CVE-2025-38693
- EPSS 0.16%
- Veröffentlicht 04.09.2025 15:32:46
- Zuletzt bearbeitet 12.05.2026 13:16:55
In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: w7090p: fix null-ptr-deref in w7090p_tuner_write_serpar and w7090p_tuner_read_serpar In w7090p_tuner_write_serpar, msg is controlled by user. When msg[0].buf ...
CVE-2025-38691
- EPSS 0.17%
- Veröffentlicht 04.09.2025 15:32:45
- Zuletzt bearbeitet 12.05.2026 13:16:55
In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function ext_tree_prepare_commit() reallocates a larger buffer to re...
CVE-2025-38689
- EPSS 0.13%
- Veröffentlicht 04.09.2025 15:32:43
- Zuletzt bearbeitet 24.11.2025 19:47:21
In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Fix NULL dereference in avx512_status() Problem ------- With CONFIG_X86_DEBUG_FPU enabled, reading /proc/[kthread]/arch_status causes a warning and a NULL pointer derefere...
CVE-2025-38687
- EPSS 0.11%
- Veröffentlicht 04.09.2025 15:32:41
- Zuletzt bearbeitet 12.05.2026 13:16:55
In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even tho...
CVE-2025-38685
- EPSS 0.16%
- Veröffentlicht 04.09.2025 15:32:39
- Zuletzt bearbeitet 12.05.2026 13:16:55
In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit This issue triggers when a userspace program does an ioctl FBIOPUT_CON2FBMAP by passing console number and frame buffer num...
CVE-2025-38684
- EPSS 0.16%
- Veröffentlicht 04.09.2025 15:32:38
- Zuletzt bearbeitet 12.05.2026 13:16:54
In the Linux kernel, the following vulnerability has been resolved: net/sched: ets: use old 'nbands' while purging unused classes Shuang reported sch_ets test-case [1] crashing in ets_class_qlen_notify() after recent changes from Lion [2]. The prob...
CVE-2025-38679
- EPSS 0.15%
- Veröffentlicht 04.09.2025 15:32:35
- Zuletzt bearbeitet 12.05.2026 13:16:54
In the Linux kernel, the following vulnerability has been resolved: media: venus: Fix OOB read due to missing payload bound check Currently, The event_seq_changed() handler processes a variable number of properties sent by the firmware. The number ...
CVE-2025-38680
- EPSS 0.16%
- Veröffentlicht 04.09.2025 15:32:35
- Zuletzt bearbeitet 12.05.2026 13:16:54
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() The buffer length check before calling uvc_parse_format() only ensured that the buffer has at least 3 bytes (bu...
CVE-2025-38677
- EPSS 0.15%
- Veröffentlicht 30.08.2025 09:19:02
- Zuletzt bearbeitet 12.05.2026 13:16:53
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-boundary access in dnode page As Jiaming Zhang reported: <TASK> __dump_stack lib/dump_stack.c:94 [inline] dump_stack_lvl+0x1c1/0x2a0 lib/dump_stack.c:...
CVE-2025-38674
- EPSS 0.12%
- Veröffentlicht 22.08.2025 16:03:04
- Zuletzt bearbeitet 25.11.2025 22:04:20
In the Linux kernel, the following vulnerability has been resolved: Revert "drm/prime: Use dma_buf from GEM object instance" This reverts commit f83a9b8c7fd0557b0c50784bfdc1bbe9140c9bf8. The dma_buf field in struct drm_gem_object is not stable ove...