- EPSS 0.17%
- Veröffentlicht 16.12.2025 15:06:05
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: libceph: replace BUG_ON with bounds check for map->max_osd OSD indexes come from untrusted network packets. Boundary checks are added to validate these against map->max_osd. [ idr...
- EPSS 0.17%
- Veröffentlicht 16.12.2025 15:06:04
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: udc: fix use-after-free in usb_gadget_state_work A race condition during gadget teardown can lead to a use-after-free in usb_gadget_state_work(), as reported by KASAN:...
- EPSS 0.16%
- Veröffentlicht 16.12.2025 14:47:06
- Zuletzt bearbeitet 14.07.2026 13:17:58
In the Linux kernel, the following vulnerability has been resolved: bfs: Reconstruct file type when loading from disk syzbot is reporting that S_IFMT bits of inode->i_mode can become bogus when the S_IFMT bits of the 32bits "mode" field loaded from...
- EPSS 0.18%
- Veröffentlicht 16.12.2025 14:47:05
- Zuletzt bearbeitet 14.07.2026 13:17:57
In the Linux kernel, the following vulnerability has been resolved: nvme: fix admin request_queue lifetime The namespaces can access the controller's admin request_queue, and stale references on the namespaces may exist after tearing down the contr...
- EPSS 0.18%
- Veröffentlicht 16.12.2025 14:45:06
- Zuletzt bearbeitet 14.07.2026 13:17:57
In the Linux kernel, the following vulnerability has been resolved: ext4: refresh inline data size before write operations The cached ei->i_inline_size can become stale between the initial size check and when ext4_update_inline_data()/ext4_create_i...
CVE-2025-68263
- EPSS 0.38%
- Veröffentlicht 16.12.2025 14:45:05
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipc_msg_send_request ipc_msg_send_request() waits for a generic netlink reply using an ipc_msg_table_entry on the stack. The generic netlink handl...
- EPSS 0.18%
- Veröffentlicht 16.12.2025 14:45:03
- Zuletzt bearbeitet 14.07.2026 13:17:57
In the Linux kernel, the following vulnerability has been resolved: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() Fix a race between inline data destruction and block mapping. The function ext4_destroy_inline_data_nolock() c...
- EPSS 0.16%
- Veröffentlicht 16.12.2025 14:45:01
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced When re-injecting a soft interrupt from an INT3, INT0, or (select) INTn instruction, discard the exception and r...
- EPSS 0.18%
- Veröffentlicht 16.12.2025 14:45:00
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: comedi: multiq3: sanitize config options in multiq3_attach() Syzbot identified an issue [1] in multiq3_attach() that induces a task timeout due to open() or COMEDI_DEVCONFIG ioctl ...
- EPSS 0.18%
- Veröffentlicht 16.12.2025 14:44:59
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: comedi: check device's attached status in compat ioctls Syzbot identified an issue [1] that crashes kernel, seemingly due to unexistent callback dev->get_valid_routes(). By all mea...