CVE-2025-38203
- EPSS 0.15%
- Veröffentlicht 04.07.2025 13:37:23
- Zuletzt bearbeitet 18.12.2025 21:20:04
In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfs_ioc_trim [ Syzkaller Report ] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000087: 0000 [#1 KASAN: null-ptr-deref ...
CVE-2025-38200
- EPSS 0.16%
- Veröffentlicht 04.07.2025 13:37:22
- Zuletzt bearbeitet 18.12.2025 21:24:06
In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40e_clear_hw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid p...
CVE-2025-38201
- EPSS 0.19%
- Veröffentlicht 04.07.2025 13:37:22
- Zuletzt bearbeitet 14.07.2026 13:17:38
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX Otherwise, it is possible to hit WARN_ON_ONCE in __kvmalloc_node_noprof() when resizing hashtable because __GFP_...
CVE-2025-38199
- EPSS 0.13%
- Veröffentlicht 04.07.2025 13:37:21
- Zuletzt bearbeitet 18.11.2025 17:17:24
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix memory leak due to multiple rx_stats allocation rx_stats for each arsta is allocated when adding a station. arsta->rx_stats will be freed when a station is remove...
CVE-2025-38198
- EPSS 0.16%
- Veröffentlicht 04.07.2025 13:37:20
- Zuletzt bearbeitet 12.05.2026 13:16:44
In the Linux kernel, the following vulnerability has been resolved: fbcon: Make sure modelist not set on unregistered console It looks like attempting to write to the "store_modes" sysfs node will run afoul of unregistered consoles: UBSAN: array-i...
CVE-2025-38193
- EPSS 0.16%
- Veröffentlicht 04.07.2025 13:37:17
- Zuletzt bearbeitet 18.12.2025 21:25:10
In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: reject invalid perturb period Gerrard Tai reported that SFQ perturb_period has no range check yet, and this can be used to trigger a race condition fixed in a s...
CVE-2025-38194
- EPSS 0.18%
- Veröffentlicht 04.07.2025 13:37:17
- Zuletzt bearbeitet 18.12.2025 21:26:58
In the Linux kernel, the following vulnerability has been resolved: jffs2: check that raw node were preallocated before writing summary Syzkaller detected a kernel bug in jffs2_link_node_ref, caused by fault injection in jffs2_prealloc_raw_node_ref...
CVE-2025-38190
- EPSS 0.16%
- Veröffentlicht 04.07.2025 13:37:15
- Zuletzt bearbeitet 18.12.2025 17:24:15
In the Linux kernel, the following vulnerability has been resolved: atm: Revert atm_account_tx() if copy_from_iter_full() fails. In vcc_sendmsg(), we account skb->truesize to sk->sk_wmem_alloc by atm_account_tx(). It is expected to be reverted by ...
CVE-2025-38191
- EPSS 0.48%
- Veröffentlicht 04.07.2025 13:37:15
- Zuletzt bearbeitet 18.12.2025 17:24:30
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix null pointer dereference in destroy_previous_session If client set ->PreviousSessionId on kerberos session setup stage, NULL pointer dereference error will happen. Since...
CVE-2025-38189
- EPSS 0.15%
- Veröffentlicht 04.07.2025 13:37:14
- Zuletzt bearbeitet 19.11.2025 20:47:42
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Avoid NULL pointer dereference in `v3d_job_update_stats()` The following kernel Oops was recently reported by Mesa CI: [ 800.139824] Unable to handle kernel NULL pointer...