CVE-2025-38513
- EPSS 0.15%
- Veröffentlicht 16.08.2025 10:55:00
- Zuletzt bearbeitet 07.01.2026 17:47:21
In the Linux kernel, the following vulnerability has been resolved: wifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev() There is a potential NULL pointer dereference in zd_mac_tx_to_dev(). For example, the following is poss...
CVE-2025-38502
- EPSS 0.15%
- Veröffentlicht 16.08.2025 09:34:25
- Zuletzt bearbeitet 01.06.2026 12:24:50
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix oob access in cgroup local storage Lonial reported that an out-of-bounds access in cgroup local storage can be crafted via tail calls. Given two programs each utilizing a ...
CVE-2025-38499
- EPSS 0.15%
- Veröffentlicht 11.08.2025 16:15:30
- Zuletzt bearbeitet 12.05.2026 13:16:51
In the Linux kernel, the following vulnerability has been resolved: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't ...
CVE-2022-50233
- EPSS 0.13%
- Veröffentlicht 09.08.2025 14:30:51
- Zuletzt bearbeitet 19.11.2025 17:13:46
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix using strlen with hdev->{dev_name,short_name} Both dev_name and short_name are not guaranteed to be NULL terminated so this instead use strnlen and then attempt...
CVE-2023-32253
- EPSS 0.3%
- Veröffentlicht 02.08.2025 22:26:05
- Zuletzt bearbeitet 30.06.2026 00:16:46
A flaw was found in the Linux kernel's ksmbd component. A deadlock is triggered by sending multiple concurrent session setup requests, possibly leading to a denial of service.
CVE-2023-32255
- EPSS 0.47%
- Veröffentlicht 02.08.2025 22:25:45
- Zuletzt bearbeitet 30.06.2026 00:16:47
A flaw was found in the Linux kernel's ksmbd component. A memory leak can occur if a client sends a session setup request with an unknown NTLMSSP message type, potentially leading to resource exhaustion.
CVE-2023-32256
- EPSS 0.53%
- Veröffentlicht 01.08.2025 17:37:15
- Zuletzt bearbeitet 29.06.2026 21:16:29
A flaw was found in the Linux kernel's ksmbd component. A race condition between smb2 close operation and logoff in multichannel connections could result in a use-after-free issue.
CVE-2023-32251
- EPSS 0.43%
- Veröffentlicht 31.07.2025 20:44:02
- Zuletzt bearbeitet 30.06.2026 07:16:29
A vulnerability has been identified in the Linux kernel's ksmbd component (kernel SMB/CIFS server). A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed through the use of ...
CVE-2025-38498
- EPSS 0.16%
- Veröffentlicht 30.07.2025 06:15:27
- Zuletzt bearbeitet 12.05.2026 13:16:51
In the Linux kernel, the following vulnerability has been resolved: do_change_type(): refuse to operate on unmounted/not ours mounts Ensure that propagation settings can only be changed for mounts located in the caller's mount namespace. This chang...
CVE-2025-38497
- EPSS 0.15%
- Veröffentlicht 28.07.2025 11:22:05
- Zuletzt bearbeitet 07.01.2026 16:26:35
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qw_sign' or 'landingPage' sysfs attributes, the store functions attempt to access ...