CVE-2025-38190
- EPSS 0.16%
- Veröffentlicht 04.07.2025 13:37:15
- Zuletzt bearbeitet 18.12.2025 17:24:15
In the Linux kernel, the following vulnerability has been resolved: atm: Revert atm_account_tx() if copy_from_iter_full() fails. In vcc_sendmsg(), we account skb->truesize to sk->sk_wmem_alloc by atm_account_tx(). It is expected to be reverted by ...
CVE-2025-38184
- EPSS 0.16%
- Veröffentlicht 04.07.2025 13:37:11
- Zuletzt bearbeitet 18.12.2025 16:53:01
In the Linux kernel, the following vulnerability has been resolved: tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer The reproduction steps: 1. create a tun interface 2. enable l2 bearer 3. TIPC_NL_UDP_GET_REMOTEIP with media na...
CVE-2025-38185
- EPSS 0.16%
- Veröffentlicht 04.07.2025 13:37:11
- Zuletzt bearbeitet 18.12.2025 16:53:27
In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Free invalid length skb in atmtcp_c_send(). syzbot reported the splat below. [0] vcc_sendmsg() copies data passed from userspace to skb and passes it to vcc->dev->ops...
CVE-2025-38180
- EPSS 0.17%
- Veröffentlicht 04.07.2025 13:37:08
- Zuletzt bearbeitet 18.12.2025 15:36:58
In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure safety against dev_lec[] changes. It appears it had dev_put() calls without prior dev_hold(), leading to imb...
CVE-2025-38181
- EPSS 0.17%
- Veröffentlicht 04.07.2025 13:37:08
- Zuletzt bearbeitet 18.12.2025 16:49:32
In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in calipso_req_{set,del}attr(). syzkaller reported a null-ptr-deref in sock_omalloc() while allocating a CALIPSO option. [0] The NULL is of struct soc...
CVE-2025-38177
- EPSS 0.15%
- Veröffentlicht 04.07.2025 12:47:09
- Zuletzt bearbeitet 18.12.2025 16:48:54
In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: make hfsc_qlen_notify() idempotent hfsc_qlen_notify() is not idempotent either and not friendly to its callers, like fq_codel_dequeue(). Let's make it idempotent to ease ...
CVE-2025-38174
- EPSS 0.15%
- Veröffentlicht 04.07.2025 10:39:55
- Zuletzt bearbeitet 18.12.2025 16:46:25
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Do not double dequeue a configuration request Some of our devices crash in tb_cfg_request_dequeue(): general protection fault, probably for non-canonical address 0xd...
CVE-2025-38173
- EPSS 0.15%
- Veröffentlicht 03.07.2025 08:36:10
- Zuletzt bearbeitet 18.12.2025 20:53:34
In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/cesa - Handle zero-length skcipher requests Do not access random memory for zero-length skcipher requests. Just return 0.
CVE-2025-38166
- EPSS 0.15%
- Veröffentlicht 03.07.2025 08:36:06
- Zuletzt bearbeitet 18.12.2025 20:51:59
In the Linux kernel, the following vulnerability has been resolved: bpf: fix ktls panic with sockmap [ 2172.936997] ------------[ cut here ]------------ [ 2172.936999] kernel BUG at lib/iov_iter.c:629! ...... [ 2172.944996] PKRU: 55555554 [ 2172.94...
CVE-2025-38163
- EPSS 0.15%
- Veröffentlicht 03.07.2025 08:36:04
- Zuletzt bearbeitet 18.12.2025 17:32:07
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on sbi->total_valid_block_count syzbot reported a f2fs bug as below: ------------[ cut here ]------------ kernel BUG at fs/f2fs/f2fs.h:2521! RIP: 0010...