CVE-2025-39848
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:21
- Zuletzt bearbeitet 12.05.2026 13:17:16
In the Linux kernel, the following vulnerability has been resolved: ax25: properly unshare skbs in ax25_kiss_rcv() Bernard Pidoux reported a regression apparently caused by commit c353e8983e0d ("net: introduce per netns packet chains"). skb->dev b...
CVE-2025-39847
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:20
- Zuletzt bearbeitet 12.05.2026 13:17:15
In the Linux kernel, the following vulnerability has been resolved: ppp: fix memory leak in pad_compress_skb If alloc_skb() fails in pad_compress_skb(), it returns NULL without releasing the old skb. The caller does: skb = pad_compress_skb(ppp...
CVE-2025-39846
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:19
- Zuletzt bearbeitet 12.05.2026 13:17:15
In the Linux kernel, the following vulnerability has been resolved: pcmcia: Fix a NULL pointer dereference in __iodyn_find_io_region() In __iodyn_find_io_region(), pcmcia_make_resource() is assigned to res and used in pci_bus_alloc_resource(). Ther...
CVE-2025-39845
- EPSS 0.14%
- Veröffentlicht 19.09.2025 15:26:19
- Zuletzt bearbeitet 12.05.2026 13:17:15
In the Linux kernel, the following vulnerability has been resolved: x86/mm/64: define ARCH_PAGE_TABLE_SYNC_MASK and arch_sync_kernel_mappings() Define ARCH_PAGE_TABLE_SYNC_MASK and arch_sync_kernel_mappings() to ensure page tables are properly sync...
CVE-2025-39844
- EPSS 0.14%
- Veröffentlicht 19.09.2025 15:26:18
- Zuletzt bearbeitet 12.05.2026 13:17:15
In the Linux kernel, the following vulnerability has been resolved: mm: move page table sync declarations to linux/pgtable.h During our internal testing, we started observing intermittent boot failures when the machine uses 4-level paging and has a...
CVE-2025-39843
- EPSS 0.11%
- Veröffentlicht 19.09.2025 15:26:17
- Zuletzt bearbeitet 12.05.2026 13:17:15
In the Linux kernel, the following vulnerability has been resolved: mm: slub: avoid wake up kswapd in set_track_prepare set_track_prepare() can incur lock recursion. The issue is that it is called from hrtimer_start_range_ns holding the per_cpu(hrt...
CVE-2025-39842
- EPSS 0.16%
- Veröffentlicht 19.09.2025 15:26:17
- Zuletzt bearbeitet 12.05.2026 13:17:15
In the Linux kernel, the following vulnerability has been resolved: ocfs2: prevent release journal inode after journal shutdown Before calling ocfs2_delete_osb(), ocfs2_journal_shutdown() has already been executed in ocfs2_dismount_volume(), so osb...
CVE-2025-39841
- EPSS 0.17%
- Veröffentlicht 19.09.2025 15:26:16
- Zuletzt bearbeitet 12.05.2026 13:17:14
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed ...
CVE-2025-39839
- EPSS 0.16%
- Veröffentlicht 19.09.2025 15:26:14
- Zuletzt bearbeitet 12.05.2026 13:17:14
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix OOB read/write in network-coding decode batadv_nc_skb_decode_packet() trusts coded_len and checks only against skb->len. XOR starts at sizeof(struct batadv_unicast_...
CVE-2025-39838
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:13
- Zuletzt bearbeitet 12.05.2026 13:17:14
In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL pointer dereference in UTF16 conversion There can be a NULL pointer dereference bug here. NULL is passed to __cifs_sfu_make_node without checks, which passes it ...