CVE-2025-21862
- EPSS 0.22%
- Veröffentlicht 12.03.2025 09:42:19
- Zuletzt bearbeitet 12.05.2026 13:16:39
In the Linux kernel, the following vulnerability has been resolved: drop_monitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU#1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 0000...
CVE-2025-21859
- EPSS 0.16%
- Veröffentlicht 12.03.2025 09:42:12
- Zuletzt bearbeitet 12.05.2026 13:16:38
In the Linux kernel, the following vulnerability has been resolved: USB: gadget: f_midi: f_midi_complete to call queue_work When using USB MIDI, a lock is attempted to be acquired twice through a re-entrant call to f_midi_transmit, causing a deadlo...
CVE-2025-21858
- EPSS 0.23%
- Veröffentlicht 12.03.2025 09:42:11
- Zuletzt bearbeitet 12.05.2026 13:16:38
In the Linux kernel, the following vulnerability has been resolved: geneve: Fix use-after-free in geneve_find_dev(). syzkaller reported a use-after-free in geneve_find_dev() [0] without repro. geneve_configure() links struct geneve_dev.next to net...
CVE-2025-21857
- EPSS 0.2%
- Veröffentlicht 12.03.2025 09:42:10
- Zuletzt bearbeitet 01.10.2025 20:18:29
In the Linux kernel, the following vulnerability has been resolved: net/sched: cls_api: fix error handling causing NULL dereference tcf_exts_miss_cookie_base_alloc() calls xa_alloc_cyclic() which can return 1 if the allocation succeeded after wrapp...
CVE-2025-21855
- EPSS 0.21%
- Veröffentlicht 12.03.2025 09:42:09
- Zuletzt bearbeitet 03.11.2025 20:17:22
In the Linux kernel, the following vulnerability has been resolved: ibmvnic: Don't reference skb after sending to VIOS Previously, after successfully flushing the xmit buffer to VIOS, the tx_bytes stat was incremented by the length of the skb. It ...
CVE-2025-21856
- EPSS 0.21%
- Veröffentlicht 12.03.2025 09:42:09
- Zuletzt bearbeitet 01.10.2025 20:18:29
In the Linux kernel, the following vulnerability has been resolved: s390/ism: add release function for struct device According to device_release() in /drivers/base/core.c, a device without a release function is a broken device and must be fixed. T...
CVE-2025-21854
- EPSS 0.19%
- Veröffentlicht 12.03.2025 09:42:08
- Zuletzt bearbeitet 01.10.2025 20:18:29
In the Linux kernel, the following vulnerability has been resolved: sockmap, vsock: For connectible sockets allow only connected sockmap expects all vsocks to have a transport assigned, which is expressed in vsock_proto::psock_update_sk_prot(). How...
CVE-2025-21853
- EPSS 0.21%
- Veröffentlicht 12.03.2025 09:42:07
- Zuletzt bearbeitet 14.07.2026 13:17:24
In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freeze_mutex during mmap operation We use map->freeze_mutex to prevent races between map_freeze() and memory mapping BPF map contents with writable permissions. ...
CVE-2025-21848
- EPSS 0.21%
- Veröffentlicht 12.03.2025 09:42:04
- Zuletzt bearbeitet 12.05.2026 13:16:38
In the Linux kernel, the following vulnerability has been resolved: nfp: bpf: Add check for nfp_app_ctrl_msg_alloc() Add check for the return value of nfp_app_ctrl_msg_alloc() in nfp_bpf_cmsg_alloc() to prevent null pointer dereference.
CVE-2025-21847
- EPSS 0.2%
- Veröffentlicht 12.03.2025 09:42:03
- Zuletzt bearbeitet 01.06.2026 17:16:33
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data() The nullity of sps->cstream should be checked similarly as it is done in sof_set_stream_data_offset() functio...