- EPSS 0.16%
- Veröffentlicht 04.12.2025 16:16:20
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Check the untrusted offset in FF-A memory share Verify the offset to prevent OOB access in the hypervisor FF-A buffer in case an untrusted large enough value [U32_MAX -...
- EPSS 0.21%
- Veröffentlicht 04.12.2025 16:16:19
- Zuletzt bearbeitet 02.06.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields The validation of the set(nsh(...)) action is completely wrong. It runs through the nsh_key_put_from_nlattr() ...
- EPSS 0.17%
- Veröffentlicht 04.12.2025 16:16:19
- Zuletzt bearbeitet 02.06.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix a race in mptcp_pm_del_add_timer() mptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, &entry->add_timer) while another might have free entry already, as reported b...
- EPSS 0.17%
- Veröffentlicht 04.12.2025 16:16:19
- Zuletzt bearbeitet 02.06.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race condition in mptcp_schedule_work() syzbot reported use-after-free in mptcp_schedule_work() [1] Issue here is that mptcp_schedule_work() schedules a work, then gets...
- EPSS 0.18%
- Veröffentlicht 04.12.2025 16:16:19
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Do not sleep in atomic context sg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may sleep. Hence, call sg_finish_rem_req() with interrupts enabled inste...
- EPSS 0.16%
- Veröffentlicht 04.12.2025 16:16:18
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix pgtable prealloc error path The following splat was reported: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010 Mem abort i...
- EPSS 0.2%
- Veröffentlicht 04.12.2025 16:16:18
- Zuletzt bearbeitet 02.06.2026 14:16:30
In the Linux kernel, the following vulnerability has been resolved: vsock: Ignore signal/timeout on connect() if already established During connect(), acting on a signal/timeout by disconnecting an already established socket leads to several issues...
CVE-2025-40251
- EPSS 0.13%
- Veröffentlicht 04.12.2025 16:16:18
- Zuletzt bearbeitet 02.06.2026 14:16:31
In the Linux kernel, the following vulnerability has been resolved: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy The function devl_rate_nodes_destroy is documented to "Unset parent for all rate objects". However, it was only calli...
- EPSS 0.18%
- Veröffentlicht 04.12.2025 16:16:18
- Zuletzt bearbeitet 02.06.2026 14:16:31
In the Linux kernel, the following vulnerability has been resolved: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() The loops in 'qede_tpa_cont()' and 'qede_tpa_end()', iterate over 'cqe->len_list[]' using o...
- EPSS 0.18%
- Veröffentlicht 04.12.2025 16:16:18
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: s390/ctcm: Fix double-kfree The function 'mpc_rcvd_sweep_req(mpcginfo)' is called conditionally from function 'ctcmpc_unpack_skb'. It frees passed mpcginfo. After that a call to fu...