CVE-2025-39873
- EPSS 0.15%
- Veröffentlicht 23.09.2025 06:15:46
- Zuletzt bearbeitet 20.01.2026 20:33:41
In the Linux kernel, the following vulnerability has been resolved: can: xilinx_can: xcan_write_frame(): fix use-after-free of transmitted SKB can_put_echo_skb() takes ownership of the SKB and it may be freed during or after the call. However, xil...
CVE-2025-39866
- EPSS 0.29%
- Veröffentlicht 19.09.2025 15:26:35
- Zuletzt bearbeitet 14.07.2026 13:17:50
In the Linux kernel, the following vulnerability has been resolved: fs: writeback: fix use-after-free in __mark_inode_dirty() An use-after-free issue occurred when __mark_inode_dirty() get the bdi_writeback that was in the progress of switching. C...
CVE-2025-39865
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:34
- Zuletzt bearbeitet 12.05.2026 13:17:17
In the Linux kernel, the following vulnerability has been resolved: tee: fix NULL pointer dereference in tee_shm_put tee_shm_put have NULL pointer dereference: __optee_disable_shm_cache --> shm = reg_pair_to_ptr(...);//shm maybe return NULL ...
CVE-2025-39863
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:33
- Zuletzt bearbeitet 25.03.2026 11:16:12
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info work The brcmf_btcoex_detach() only shuts down the btcoex timer, if the flag timer_on is false. However, the ...
CVE-2025-39864
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:33
- Zuletzt bearbeitet 12.05.2026 13:17:16
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmp_bss() Following bss_free() quirk introduced in commit 776b3580178f ("cfg80211: track hidden SSID networks properly"), adjust cfg80211_upda...
CVE-2025-39860
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:30
- Zuletzt bearbeitet 12.05.2026 13:17:16
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen() syzbot reported the splat below without a repro. In the splat, a single thread calling bt_accept_dequeue() freed sk an...
CVE-2025-39859
- EPSS 0.14%
- Veröffentlicht 19.09.2025 15:26:29
- Zuletzt bearbeitet 14.01.2026 20:16:09
In the Linux kernel, the following vulnerability has been resolved: ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog The ptp_ocp_detach() only shuts down the watchdog timer if it is pending. However, if the timer handler is already run...
CVE-2025-39853
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:25
- Zuletzt bearbeitet 12.05.2026 13:17:16
In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty list_first_entry() never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to ...
CVE-2025-39851
- EPSS 0.15%
- Veröffentlicht 19.09.2025 15:26:23
- Zuletzt bearbeitet 14.01.2026 20:16:08
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix NPD when refreshing an FDB entry with a nexthop object VXLAN FDB entries can point to either a remote destination or an FDB nexthop group. The latter is usually used in ...
CVE-2025-39850
- EPSS 0.14%
- Veröffentlicht 19.09.2025 15:26:22
- Zuletzt bearbeitet 14.01.2026 20:16:07
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix NPD in {arp,neigh}_reduce() when using nexthop objects When the "proxy" option is enabled on a VXLAN device, the device will suppress ARP requests and IPv6 Neighbor Soli...