Linux

Linux

7352 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-38179

  • EPSS 0.01%
  • Veröffentlicht 04.07.2025 13:37:07
  • Zuletzt bearbeitet 19.11.2025 21:01:36

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix max_sge overflow in smb_extract_folioq_to_rdma() This fixes the following problem: [ 749.901015] [ T8673] run fstests cifs/001 at 2025-06-17 09:40:30 [ 750.34...

0

CVE-2025-38178

  • EPSS 0.02%
  • Veröffentlicht 04.07.2025 13:37:06
  • Zuletzt bearbeitet 28.07.2025 05:15:44

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

5.5

CVE-2025-38177

  • EPSS 0.03%
  • Veröffentlicht 04.07.2025 12:47:09
  • Zuletzt bearbeitet 18.12.2025 16:48:54

In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: make hfsc_qlen_notify() idempotent hfsc_qlen_notify() is not idempotent either and not friendly to its callers, like fq_codel_dequeue(). Let's make it idempotent to ease ...

7.8

CVE-2025-38176

  • EPSS 0.01%
  • Veröffentlicht 04.07.2025 10:39:57
  • Zuletzt bearbeitet 19.11.2025 21:03:50

In the Linux kernel, the following vulnerability has been resolved: binder: fix use-after-free in binderfs_evict_inode() Running 'stress-ng --binderfs 16 --timeout 300' under KASAN-enabled kernel, I've noticed the following: BUG: KASAN: slab-use-a...

7.8

CVE-2025-38175

  • EPSS 0.01%
  • Veröffentlicht 04.07.2025 10:39:56
  • Zuletzt bearbeitet 19.11.2025 21:04:54

In the Linux kernel, the following vulnerability has been resolved: binder: fix yet another UAF in binder_devices Commit e77aff5528a18 ("binderfs: fix use-after-free in binder_devices") addressed a use-after-free where devices could be released wit...

5.5

CVE-2025-38174

  • EPSS 0.03%
  • Veröffentlicht 04.07.2025 10:39:55
  • Zuletzt bearbeitet 18.12.2025 16:46:25

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Do not double dequeue a configuration request Some of our devices crash in tb_cfg_request_dequeue(): general protection fault, probably for non-canonical address 0xd...

7.8

CVE-2025-38172

  • EPSS 0.01%
  • Veröffentlicht 03.07.2025 08:36:10
  • Zuletzt bearbeitet 20.11.2025 19:22:42

In the Linux kernel, the following vulnerability has been resolved: erofs: avoid using multiple devices with different type For multiple devices, both primary and extra devices should be the same type. `erofs_init_device` has already guaranteed tha...

5.5

CVE-2025-38173

  • EPSS 0.03%
  • Veröffentlicht 03.07.2025 08:36:10
  • Zuletzt bearbeitet 18.12.2025 20:53:34

In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/cesa - Handle zero-length skcipher requests Do not access random memory for zero-length skcipher requests. Just return 0.

5.5

CVE-2025-38170

  • EPSS 0.03%
  • Veröffentlicht 03.07.2025 08:36:09
  • Zuletzt bearbeitet 18.12.2025 20:53:13

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Discard stale CPU state when handling SME traps The logic for handling SME traps manipulates saved FPSIMD/SVE/SME state incorrectly, and a race with preemption can re...

5.5

CVE-2025-38171

  • EPSS 0.02%
  • Veröffentlicht 03.07.2025 08:36:09
  • Zuletzt bearbeitet 20.11.2025 19:24:31

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Fix workqueue error handling in probe The create_singlethread_workqueue() doesn't return error pointers, it returns NULL. Also cleanup the workqueue on th...