
CVE-2026-23006 ASoC: tlv320adcx140: fix null pointer — Linux 5.5 -2026-01-25
CVE-2026-23005 x86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1 — Linux 5.5 -2026-01-25
CVE-2026-23004 dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() — Linux 7.8 High2026-01-25
CVE-2026-23003 ip6_tunnel: use skb_vlan_inet_prepare() in __ip6_tnl_rcv() — Linux 7.5 High2026-01-25
CVE-2026-23002 lib/buildid: use __kernel_read() for sleepable context — Linux 7.1 -2026-01-25
CVE-2026-23001 macvlan: fix possible UAF in macvlan_forward_source() — Linux 7.8 High2026-01-25
CVE-2026-23000 net/mlx5e: Fix crash on profile change rollback failure — Linux 5.5 -2026-01-25
CVE-2026-22999 net/sched: sch_qfq: do not free existing class in qfq_change_class() — Linux 7.8 High2026-01-25
CVE-2026-22998 nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec — Linux 7.5 High2026-01-25
CVE-2026-22997 net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts — Linux 7.5 High2026-01-25
CVE-2026-22996 net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv — Linux 7.1 -2026-01-25
CVE-2025-71163 dmaengine: idxd: fix device leaks on compat bind and unbind — Linux 5.5 -2026-01-25
CVE-2025-71162 dmaengine: tegra-adma: Fix use-after-free — Linux 6.3 -2026-01-25
CVE-2026-22995 ublk: fix use-after-free in ublk_partition_scan_work — Linux 7.0 -2026-01-23
CVE-2026-22994 bpf: Fix reference count leak in bpf_prog_test_run_xdp() — Linux 7.1 -2026-01-23

This page lists every published CVE security advisory associated with linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.