Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

linux — Vulnerabilities & Security Advisories 11756

Browse all 11756 CVE security advisories affecting linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2025-40297 net: bridge: fix use-after-free due to MST port state bypass — Linux 7.0AIHighAI2025-12-08
CVE-2025-40296 platform/x86: int3472: Fix double free of GPIO device during unregister — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40295 fscrypt: fix left shift underflow when inode->i_blkbits > PAGE_SHIFT — Linux 7.1AIHighAI2025-12-08
CVE-2025-40294 Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() — Linux 8.1 -2025-12-08
CVE-2025-40293 iommufd: Don't overflow during division for dirty tracking — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40292 virtio-net: fix received length check in big packets — Linux 4.7 -2025-12-08
CVE-2025-40291 io_uring: fix regbuf vector size truncation — Linux 7.8AIHighAI2025-12-08
CVE-2025-40290 xsk: avoid data corruption on cq descriptor number — Linux 5.5AIMediumAI2025-12-08
CVE-2025-40289 drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM — Linux 5.5 -2025-12-06
CVE-2025-40288 drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices — Linux 5.5 -2025-12-06
CVE-2025-40287 exfat: fix improper check of dentry.stream.valid_size — Linux 6.2 -2025-12-06
CVE-2025-40286 smb/server: fix possible memory leak in smb2_read() — Linux 6.5 -2025-12-06
CVE-2025-40285 smb/server: fix possible refcount leak in smb2_sess_setup() — Linux 5.5 -2025-12-06
CVE-2025-40284 Bluetooth: MGMT: cancel mesh send timer when hdev removed — Linux 6.5 -2025-12-06
CVE-2025-40283 Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF — Linux 8.0 -2025-12-06
CVE-2025-40282 Bluetooth: 6lowpan: reset link-local header on ipv6 recv path — Linux 6.5 -2025-12-06
CVE-2025-40281 sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto — Linux 7.1 -2025-12-06
CVE-2025-40280 tipc: Fix use-after-free in tipc_mon_reinit_self(). — Linux 7.8 -2025-12-06
CVE-2025-40279 net: sched: act_connmark: initialize struct tc_ife to fix kernel leak — Linux 5.5 -2025-12-06
CVE-2025-40278 net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak — Linux 8.8 -2025-12-06
CVE-2025-40277 drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE — Linux 7.8 -2025-12-06
CVE-2025-40276 drm/panthor: Flush shmem writes before mapping buffers CPU-uncached — Linux 7.8 -2025-12-06
CVE-2025-40275 ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd — Linux 7.1 -2025-12-06
CVE-2025-40274 KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying — Linux 7.1 -2025-12-06
CVE-2025-40273 NFSD: free copynotify stateid in nfs4_free_ol_stateid() — Linux 6.5 -2025-12-06
CVE-2025-40272 mm/secretmem: fix use-after-free race in fault handler — Linux 4.7 -2025-12-06
CVE-2025-40271 fs/proc: fix uaf in proc_readdir_de() — Linux 7.1 -2025-12-06
CVE-2025-40270 mm, swap: fix potential UAF issue for VMA readahead — Linux 6.6 -2025-12-06
CVE-2025-40269 ALSA: usb-audio: Fix potential overflow of PCM transfer buffer — Linux 8.4 -2025-12-06
CVE-2025-40268 cifs: client: fix memory leak in smb3_fs_context_parse_param — Linux 5.5 -2025-12-06

This page lists every published CVE security advisory associated with linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.