CVE-2025-21968
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix slab-use-after-free on hdcp_work [Why] A slab-use-after-free is reported when HDCP is destroyed but the property_validate_dwork queue is still running. [How] ...
CVE-2025-21969
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 01.10.2025 18:15:40
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd After the hci sync command releases l2cap_conn, the hci receive data work queue references the released l2cap_conn ...
CVE-2025-21970
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Bridge, fix the crash caused by LAG state check When removing LAG device from bridge, NETDEV_CHANGEUPPER event is triggered. Driver finds the lower devices (PFs) to flush...
CVE-2025-21971
- EPSS 0.19%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: net_sched: Prevent creation of classes with TC_H_ROOT The function qdisc_tree_reduce_backlog() uses TC_H_ROOT as a termination condition when traversing up the qdisc tree to update...
CVE-2025-21972
- EPSS 0.17%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 31.10.2025 19:16:02
In the Linux kernel, the following vulnerability has been resolved: net: mctp: unshare packets when reassembling Ensure that the frag_list used for reassembly isn't shared with other packets. This avoids incorrect reassembly when packets are cloned...
CVE-2025-21975
- EPSS 0.18%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 03.11.2025 20:17:33
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: handle errors in mlx5_chains_create_table() In mlx5_chains_create_table(), the return value of mlx5_get_fdb_sub_ns() and mlx5_get_flow_namespace() must be checked to prev...
CVE-2025-21976
- EPSS 0.17%
- Veröffentlicht 01.04.2025 16:15:28
- Zuletzt bearbeitet 30.10.2025 21:00:33
In the Linux kernel, the following vulnerability has been resolved: fbdev: hyperv_fb: Allow graceful removal of framebuffer When a Hyper-V framebuffer device is unbind, hyperv_fb driver tries to release the framebuffer forcefully. If this framebuff...
CVE-2025-21959
- EPSS 0.2%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 14.07.2026 13:17:27
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in insert_tree() Since commit b36e4523d4d5 ("netfilter: nf_conncount: fix garbage collection confirm race"), `cp...
CVE-2025-21960
- EPSS 0.19%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 03.11.2025 20:17:32
In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: do not update checksum in bnxt_xdp_build_skb() The bnxt_rx_pkt() updates ip_summed value at the end if checksum offload is enabled. When the XDP-MB program is attached a...
CVE-2025-21961
- EPSS 0.19%
- Veröffentlicht 01.04.2025 16:15:27
- Zuletzt bearbeitet 01.10.2025 18:15:40
In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix truesize for mb-xdp-pass case When mb-xdp is set and return is XDP_PASS, packet is converted from xdp_buff to sk_buff with xdp_update_skb_shared_info() in bnxt_xdp_b...