CVE-2025-37812
- EPSS 0.13%
- Veröffentlicht 08.05.2025 06:26:09
- Zuletzt bearbeitet 12.11.2025 21:39:11
In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: Fix deadlock when using NCM gadget The cdns3 driver has the same NCM deadlock as fixed in cdnsp by commit 58f2fcb3a845 ("usb: cdnsp: Fix deadlock issue during using NCM...
CVE-2025-37810
- EPSS 0.19%
- Veröffentlicht 08.05.2025 06:26:08
- Zuletzt bearbeitet 12.11.2025 21:40:46
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: check that event count does not exceed event buffer length The event count is read from register DWC3_GEVNTCOUNT. There is a check for the count being zero, but ...
CVE-2025-37807
- EPSS 0.16%
- Veröffentlicht 08.05.2025 06:26:06
- Zuletzt bearbeitet 10.11.2025 17:32:35
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix kmemleak warning for percpu hashmap Vlad Poenaru reported the following kmemleak issue: unreferenced object 0x606fd7c44ac8 (size 32): backtrace (crc 0): pcpu_...
CVE-2025-37808
- EPSS 0.18%
- Veröffentlicht 08.05.2025 06:26:06
- Zuletzt bearbeitet 10.11.2025 17:31:43
In the Linux kernel, the following vulnerability has been resolved: crypto: null - Use spin lock instead of mutex As the null algorithm may be freed in softirq context through af_alg, use spin locks instead of mutexes to protect the default null al...
CVE-2025-37803
- EPSS 0.19%
- Veröffentlicht 08.05.2025 06:26:03
- Zuletzt bearbeitet 03.11.2025 20:18:36
In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by casting size_limit_mb to u64 when calculate pglimit.
CVE-2025-37800
- EPSS 0.17%
- Veröffentlicht 08.05.2025 06:26:01
- Zuletzt bearbeitet 05.06.2025 14:32:50
In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential NULL pointer dereference in dev_uevent() If userspace reads "uevent" device attribute at the same time as another threads unbinds the device from its dri...
CVE-2020-36791
- EPSS 0.16%
- Veröffentlicht 07.05.2025 13:17:33
- Zuletzt bearbeitet 10.11.2025 17:34:55
In the Linux kernel, the following vulnerability has been resolved: net_sched: keep alloc_hash updated after hash allocation In commit 599be01ee567 ("net_sched: fix an OOB access in cls_tcindex") I moved cp->hash calculation before the first tcinde...
CVE-2024-58237
- EPSS 0.15%
- Veröffentlicht 05.05.2025 14:53:34
- Zuletzt bearbeitet 10.11.2025 17:35:27
In the Linux kernel, the following vulnerability has been resolved: bpf: consider that tail calls invalidate packet pointers Tail-called programs could execute any of the helpers that invalidate packet pointers. Hence, conservatively assume that ea...
CVE-2024-58100
- EPSS 0.15%
- Veröffentlicht 05.05.2025 14:53:33
- Zuletzt bearbeitet 10.11.2025 17:35:41
In the Linux kernel, the following vulnerability has been resolved: bpf: check changes_pkt_data property for extension programs When processing calls to global sub-programs, verifier decides whether to invalidate all packet pointers in current stat...
CVE-2024-58098
- EPSS 0.15%
- Veröffentlicht 05.05.2025 14:53:32
- Zuletzt bearbeitet 10.11.2025 17:35:57
In the Linux kernel, the following vulnerability has been resolved: bpf: track changes_pkt_data property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consid...