CVE-2025-21796
- EPSS 0.23%
- Veröffentlicht 27.02.2025 03:15:20
- Zuletzt bearbeitet 14.07.2026 13:17:23
In the Linux kernel, the following vulnerability has been resolved: nfsd: clear acl_access/acl_default after releasing them If getting acl_default fails, acl_access and acl_default will be released simultaneously. However, acl_access will still ret...
CVE-2025-21782
- EPSS 0.24%
- Veröffentlicht 27.02.2025 03:15:19
- Zuletzt bearbeitet 03.11.2025 21:19:09
In the Linux kernel, the following vulnerability has been resolved: orangefs: fix a oob in orangefs_debug_write I got a syzbot report: slab-out-of-bounds Read in orangefs_debug_write... several people suggested fixes, I tested Al Viro's suggestion ...
CVE-2025-21785
- EPSS 0.26%
- Veröffentlicht 27.02.2025 03:15:19
- Zuletzt bearbeitet 03.11.2025 21:19:09
In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array The loop that detects/populates cache information already has a bounds check on the array size but does not account f...
CVE-2025-21787
- EPSS 0.23%
- Veröffentlicht 27.02.2025 03:15:19
- Zuletzt bearbeitet 12.05.2026 13:16:36
In the Linux kernel, the following vulnerability has been resolved: team: better TEAM_OPTION_TYPE_STRING validation syzbot reported following splat [1] Make sure user-provided data contains one nul byte. [1] BUG: KMSAN: uninit-value in string_no...
CVE-2025-21790
- EPSS 0.21%
- Veröffentlicht 27.02.2025 03:15:19
- Zuletzt bearbeitet 03.11.2025 21:19:10
In the Linux kernel, the following vulnerability has been resolved: vxlan: check vxlan_vnigroup_init() return value vxlan_init() must check vxlan_vnigroup_init() success otherwise a crash happens later, spotted by syzbot. Oops: general protection ...
CVE-2025-21791
- EPSS 0.25%
- Veröffentlicht 27.02.2025 03:15:19
- Zuletzt bearbeitet 03.11.2025 21:19:10
In the Linux kernel, the following vulnerability has been resolved: vrf: use RCU protection in l3mdev_l3_out() l3mdev_l3_out() can be called without RCU being held: raw_sendmsg() ip_push_pending_frames() ip_send_skb() ip_local_out() __ip...
CVE-2025-21775
- EPSS 0.21%
- Veröffentlicht 27.02.2025 03:15:18
- Zuletzt bearbeitet 03.11.2025 20:17:17
In the Linux kernel, the following vulnerability has been resolved: can: ctucanfd: handle skb allocation failure If skb allocation fails, the pointer to struct can_frame is NULL. This is actually handled everywhere inside ctucan_err_interrupt() exc...
CVE-2025-21776
- EPSS 0.23%
- Veröffentlicht 27.02.2025 03:15:18
- Zuletzt bearbeitet 12.05.2026 13:16:36
In the Linux kernel, the following vulnerability has been resolved: USB: hub: Ignore non-compliant devices with too many configs or interfaces Robert Morris created a test program which can cause usb_hub_to_struct_hub() to dereference a NULL or ina...
CVE-2025-21779
- EPSS 0.22%
- Veröffentlicht 27.02.2025 03:15:18
- Zuletzt bearbeitet 03.11.2025 21:19:09
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't in-kernel Advertise support for Hyper-V's SEND_IPI and SEND_IPI_EX hypercalls if and only if the local API is emu...
CVE-2025-21780
- EPSS 0.25%
- Veröffentlicht 27.02.2025 03:15:18
- Zuletzt bearbeitet 14.07.2026 13:17:23
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() It malicious user provides a small pptable through sysfs and then a bigger pptable, it may cause buffer overflow ...