CVE-2025-71184
- EPSS 0.12%
- Veröffentlicht 31.01.2026 11:38:57
- Zuletzt bearbeitet 25.03.2026 18:55:11
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL dereference on root when tracing inode eviction When evicting an inode the first thing we do is to setup tracing for it, which implies fetching the root's id. But i...
CVE-2025-71183
- EPSS 0.16%
- Veröffentlicht 31.01.2026 11:38:56
- Zuletzt bearbeitet 25.03.2026 19:16:17
In the Linux kernel, the following vulnerability has been resolved: btrfs: always detect conflicting inodes when logging inode refs After rename exchanging (either with the rename exchange operation or regular renames in multiple non-atomic steps) ...
CVE-2025-71182
- EPSS 0.16%
- Veröffentlicht 31.01.2026 11:38:55
- Zuletzt bearbeitet 25.03.2026 19:41:58
In the Linux kernel, the following vulnerability has been resolved: can: j1939: make j1939_session_activate() fail if device is no longer registered syzbot is still reporting unregister_netdevice: waiting for vcan0 to become free. Usage count = ...
CVE-2025-71180
- EPSS 0.15%
- Veröffentlicht 31.01.2026 11:38:52
- Zuletzt bearbeitet 25.03.2026 19:45:29
In the Linux kernel, the following vulnerability has been resolved: counter: interrupt-cnt: Drop IRQF_NO_THREAD flag An IRQ handler can either be IRQF_NO_THREAD or acquire spinlock_t, as CONFIG_PROVE_RAW_LOCK_NESTING warns: ========================...
CVE-2026-23011
- EPSS 0.19%
- Veröffentlicht 25.01.2026 14:36:24
- Zuletzt bearbeitet 25.03.2026 19:51:11
In the Linux kernel, the following vulnerability has been resolved: ipv4: ip_gre: make ipgre_header() robust Analog to commit db5b4e39c4e6 ("ip6_gre: make ip6gre_header() robust") Over the years, syzbot found many ways to crash the kernel in ipgre...
CVE-2026-23010
- EPSS 0.18%
- Veröffentlicht 25.01.2026 14:36:23
- Zuletzt bearbeitet 27.04.2026 14:16:29
In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix use-after-free in inet6_addr_del(). syzbot reported use-after-free of inet6_ifaddr in inet6_addr_del(). [0] The cited commit accidentally moved ipv6_del_addr() for mngtm...
CVE-2026-23005
- EPSS 0.2%
- Veröffentlicht 25.01.2026 14:36:19
- Zuletzt bearbeitet 25.03.2026 19:22:06
In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1 When loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in response to a guest WRMSR, clear XFD-d...
CVE-2026-23006
- EPSS 0.19%
- Veröffentlicht 25.01.2026 14:36:19
- Zuletzt bearbeitet 25.03.2026 19:21:56
In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv320adcx140: fix null pointer The "snd_soc_component" in "adcx140_priv" was only used once but never set. It was only used for reaching "dev" which is already present in "a...
CVE-2026-23004
- EPSS 0.12%
- Veröffentlicht 25.01.2026 14:36:18
- Zuletzt bearbeitet 27.04.2026 14:16:29
In the Linux kernel, the following vulnerability has been resolved: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() syzbot was able to crash the kernel in rt6_uncached_list_flush_dev() in an interesting way [1] Crash happens i...
CVE-2026-23003
- EPSS 0.47%
- Veröffentlicht 25.01.2026 14:36:17
- Zuletzt bearbeitet 27.04.2026 14:16:29
In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: use skb_vlan_inet_prepare() in __ip6_tnl_rcv() Blamed commit did not take care of VLAN encapsulations as spotted by syzbot [1]. Use skb_vlan_inet_prepare() instead of ...