CVE-2025-39953
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:13
- Zuletzt bearbeitet 14.07.2026 13:17:51
In the Linux kernel, the following vulnerability has been resolved: cgroup: split cgroup_destroy_wq into 3 workqueues A hung task can occur during [1] LTP cgroup testing when repeatedly mounting/unmounting perf_event and net_prio controllers with s...
CVE-2025-39952
- EPSS 0.16%
- Veröffentlicht 04.10.2025 07:31:12
- Zuletzt bearbeitet 23.01.2026 20:02:35
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: avoid buffer overflow in WID string configuration Fix the following copy overflow warning identified by Smatch checker. drivers/net/wireless/microchip/wilc1000/wl...
CVE-2025-39951
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:11
- Zuletzt bearbeitet 23.01.2026 20:03:14
In the Linux kernel, the following vulnerability has been resolved: um: virtio_uml: Fix use-after-free after put_device in probe When register_virtio_device() fails in virtio_uml_probe(), the code sets vu_dev->registered = 1 even though the device ...
CVE-2025-39949
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:10
- Zuletzt bearbeitet 25.03.2026 00:36:02
In the Linux kernel, the following vulnerability has been resolved: qed: Don't collect too many protection override GRC elements In the protection override dump path, the firmware can return far too many GRC elements, resulting in attempting to wri...
CVE-2025-39947
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:08
- Zuletzt bearbeitet 06.04.2026 13:32:39
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Harden uplink netdev access against device unbind The function mlx5_uplink_netdev_get() gets the uplink netdevice pointer from mdev->mlx5e_res.uplink_netdev. However, th...
CVE-2025-39945
- EPSS 0.15%
- Veröffentlicht 04.10.2025 07:31:07
- Zuletzt bearbeitet 23.01.2026 20:56:32
In the Linux kernel, the following vulnerability has been resolved: cnic: Fix use-after-free bugs in cnic_delete_task The original code uses cancel_delayed_work() in cnic_cm_stop_bnx2x_hw(), which does not guarantee that the delayed work item 'dele...
CVE-2025-39943
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:05
- Zuletzt bearbeitet 06.04.2026 13:28:48
In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer If data_offset and data_length of smb_direct_data_transfer struct are invalid, out of bound...
CVE-2025-39942
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:04
- Zuletzt bearbeitet 25.03.2026 00:45:27
In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: verify remaining_data_length respects max_fragmented_recv_size This is inspired by the check for data_offset + data_length.
CVE-2025-39940
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:03
- Zuletzt bearbeitet 23.01.2026 20:35:34
In the Linux kernel, the following vulnerability has been resolved: dm-stripe: fix a possible integer overflow There's a possible integer overflow in stripe_io_hints if we have too large chunk size. Test if the overflow happened, and if it did, don...
CVE-2025-39937
- EPSS 0.14%
- Veröffentlicht 04.10.2025 07:31:00
- Zuletzt bearbeitet 25.03.2026 00:46:04
In the Linux kernel, the following vulnerability has been resolved: net: rfkill: gpio: Fix crash due to dereferencering uninitialized pointer Since commit 7d5e9737efda ("net: rfkill: gpio: get the name and type from device property") rfkill_find_ty...