CVE-2025-21971
- EPSS 0.19%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: net_sched: Prevent creation of classes with TC_H_ROOT The function qdisc_tree_reduce_backlog() uses TC_H_ROOT as a termination condition when traversing up the qdisc tree to update...
CVE-2025-21972
- EPSS 0.17%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 31.10.2025 19:16:02
In the Linux kernel, the following vulnerability has been resolved: net: mctp: unshare packets when reassembling Ensure that the frag_list used for reassembly isn't shared with other packets. This avoids incorrect reassembly when packets are cloned...
CVE-2025-21975
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: handle errors in mlx5_chains_create_table() In mlx5_chains_create_table(), the return value of mlx5_get_fdb_sub_ns() and mlx5_get_flow_namespace() must be checked to prev...
CVE-2025-21976
- EPSS 0.17%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 30.10.2025 21:00:33
In the Linux kernel, the following vulnerability has been resolved: fbdev: hyperv_fb: Allow graceful removal of framebuffer When a Hyper-V framebuffer device is unbind, hyperv_fb driver tries to release the framebuffer forcefully. If this framebuff...
CVE-2025-21959
- EPSS 0.2%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 14.07.2026 13:17:27
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in insert_tree() Since commit b36e4523d4d5 ("netfilter: nf_conncount: fix garbage collection confirm race"), `cp...
CVE-2025-21962
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 03.11.2025 20:17:32
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option User-provided mount parameter closetimeo of type u32 is intended to have an upper limit, but before it is valida...
CVE-2025-21963
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option User-provided mount parameter acdirmax of type u32 is intended to have an upper limit, but before it is validated,...
CVE-2025-21964
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acregmax mount option User-provided mount parameter acregmax of type u32 is intended to have an upper limit, but before it is validated,...
CVE-2025-21967
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 16.04.2025 14:15:24
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbd_free_work_struct ->interim_entry of ksmbd_work could be deleted after oplock is freed. We don't need to manage it with linked list. The interim r...
CVE-2025-21950
- EPSS 0.19%
- Veröffentlicht 01.04.2025 16:15:26
- Zuletzt bearbeitet 22.01.2026 20:57:23
In the Linux kernel, the following vulnerability has been resolved: drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmd_ioctl In the "pmcmd_ioctl" function, three memory objects allocated by kmalloc are initialized by "hcall_get_cpu_s...