CVE-2025-38481
- EPSS 0.16%
- Veröffentlicht 28.07.2025 11:21:46
- Zuletzt bearbeitet 07.01.2026 16:24:45
In the Linux kernel, the following vulnerability has been resolved: comedi: Fail COMEDI_INSNLIST ioctl if n_insns is too large The handling of the `COMEDI_INSNLIST` ioctl allocates a kernel buffer to hold the array of `struct comedi_insn`, getting ...
CVE-2025-38480
- EPSS 0.16%
- Veröffentlicht 28.07.2025 11:21:45
- Zuletzt bearbeitet 07.01.2026 16:24:39
In the Linux kernel, the following vulnerability has been resolved: comedi: Fix use of uninitialized data in insn_rw_emulate_bits() For Comedi `INSN_READ` and `INSN_WRITE` instructions on "digital" subdevices (subdevice types `COMEDI_SUBD_DI`, `COM...
CVE-2025-38478
- EPSS 0.16%
- Veröffentlicht 28.07.2025 11:21:44
- Zuletzt bearbeitet 23.12.2025 18:27:16
In the Linux kernel, the following vulnerability has been resolved: comedi: Fix initialization of data for instructions that write to subdevice Some Comedi subdevice instruction handlers are known to access instruction data elements beyond the firs...
CVE-2025-38477
- EPSS 0.12%
- Veröffentlicht 28.07.2025 11:21:38
- Zuletzt bearbeitet 12.05.2026 13:16:51
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix race condition on qfq_aggregate A race condition can occur when 'agg' is modified in qfq_change_agg (called during qfq_enqueue) while other threads access i...
CVE-2025-38474
- EPSS 0.16%
- Veröffentlicht 28.07.2025 11:21:35
- Zuletzt bearbeitet 22.12.2025 19:29:20
In the Linux kernel, the following vulnerability has been resolved: usb: net: sierra: check for no status endpoint The driver checks for having three endpoints and having bulk in and out endpoints, but not that the third endpoint is interrupt input...
CVE-2025-38473
- EPSS 0.16%
- Veröffentlicht 28.07.2025 11:21:34
- Zuletzt bearbeitet 22.12.2025 19:29:46
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix null-ptr-deref in l2cap_sock_resume_cb() syzbot reported null-ptr-deref in l2cap_sock_resume_cb(). [0] l2cap_sock_resume_cb() has a similar problem that was fixed b...
CVE-2025-38470
- EPSS 0.16%
- Veröffentlicht 28.07.2025 11:21:32
- Zuletzt bearbeitet 12.05.2026 13:16:50
In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime Assuming the "rx-vlan-filter" feature is enabled on a net device, the 8021q module will automatically ...
CVE-2025-38468
- EPSS 0.16%
- Veröffentlicht 28.07.2025 11:12:20
- Zuletzt bearbeitet 12.05.2026 13:16:50
In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtree htb_lookup_leaf has a BUG_ON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev ...
CVE-2025-38467
- EPSS 0.16%
- Veröffentlicht 25.07.2025 16:15:33
- Zuletzt bearbeitet 22.12.2025 19:36:36
In the Linux kernel, the following vulnerability has been resolved: drm/exynos: exynos7_drm_decon: add vblank check in IRQ handling If there's support for another console device (such as a TTY serial), the kernel occasionally panics during boot. Th...
CVE-2025-38464
- EPSS 0.17%
- Veröffentlicht 25.07.2025 16:15:32
- Zuletzt bearbeitet 22.12.2025 19:35:28
In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_conn_close(). syzbot reported a null-ptr-deref in tipc_conn_close() during netns dismantle. [0] tipc_topsrv_stop() iterates tipc_net(net)->topsrv-...