CVE-2025-21946
- EPSS 0.19%
- Veröffentlicht 01.04.2025 16:15:25
- Zuletzt bearbeitet 11.01.2026 17:15:52
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds in parse_sec_desc() If osidoffset, gsidoffset and dacloffset could be greater than smb_ntsd struct size. If it is smaller, It could cause slab-out-of-bound...
CVE-2025-21947
- EPSS 0.35%
- Veröffentlicht 01.04.2025 16:15:25
- Zuletzt bearbeitet 02.04.2026 09:16:17
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix type confusion via race condition when using ipc_msg_send_request req->handle is allocated using ksmbd_acquire_id(&ipc_ida), based on ida_alloc. req->handle from ksmbd_i...
CVE-2025-21948
- EPSS 0.2%
- Veröffentlicht 01.04.2025 16:15:25
- Zuletzt bearbeitet 03.11.2025 20:17:31
In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle Syzkaller reports a NULL pointer dereference issue in input_event(). BUG: KASAN: null-ptr-deref in instrument_atom...
CVE-2025-21925
- EPSS 0.2%
- Veröffentlicht 01.04.2025 16:15:23
- Zuletzt bearbeitet 14.07.2026 13:17:27
In the Linux kernel, the following vulnerability has been resolved: llc: do not use skb_get() before dev_queue_xmit() syzbot is able to crash hosts [1], using llc and devices not supporting IFF_TX_SKB_SHARING. In this case, e1000 driver calls eth_...
CVE-2025-21931
- EPSS 0.15%
- Veröffentlicht 01.04.2025 16:15:23
- Zuletzt bearbeitet 03.11.2025 20:17:29
In the Linux kernel, the following vulnerability has been resolved: hwpoison, memory_hotplug: lock folio before unmap hwpoisoned folio Commit b15c87263a69 ("hwpoison, memory_hotplug: allow hwpoisoned pages to be offlined) add page poison checks in ...
CVE-2025-21916
- EPSS 0.2%
- Veröffentlicht 01.04.2025 16:15:22
- Zuletzt bearbeitet 03.11.2025 20:17:27
In the Linux kernel, the following vulnerability has been resolved: usb: atm: cxacru: fix a flaw in existing endpoint checks Syzbot once again identified a flaw in usb endpoint checking, see [1]. This time the issue stems from a commit authored by ...
CVE-2025-21917
- EPSS 0.23%
- Veröffentlicht 01.04.2025 16:15:22
- Zuletzt bearbeitet 03.11.2025 20:17:27
In the Linux kernel, the following vulnerability has been resolved: usb: renesas_usbhs: Flush the notify_hotplug_work When performing continuous unbind/bind operations on the USB drivers available on the Renesas RZ/G2L SoC, a kernel crash with the ...
CVE-2025-21920
- EPSS 0.2%
- Veröffentlicht 01.04.2025 16:15:22
- Zuletzt bearbeitet 03.11.2025 20:17:28
In the Linux kernel, the following vulnerability has been resolved: vlan: enforce underlying device type Currently, VLAN devices can be created on top of non-ethernet devices. Besides the fact that it doesn't make much sense, this also causes a bu...
CVE-2025-21922
- EPSS 0.2%
- Veröffentlicht 01.04.2025 16:15:22
- Zuletzt bearbeitet 03.11.2025 20:17:28
In the Linux kernel, the following vulnerability has been resolved: ppp: Fix KMSAN uninit-value warning with bpf Syzbot caught an "KMSAN: uninit-value" warning [1], which is caused by the ppp driver not initializing a 2-byte header when using socke...
CVE-2025-21908
- EPSS 0.14%
- Veröffentlicht 01.04.2025 16:15:21
- Zuletzt bearbeitet 01.10.2025 20:18:32
In the Linux kernel, the following vulnerability has been resolved: NFS: fix nfs_release_folio() to not deadlock via kcompactd writeback Add PF_KCOMPACTD flag and current_is_kcompactd() helper to check for it so nfs_release_folio() can skip calling...