CVE-2025-38709
- EPSS 0.14%
- Veröffentlicht 04.09.2025 15:32:59
- Zuletzt bearbeitet 03.12.2025 20:00:20
In the Linux kernel, the following vulnerability has been resolved: loop: Avoid updating block size under exclusive owner Syzbot came up with a reproducer where a loop device block size is changed underneath a mounted filesystem. This causes a mism...
CVE-2025-38707
- EPSS 0.16%
- Veröffentlicht 04.09.2025 15:32:58
- Zuletzt bearbeitet 12.05.2026 13:17:00
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size.
CVE-2025-38706
- EPSS 0.18%
- Veröffentlicht 04.09.2025 15:32:57
- Zuletzt bearbeitet 12.05.2026 13:17:00
In the Linux kernel, the following vulnerability has been resolved: ASoC: core: Check for rtd == NULL in snd_soc_remove_pcm_runtime() snd_soc_remove_pcm_runtime() might be called with rtd == NULL which will leads to null pointer dereference. This w...
CVE-2025-38705
- EPSS 0.15%
- Veröffentlicht 04.09.2025 15:32:56
- Zuletzt bearbeitet 24.11.2025 19:43:18
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix null pointer access Writing a string without delimiters (' ', '\n', '\0') to the under gpu_od/fan_ctrl sysfs or pp_power_profile_mode for the CUSTOM profile will re...
CVE-2025-38704
- EPSS 0.16%
- Veröffentlicht 04.09.2025 15:32:55
- Zuletzt bearbeitet 14.07.2026 13:17:42
In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer access In the preparation stage of CPU online, if the corresponding the rdp's->nocb_cb_kthread does not exist, will be...
CVE-2025-38703
- EPSS 0.15%
- Veröffentlicht 04.09.2025 15:32:54
- Zuletzt bearbeitet 24.11.2025 19:45:00
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Make dma-fences compliant with the safe access rules Xe can free some of the data pointed to by the dma-fences it exports. Most notably the timeline name can get freed if u...
CVE-2025-38701
- EPSS 0.17%
- Veröffentlicht 04.09.2025 15:32:53
- Zuletzt bearbeitet 12.05.2026 13:16:59
In the Linux kernel, the following vulnerability has been resolved: ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr A syzbot fuzzed image triggered a BUG_ON in ext4_update_inline_data() when an inode had the INLINE_DATA_FL flag set but...
CVE-2025-38702
- EPSS 0.17%
- Veröffentlicht 04.09.2025 15:32:53
- Zuletzt bearbeitet 12.05.2026 13:17:00
In the Linux kernel, the following vulnerability has been resolved: fbdev: fix potential buffer overflow in do_register_framebuffer() The current implementation may lead to buffer overflow when: 1. Unregistration creates NULL gaps in registered_fb...
CVE-2025-38700
- EPSS 0.16%
- Veröffentlicht 04.09.2025 15:32:52
- Zuletzt bearbeitet 12.05.2026 13:16:59
In the Linux kernel, the following vulnerability has been resolved: scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated In case of an ib_fast_reg_mr allocation failure during iSER setup, the machine hits a panic because iscsi...
CVE-2025-38699
- EPSS 0.17%
- Veröffentlicht 04.09.2025 15:32:51
- Zuletzt bearbeitet 12.05.2026 13:16:59
In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Double-free fix When the bfad_im_probe() function fails during initialization, the memory pointed to by bfad->im is freed without setting bfad->im to NULL. Subsequently...