CVE-2025-37911
- EPSS 0.16%
- Veröffentlicht 20.05.2025 15:21:43
- Zuletzt bearbeitet 17.11.2025 14:50:40
In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix out-of-bound memcpy() during ethtool -w When retrieving the FW coredump using ethtool, it can sometimes cause memory corruption: BUG: KFENCE: memory corruption in __b...
CVE-2025-37909
- EPSS 0.17%
- Veröffentlicht 20.05.2025 15:21:41
- Zuletzt bearbeitet 14.07.2026 13:17:34
In the Linux kernel, the following vulnerability has been resolved: net: lan743x: Fix memleak issue when GSO enabled Always map the `skb` to the LS descriptor. Previously skb was mapped to EXT descriptor when the number of fragments is zero with GS...
CVE-2025-37903
- EPSS 0.17%
- Veröffentlicht 20.05.2025 15:21:37
- Zuletzt bearbeitet 17.11.2025 18:08:45
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix slab-use-after-free in hdcp The HDCP code in amdgpu_dm_hdcp.c copies pointers to amdgpu_dm_connector objects without incrementing the kref reference counts. Wh...
CVE-2025-37892
- EPSS 0.16%
- Veröffentlicht 20.05.2025 11:15:48
- Zuletzt bearbeitet 12.11.2025 20:35:43
In the Linux kernel, the following vulnerability has been resolved: mtd: inftlcore: Add error check for inftl_read_oob() In INFTL_findwriteunit(), the return value of inftl_read_oob() need to be checked. A proper implementation can be found in INFT...
CVE-2025-37890
- EPSS 0.16%
- Veröffentlicht 16.05.2025 13:01:12
- Zuletzt bearbeitet 17.11.2025 17:11:57
In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc As described in Gerrard's report [1], we have a UAF case when an hfsc class has a netem child qdisc. The...
CVE-2023-53146
- EPSS 0.16%
- Veröffentlicht 14.05.2025 12:43:59
- Zuletzt bearbeitet 12.11.2025 20:37:33
In the Linux kernel, the following vulnerability has been resolved: media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() In dw2102_i2c_transfer, msg is controlled by user. When msg[i].buf is null and msg[i].len is zero, former checks on msg[i...
CVE-2024-28956
- EPSS 0.37%
- Veröffentlicht 13.05.2025 21:15:59
- Zuletzt bearbeitet 14.07.2026 13:17:07
Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2023-53145
- EPSS 0.16%
- Veröffentlicht 10.05.2025 14:19:14
- Zuletzt bearbeitet 12.11.2025 20:42:21
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition In btsdio_probe, the data->work is bound with btsdio_work. It will be started in btsdio_send_frame....
CVE-2025-37885
- EPSS 0.26%
- Veröffentlicht 09.05.2025 06:45:48
- Zuletzt bearbeitet 12.11.2025 19:36:29
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reset IRTE to host control if *new* route isn't postable Restore an IRTE back to host control (remapped or posted MSI mode) if the *new* GSI route prevents posting the IR...
CVE-2025-37884
- EPSS 0.17%
- Veröffentlicht 09.05.2025 06:45:47
- Zuletzt bearbeitet 02.01.2026 16:15:54
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock between rcu_tasks_trace and event_mutex. Fix the following deadlock: CPU A _free_event() perf_kprobe_destroy() mutex_lock(&event_mutex) perf_trace_eve...