CVE-2024-58100
- EPSS 0.15%
- Veröffentlicht 05.05.2025 14:53:33
- Zuletzt bearbeitet 10.11.2025 17:35:41
In the Linux kernel, the following vulnerability has been resolved: bpf: check changes_pkt_data property for extension programs When processing calls to global sub-programs, verifier decides whether to invalidate all packet pointers in current stat...
CVE-2024-58098
- EPSS 0.15%
- Veröffentlicht 05.05.2025 14:53:32
- Zuletzt bearbeitet 10.11.2025 17:35:57
In the Linux kernel, the following vulnerability has been resolved: bpf: track changes_pkt_data property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consid...
CVE-2025-37799
- EPSS 0.16%
- Veröffentlicht 03.05.2025 11:39:51
- Zuletzt bearbeitet 10.11.2025 17:36:25
In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp vmxnet3 driver's XDP handling is buggy for packet sizes using ring0 (that is, packet sizes between 128 - 3k bytes). We ...
CVE-2025-37798
- EPSS 0.18%
- Veröffentlicht 02.05.2025 14:16:02
- Zuletzt bearbeitet 06.11.2025 20:49:48
In the Linux kernel, the following vulnerability has been resolved: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() After making all ->qlen_notify() callbacks idempotent, now it is safe to remove the check of qlen!=0 from both fq...
CVE-2025-37797
- EPSS 0.17%
- Veröffentlicht 02.05.2025 14:16:01
- Zuletzt bearbeitet 06.11.2025 20:48:20
In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check...
CVE-2025-37796
- EPSS 0.17%
- Veröffentlicht 01.05.2025 13:07:27
- Zuletzt bearbeitet 03.11.2025 20:18:35
In the Linux kernel, the following vulnerability has been resolved: wifi: at76c50x: fix use after free access in at76_disconnect The memory pointed to by priv is freed at the end of at76_delete_device function (using ieee80211_free_hw). But the cod...
CVE-2025-37794
- EPSS 0.16%
- Veröffentlicht 01.05.2025 13:07:26
- Zuletzt bearbeitet 03.11.2025 20:18:35
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Purge vif txq in ieee80211_do_stop() After ieee80211_do_stop() SKB from vif's txq could still be processed. Indeed another concurrent vif schedule_and_wake_txq call...
CVE-2025-37793
- EPSS 0.15%
- Veröffentlicht 01.05.2025 13:07:25
- Zuletzt bearbeitet 31.10.2025 20:05:22
In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Fix null-ptr-deref in avs_component_probe() devm_kasprintf() returns NULL when memory allocation fails. Currently, avs_component_probe() does not check for this c...
CVE-2025-37792
- EPSS 0.16%
- Veröffentlicht 01.05.2025 13:07:24
- Zuletzt bearbeitet 04.11.2025 18:21:05
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btrtl: Prevent potential NULL dereference The btrtl_initialize() function checks that rtl_load_file() either had an error or it loaded a zero length file. However, if i...
CVE-2025-37790
- EPSS 0.16%
- Veröffentlicht 01.05.2025 13:07:23
- Zuletzt bearbeitet 06.11.2025 17:49:56
In the Linux kernel, the following vulnerability has been resolved: net: mctp: Set SOCK_RCU_FREE Bind lookup runs under RCU, so ensure that a socket doesn't go away in the middle of a lookup.