CVE-2025-39823
- EPSS 0.17%
- Veröffentlicht 16.09.2025 13:00:22
- Zuletzt bearbeitet 12.05.2026 13:17:13
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use array_index_nospec with indices that come from guest min and dest_id are guest-controlled indices. Using array_index_nospec() after the bounds checks clamps these val...
CVE-2025-39819
- EPSS 0.14%
- Veröffentlicht 16.09.2025 13:00:19
- Zuletzt bearbeitet 12.05.2026 13:17:13
In the Linux kernel, the following vulnerability has been resolved: fs/smb: Fix inconsistent refcnt update A possible inconsistent update of refcount was identified in `smb2_compound_op`. Such inconsistent update could lead to possible resource lea...
CVE-2025-39817
- EPSS 0.15%
- Veröffentlicht 16.09.2025 13:00:17
- Zuletzt bearbeitet 12.05.2026 13:17:13
In the Linux kernel, the following vulnerability has been resolved: efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare Observed on kernel 6.6 (present on master as well): BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0 Call trace: ka...
CVE-2025-39812
- EPSS 0.16%
- Veröffentlicht 16.09.2025 13:00:14
- Zuletzt bearbeitet 12.05.2026 13:17:12
In the Linux kernel, the following vulnerability has been resolved: sctp: initialize more fields in sctp_v6_from_sk() syzbot found that sin6_scope_id was not properly initialized, leading to undefined behavior. Clear sin6_scope_id and sin6_flowinf...
CVE-2025-39813
- EPSS 0.11%
- Veröffentlicht 16.09.2025 13:00:14
- Zuletzt bearbeitet 12.05.2026 13:17:13
In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix potential warning in trace_printk_seq during ftrace_dump When calling ftrace_dump_one() concurrently with reading trace_pipe, a WARN_ON_ONCE() in trace_printk_seq() can...
CVE-2025-39810
- EPSS 0.15%
- Veröffentlicht 16.09.2025 13:00:12
- Zuletzt bearbeitet 14.01.2026 19:16:42
In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix memory corruption when FW resources change during ifdown bnxt_set_dflt_rings() assumes that it is always called before any TC has been created. So it doesn't take bp-...
CVE-2025-39808
- EPSS 0.16%
- Veröffentlicht 16.09.2025 13:00:11
- Zuletzt bearbeitet 12.05.2026 13:17:12
In the Linux kernel, the following vulnerability has been resolved: HID: hid-ntrig: fix unable to handle page fault in ntrig_report_version() in ntrig_report_version(), hdev parameter passed from hid_probe(). sending descriptor to /dev/uhid can mak...
CVE-2023-53302
- EPSS 0.14%
- Veröffentlicht 16.09.2025 08:11:33
- Zuletzt bearbeitet 14.01.2026 19:16:22
In the Linux kernel, the following vulnerability has been resolved: wifi: iwl4965: Add missing check for create_singlethread_workqueue() Add the check for the return value of the create_singlethread_workqueue() in order to avoid NULL pointer derefe...
CVE-2023-53298
- EPSS 0.14%
- Veröffentlicht 16.09.2025 08:11:30
- Zuletzt bearbeitet 14.01.2026 19:16:22
In the Linux kernel, the following vulnerability has been resolved: nfc: fix memory leak of se_io context in nfc_genl_se_io The callback context for sending/receiving APDUs to/from the selected secure element is allocated inside nfc_genl_se_io and ...
CVE-2023-53299
- EPSS 0.14%
- Veröffentlicht 16.09.2025 08:11:30
- Zuletzt bearbeitet 14.01.2026 19:16:22
In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix leak of 'r10bio->remaining' for recovery raid10_sync_request() will add 'r10bio->remaining' for both rdev and replacement rdev. However, if the read io fails, recove...