CVE-2025-71150
- EPSS 0.12%
- Veröffentlicht 23.01.2026 14:15:16
- Zuletzt bearbeitet 18.04.2026 09:16:13
In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix refcount leak when invalid session is found on session lookup When a session is found but its state is not SMB2_SESSION_VALID, It indicates that no valid session was fou...
CVE-2026-22976
- EPSS 0.12%
- Veröffentlicht 21.01.2026 06:57:23
- Zuletzt bearbeitet 02.06.2026 14:16:45
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset `qfq_class->leaf_qdisc->q.qlen > 0` does not imply that the class itself is active. Two qfq_cl...
CVE-2025-71136
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:03
- Zuletzt bearbeitet 25.03.2026 18:03:37
In the Linux kernel, the following vulnerability has been resolved: media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() It's possible for cp_read() and hdmi_read() to return -EIO. Those values are further used as ...
CVE-2025-71131
- EPSS 0.11%
- Veröffentlicht 14.01.2026 15:16:02
- Zuletzt bearbeitet 25.03.2026 19:56:42
In the Linux kernel, the following vulnerability has been resolved: crypto: seqiv - Do not use req->iv after crypto_aead_encrypt As soon as crypto_aead_encrypt is called, the underlying request may be freed by an asynchronous completion. Thus dere...
CVE-2025-71114
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 19:00:59
In the Linux kernel, the following vulnerability has been resolved: via_wdt: fix critical boot hang due to unnamed resource allocation The VIA watchdog driver uses allocate_resource() to reserve a MMIO region for the watchdog control register. Howe...
CVE-2025-71115
- EPSS 0.11%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 19:00:38
In the Linux kernel, the following vulnerability has been resolved: um: init cpu_tasks[] earlier This is currently done in uml_finishsetup(), but e.g. with KCOV enabled we'll crash because some init code can call into e.g. memparse(), which has cov...
CVE-2025-71116
- EPSS 0.13%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:59:53
In the Linux kernel, the following vulnerability has been resolved: libceph: make decode_pool() more resilient against corrupted osdmaps If the osdmap is (maliciously) corrupted such that the encoded length of ceph_pg_pool envelope is less than wha...
CVE-2025-71118
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:55:17
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Avoid walking the Namespace if start_node is NULL Although commit 0c9992315e73 ("ACPICA: Avoid walking the ACPI Namespace if it is not there") fixed the situation when both...
CVE-2025-71121
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:01
- Zuletzt bearbeitet 25.03.2026 18:37:36
In the Linux kernel, the following vulnerability has been resolved: parisc: Do not reprogram affinitiy on ASP chip The ASP chip is a very old variant of the GSP chip and is used e.g. in HP 730 workstations. When trying to reprogram the affinity it ...
CVE-2025-71111
- EPSS 0.09%
- Veröffentlicht 14.01.2026 15:16:00
- Zuletzt bearbeitet 25.03.2026 19:27:20
In the Linux kernel, the following vulnerability has been resolved: hwmon: (w83791d) Convert macros to functions to avoid TOCTOU The macro FAN_FROM_REG evaluates its arguments multiple times. When used in lockless contexts involving shared driver d...