CVE-2025-21869
- EPSS 0.18%
- Veröffentlicht 27.03.2025 13:38:22
- Zuletzt bearbeitet 29.10.2025 21:08:13
In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Disable KASAN report during patching via temporary mm Erhard reports the following KASAN hit on Talos II (power9) with kernel 6.13: [ 12.028126] =========...
CVE-2025-21870
- EPSS 0.18%
- Veröffentlicht 27.03.2025 13:38:22
- Zuletzt bearbeitet 29.10.2025 21:07:58
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name (sname) as the ALH copier and in that case the copi...
CVE-2025-21868
- EPSS 0.18%
- Veröffentlicht 27.03.2025 13:38:21
- Zuletzt bearbeitet 24.11.2025 10:15:59
In the Linux kernel, the following vulnerability has been resolved: net: allow small head cache usage with large MAX_SKB_FRAGS values Sabrina reported the following splat: WARNING: CPU: 0 PID: 1 at net/core/dev.c:6935 netif_napi_add_weight_loc...
CVE-2025-21867
- EPSS 0.18%
- Veröffentlicht 27.03.2025 13:38:20
- Zuletzt bearbeitet 14.07.2026 13:17:26
In the Linux kernel, the following vulnerability has been resolved: bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type() KMSAN reported a use-after-free issue in eth_skb_pkt_type()[1]. The cause of the issue was that eth_skb_pkt_type() acc...
CVE-2025-2312
- EPSS 0.15%
- Veröffentlicht 25.03.2025 18:15:34
- Zuletzt bearbeitet 15.04.2026 00:35:42
A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data fro...
CVE-2025-0927
- EPSS 0.05%
- Veröffentlicht 23.03.2025 15:00:47
- Zuletzt bearbeitet 08.04.2025 08:15:14
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Filesystem bugs due to corrupt images are not considered a CVE for any filesystem that is only mountable by CAP_SYS_ADMIN in the initial user namespace. That ...
CVE-2025-21866
- EPSS 0.21%
- Veröffentlicht 12.03.2025 09:42:22
- Zuletzt bearbeitet 03.11.2025 20:17:23
In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC Erhard reported the following KASAN hit while booting his PowerMac G4 with a KASAN-enabled kerne...
CVE-2025-21864
- EPSS 0.2%
- Veröffentlicht 12.03.2025 09:42:21
- Zuletzt bearbeitet 14.07.2026 13:17:25
In the Linux kernel, the following vulnerability has been resolved: tcp: drop secpath at the same time as we currently drop dst Xiumei reported hitting the WARN in xfrm6_tunnel_net_exit while running tests that boil down to: - create a pair of net...
CVE-2025-21863
- EPSS 0.22%
- Veröffentlicht 12.03.2025 09:42:20
- Zuletzt bearbeitet 01.06.2026 17:16:33
In the Linux kernel, the following vulnerability has been resolved: io_uring: prevent opcode speculation sqe->opcode is used for different tables, make sure we santitise it against speculations.
CVE-2025-21861
- EPSS 0.2%
- Veröffentlicht 12.03.2025 09:42:19
- Zuletzt bearbeitet 14.07.2026 13:17:25
In the Linux kernel, the following vulnerability has been resolved: mm/migrate_device: don't add folio to be freed to LRU in migrate_device_finalize() If migration succeeded, we called folio_migrate_flags()->mem_cgroup_migrate() to migrate the memc...