CVE-2025-38342
- EPSS 0.16%
- Veröffentlicht 10.07.2025 08:15:11
- Zuletzt bearbeitet 12.05.2026 13:16:48
In the Linux kernel, the following vulnerability has been resolved: software node: Correct a OOB check in software_node_get_reference_args() software_node_get_reference_args() wants to get @index-th element, so the property value requires at least ...
CVE-2025-38337
- EPSS 0.16%
- Veröffentlicht 10.07.2025 08:15:08
- Zuletzt bearbeitet 16.12.2025 17:49:12
In the Linux kernel, the following vulnerability has been resolved: jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata() Since handle->h_transaction may be a NULL pointer, so we should change it to call is_handle_aborted(handle) ...
CVE-2025-38336
- EPSS 0.16%
- Veröffentlicht 10.07.2025 08:15:07
- Zuletzt bearbeitet 16.12.2025 17:50:25
In the Linux kernel, the following vulnerability has been resolved: ata: pata_via: Force PIO for ATAPI devices on VT6415/VT6330 The controller has a hardware bug that can hard hang the system when doing ATAPI DMAs without any trace of what happened...
CVE-2025-38332
- EPSS 0.17%
- Veröffentlicht 10.07.2025 08:15:05
- Zuletzt bearbeitet 19.12.2025 16:56:27
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Use memcpy() for BIOS version The strlcat() with FORTIFY support is triggering a panic because it thinks the target buffer will overflow although the correct target buf...
CVE-2025-38333
- EPSS 0.14%
- Veröffentlicht 10.07.2025 08:15:05
- Zuletzt bearbeitet 18.11.2025 12:53:08
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to bail out in get_new_segment() ------------[ cut here ]------------ WARNING: CPU: 3 PID: 579 at fs/f2fs/segment.c:2832 new_curseg+0x5e8/0x6dc pc : new_curseg+0x5e8/0x6d...
CVE-2025-38331
- EPSS 0.15%
- Veröffentlicht 10.07.2025 08:15:04
- Zuletzt bearbeitet 19.12.2025 16:56:03
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: cortina: Use TOE/TSO on all TCP It is desireable to push the hardware accelerator to also process non-segmented TCP frames: we pass the skb->len to the "TOE/TSO" off...
CVE-2025-38328
- EPSS 0.18%
- Veröffentlicht 10.07.2025 08:15:02
- Zuletzt bearbeitet 16.12.2025 17:56:47
In the Linux kernel, the following vulnerability has been resolved: jffs2: check jffs2_prealloc_raw_node_refs() result in few other places Fuzzing hit another invalid pointer dereference due to the lack of checking whether jffs2_prealloc_raw_node_r...
CVE-2025-38326
- EPSS 0.18%
- Veröffentlicht 10.07.2025 08:15:00
- Zuletzt bearbeitet 19.12.2025 16:55:45
In the Linux kernel, the following vulnerability has been resolved: aoe: clean device rq_list in aoedev_downdev() An aoe device's rq_list contains accepted block requests that are waiting to be transmitted to the aoe target. This queue was added as...
CVE-2025-38323
- EPSS 0.18%
- Veröffentlicht 10.07.2025 08:14:58
- Zuletzt bearbeitet 19.12.2025 16:49:58
In the Linux kernel, the following vulnerability has been resolved: net: atm: add lec_mutex syzbot found its way in net/atm/lec.c, and found an error path in lecd_attach() could leave a dangling pointer in dev_lec[]. Add a mutex to protect dev_lec...
CVE-2025-38324
- EPSS 0.18%
- Veröffentlicht 10.07.2025 08:14:58
- Zuletzt bearbeitet 19.12.2025 16:55:13
In the Linux kernel, the following vulnerability has been resolved: mpls: Use rcu_dereference_rtnl() in mpls_route_input_rcu(). As syzbot reported [0], mpls_route_input_rcu() can be called from mpls_getroute(), where is under RTNL. net->mpls.platf...