CVE-2025-71115
- EPSS 0.11%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 19:00:38
In the Linux kernel, the following vulnerability has been resolved: um: init cpu_tasks[] earlier This is currently done in uml_finishsetup(), but e.g. with KCOV enabled we'll crash because some init code can call into e.g. memparse(), which has cov...
CVE-2025-71116
- EPSS 0.13%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:59:53
In the Linux kernel, the following vulnerability has been resolved: libceph: make decode_pool() more resilient against corrupted osdmaps If the osdmap is (maliciously) corrupted such that the encoded length of ceph_pg_pool envelope is less than wha...
CVE-2025-71117
- EPSS 0.08%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:58:06
In the Linux kernel, the following vulnerability has been resolved: block: Remove queue freezing from several sysfs store callbacks Freezing the request queue from inside sysfs store callbacks may cause a deadlock in combination with the dm-multipa...
CVE-2025-71118
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:55:17
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Avoid walking the Namespace if start_node is NULL Although commit 0c9992315e73 ("ACPICA: Avoid walking the ACPI Namespace if it is not there") fixed the situation when both...
CVE-2025-71119
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:46:03
In the Linux kernel, the following vulnerability has been resolved: powerpc/kexec: Enable SMT before waking offline CPUs If SMT is disabled or a partial SMT state is enabled, when a new kernel image is loaded for kexec, on reboot the following warn...
CVE-2025-71120
- EPSS 0.16%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 14.07.2026 13:18:03
In the Linux kernel, the following vulnerability has been resolved: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf A zero length gss_token results in pages == 0 and in_token->pages[0] is NULL. The code uncondi...
CVE-2025-71121
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:37:36
In the Linux kernel, the following vulnerability has been resolved: parisc: Do not reprogram affinitiy on ASP chip The ASP chip is a very old variant of the GSP chip and is used e.g. in HP 730 workstations. When trying to reprogram the affinity it ...
CVE-2025-71122
- EPSS 0.18%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:36:07
In the Linux kernel, the following vulnerability has been resolved: iommufd/selftest: Check for overflow in IOMMU_TEST_OP_ADD_RESERVED syzkaller found it could overflow math in the test infrastructure and cause a WARN_ON by corrupting the reserved ...
CVE-2025-71110
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:00
- Zuletzt bearbeitet 25.03.2026 19:27:53
In the Linux kernel, the following vulnerability has been resolved: mm/slub: reset KASAN tag in defer_free() before accessing freed memory When CONFIG_SLUB_TINY is enabled, kfree_nolock() calls kasan_slab_free() before defer_free(). On ARM64 with M...
CVE-2025-71111
- EPSS 0.09%
- Veröffentlicht 14.01.2026 15:16:00
- Zuletzt bearbeitet 25.03.2026 19:27:20
In the Linux kernel, the following vulnerability has been resolved: hwmon: (w83791d) Convert macros to functions to avoid TOCTOU The macro FAN_FROM_REG evaluates its arguments multiple times. When used in lockless contexts involving shared driver d...