Canonical

Ubuntu 25.10

3177 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.19%
  • Veröffentlicht 15.10.2025 07:55:53
  • Zuletzt bearbeitet 15.04.2026 00:35:42

In the Linux kernel, the following vulnerability has been resolved: i40e: fix input validation logic for action_meta Fix condition to check 'greater or equal' to prevent OOB dereference.

  • EPSS 0.19%
  • Veröffentlicht 15.10.2025 07:55:52
  • Zuletzt bearbeitet 15.04.2026 00:35:42

In the Linux kernel, the following vulnerability has been resolved: i40e: add max boundary check for VF filters There is no check for max filters that VF can request. Add it.

  • EPSS 0.19%
  • Veröffentlicht 15.10.2025 07:55:52
  • Zuletzt bearbeitet 15.04.2026 00:35:42

In the Linux kernel, the following vulnerability has been resolved: i40e: fix validation of VF state in get resources VF state I40E_VF_STATE_ACTIVE is not the only state in which VF is actually active so it should not be used to determine if a VF i...

  • EPSS 0.16%
  • Veröffentlicht 15.10.2025 07:55:51
  • Zuletzt bearbeitet 26.02.2026 23:06:19

In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcon_do_set_font Fix integer overflow vulnerabilities in fbcon_do_set_font() where font size calculations could overflow when handling user-controll...

  • EPSS 0.1%
  • Veröffentlicht 15.10.2025 07:55:50
  • Zuletzt bearbeitet 26.02.2026 23:07:45

In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix race during abort for file descriptors fput() doesn't actually call file_operations release() synchronously, it puts the file on a work queue and it will be released e...

  • EPSS 0.17%
  • Veröffentlicht 13.10.2025 13:48:31
  • Zuletzt bearbeitet 26.02.2026 23:04:59

In the Linux kernel, the following vulnerability has been resolved: xfrm: xfrm_alloc_spi shouldn't use 0 as SPI x->id.spi == 0 means "no SPI assigned", but since commit 94f39804d891 ("xfrm: Duplicate SPI Handling"), we now create states and add the...

  • EPSS 0.21%
  • Veröffentlicht 07.10.2025 15:21:13
  • Zuletzt bearbeitet 26.02.2026 23:17:54

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential shift-out-of-bounds in brcmf_fw_alloc_request() This patch fixes a shift-out-of-bounds in brcmfmac that occurs in BIT(chiprev) when a 'chiprev' provid...

  • EPSS 0.15%
  • Veröffentlicht 07.10.2025 15:19:41
  • Zuletzt bearbeitet 03.02.2026 22:29:48

In the Linux kernel, the following vulnerability has been resolved: x86: fix clear_user_rep_good() exception handling annotation This code no longer exists in mainline, because it was removed in commit d2c95f9d6802 ("x86: don't use REP_GOOD or ERMS...

  • EPSS 0.15%
  • Veröffentlicht 18.09.2025 13:33:02
  • Zuletzt bearbeitet 14.01.2026 19:16:11

In the Linux kernel, the following vulnerability has been resolved: mm: /proc/pid/smaps_rollup: fix no vma's null-deref Commit 258f669e7e88 ("mm: /proc/pid/smaps_rollup: convert to single value seq_file") introduced a null-deref if there are no vma...

  • EPSS 0.2%
  • Veröffentlicht 18.09.2025 00:00:00
  • Zuletzt bearbeitet 15.04.2026 00:35:42

PureVPN client applications on Linux through September 2025 allow IPv6 traffic to leak outside the VPN tunnel upon network events such as Wi-Fi reconnect or system resume. In the CLI client, the VPN auto-reconnects and claims to be connected, but IPv...