CVE-2025-39902
- EPSS 0.15%
- Veröffentlicht 01.10.2025 08:15:32
- Zuletzt bearbeitet 16.01.2026 19:30:38
In the Linux kernel, the following vulnerability has been resolved: mm/slub: avoid accessing metadata when pointer is invalid in object_err() object_err() reports details of an object for further debugging, such as the freelist pointer, redzone, et...
CVE-2025-39894
- EPSS 0.14%
- Veröffentlicht 01.10.2025 08:15:31
- Zuletzt bearbeitet 16.01.2026 19:30:25
In the Linux kernel, the following vulnerability has been resolved: netfilter: br_netfilter: do not check confirmed bit in br_nf_local_in() after confirm When send a broadcast packet to a tap device, which was added to a bridge, br_nf_local_in() is...
CVE-2025-39891
- EPSS 0.15%
- Veröffentlicht 01.10.2025 08:15:31
- Zuletzt bearbeitet 23.01.2026 02:32:19
In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Initialize the chan_stats array to zero The adapter->chan_stats[] array is initialized in mwifiex_init_channel_scan_gap() with vmalloc(), which doesn't zero out memo...
CVE-2025-41244
- EPSS 7.88%
- Veröffentlicht 29.09.2025 17:15:30
- Zuletzt bearbeitet 06.11.2025 13:58:13
VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled ...
CVE-2025-39885
- EPSS 0.11%
- Veröffentlicht 23.09.2025 06:15:48
- Zuletzt bearbeitet 16.01.2026 19:29:02
In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix recursive semaphore deadlock in fiemap call syzbot detected a OCFS2 hang due to a recursive semaphore on a FS_IOC_FIEMAP of the extent list on a specially crafted mmap f...
CVE-2025-39883
- EPSS 0.14%
- Veröffentlicht 23.09.2025 06:15:48
- Zuletzt bearbeitet 16.01.2026 19:26:44
In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix VM_BUG_ON_PAGE(PagePoisoned(page)) when unpoison memory When I did memory failure tests, below panic occurs: page dumped because: VM_BUG_ON_PAGE(PagePoisone...
CVE-2025-39881
- EPSS 0.14%
- Veröffentlicht 23.09.2025 06:15:47
- Zuletzt bearbeitet 16.01.2026 19:26:01
In the Linux kernel, the following vulnerability has been resolved: kernfs: Fix UAF in polling when open file is released A use-after-free (UAF) vulnerability was identified in the PSI (Pressure Stall Information) monitoring mechanism: BUG: KASAN:...
CVE-2025-39880
- EPSS 0.14%
- Veröffentlicht 23.09.2025 06:15:47
- Zuletzt bearbeitet 20.01.2026 20:27:54
In the Linux kernel, the following vulnerability has been resolved: libceph: fix invalid accesses to ceph_connection_v1_info There is a place where generic code in messenger.c is reading and another place where it is writing to con->v1 union member...
CVE-2025-39877
- EPSS 0.14%
- Veröffentlicht 23.09.2025 06:15:47
- Zuletzt bearbeitet 20.01.2026 20:29:36
In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix use-after-free in state_show() state_show() reads kdamond->damon_ctx without holding damon_sysfs_lock. This allows a use-after-free race: CPU 0 ...
CVE-2025-39876
- EPSS 0.14%
- Veröffentlicht 23.09.2025 06:15:47
- Zuletzt bearbeitet 20.01.2026 20:33:01
In the Linux kernel, the following vulnerability has been resolved: net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() The function of_phy_find_device may return NULL, so we need to take care before dereferencing phy_dev.