kernel-livepatch-SLE15-SP6_Update_11 (SUSE:Linux Enterprise Live Patching 15 SP6) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 15 SP6 package kernel-livepatch-SLE15-SP6_Update_11, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2026-31402 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache The NFSv4.0 replay…
CVE-2026-43503 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers…
CVE-2025-21915 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cdx: Fix possible UAF error in driver_override_show() Fixed a possible…
CVE-2026-23278 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pending catchall elements During…
CVE-2026-23209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix error recovery in macvlan_common_newlink() valis provided…
CVE-2025-21863 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: prevent opcode speculation sqe->opcode is used for different…
CVE-2025-21867 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type() KMSAN…
CVE-2026-23111 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask check in…
CVE-2025-21729 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion The…
CVE-2025-21966 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm-flakey: Fix memory corruption in optional corrupt_bio_byte feature…
CVE-2025-21968 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix slab-use-after-free on hdcp_work [Why] A…
CVE-2026-23074 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be used as root qdisc Design…
CVE-2025-21969 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd After…
CVE-2026-31694 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuse_add_dirent_to_cache()…
CVE-2025-21914 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: slimbus: messaging: Free transaction ID in delayed interrupt scenario…
CVE-2025-21923 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: hid-steam: Fix use-after-free when detaching device When a…
CVE-2025-22020 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: memstick: rtsx_usb_ms: Fix slab-use-after-free in…
CVE-2025-37797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class handling This patch…
CVE-2025-37798 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()…
CVE-2025-21812 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ax25: rcu protect dev->ax25_ptr syzbot found a lockdep issue [1]. We…
CVE-2025-38000 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()…
CVE-2026-46323 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skb_gro_receive() can currently copy…
CVE-2025-38079 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is…
CVE-2025-38087 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: fix use-after-free in taprio_dev_notifier Since taprio’s…
CVE-2025-38109 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF…
CVE-2025-38206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayed_free The double free could happen in…
CVE-2025-38212 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it…
CVE-2025-38396 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass…
CVE-2025-38471 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2024-53139 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sctp: fix possible UAF in sctp_v6_available() A lockdep report [1] with…
CVE-2025-21702 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pfifo_tail_enqueue: Drop new packet when sch->limit == 0 Expected…
CVE-2025-38500 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collect_md xfrm…
CVE-2025-38555 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget : fix use-after-free in composite_dev_cleanup() 1. In func…
CVE-2024-58093 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state exit during switch upstream function removal…
CVE-2025-21887 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up…
CVE-2025-22088 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/erdma: Prevent use-after-free in erdma_accept_newconn() After the…
CVE-2025-21979 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel wiphy_work before freeing wiphy A wiphy_work can…
CVE-2025-21927 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()…
CVE-2025-22097 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the…
CVE-2025-21928 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() The…
CVE-2025-21991 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA…
CVE-2026-22999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: do not free existing class in qfq_change_class()…
CVE-2024-57998 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: OPP: add index check to assert to avoid buffer overflow in _read_freq()…
CVE-2025-21934 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rapidio: fix an API misues when rio_add_net() fails rio_add_net() calls…
CVE-2025-21999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: proc: fix UAF in proc_get_inode() Fix race between rmmod and…
CVE-2026-31504 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() via NETDEV_UP race…
CVE-2025-23133 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: update channel list in reg notifier instead reg worker…
CVE-2024-27018 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: br_netfilter: skip conntrack input hook for promisc packets…
CVE-2025-22004 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lec_send() The ->send() operation frees…
CVE-2025-37752 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: move the limit validation It is not sufficient to…
CVE-2024-50083 — CVSS 7.5 (high): In the Linux kernel, the following vulnerability has been resolved: tcp: fix mptcp DSS corruption due to large pmtu xmit Syzkaller was able…
CVE-2025-38566 — CVSS 7.5 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered…
CVE-2024-46865 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There…
CVE-2023-53034 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans…
CVE-2025-38110 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access…
CVE-2025-21950 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmd_ioctl…
CVE-2025-22104 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ibmvnic: Use kernel helpers for hex dumps Previously, when the driver…
CVE-2025-21985 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bound accesses [WHAT & HOW]…
CVE-2025-21905 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: limit printed string from FW file There's no guarantee…
CVE-2025-22107 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: fix kasan out-of-bounds warning in…
CVE-2025-22121 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix out-of-bound read in ext4_xattr_inode_dec_ref_all() There's…
CVE-2025-38616 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that…
CVE-2025-21993 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in…
CVE-2025-37785 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix OOB read when checking dotdot dir Mounting a corrupted…
CVE-2025-22036 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: exfat: fix random stack corruption after get_block When get_block is…
CVE-2025-2312 — CVSS 5.9 (medium): A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an…
CVE-2024-28956 — CVSS 5.6 (medium): Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow…
CVE-2025-21970 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Bridge, fix the crash caused by LAG state check When removing…
CVE-2025-21971 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: Prevent creation of classes with TC_H_ROOT The function…
CVE-2025-21972 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: mctp: unshare packets when reassembling Ensure that the frag_list…
CVE-2025-21975 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: handle errors in mlx5_chains_create_table() In…
CVE-2025-21978 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/hyperv: Fix address space leak when Hyper-V DRM device is removed…
CVE-2025-21980 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sched: address a potential NULL pointer dereference in the GRED…
CVE-2025-21981 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ice: fix memory leak in aRFS after reset Fix aRFS (accelerated Receive…
CVE-2025-21992 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: ignore non-functional sensor in HP 5MP Camera The HP 5MP Camera…
CVE-2025-21995 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/sched: Fix fence reference count leak The last_scheduled fence…
CVE-2025-21996 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse() On…
CVE-2025-22001 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix integer overflow in qaic_validate_req() These are u64…
CVE-2025-22003 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix out of bound read in strscpy() source Commit…
CVE-2025-22007 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix error code in chan_alloc_skb_cb() The…
CVE-2025-22008 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: regulator: check that dummy regulator has been probed before using it…
CVE-2025-22009 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: regulator: dummy: force synchronous probing Sometimes I get a NULL…
CVE-2025-22010 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix soft lockup during bt pages loop Driver runs a for-loop…
CVE-2025-22013 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There…
CVE-2025-22014 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pdr: Fix the potential deadlock When some client process A…
CVE-2025-22015 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm/migrate: fix shmem xarray update during migration A shmem folio can…
CVE-2025-22016 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dpll: fix xa_alloc_cyclic() error handling In case of returning 1 from…
CVE-2025-22017 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: devlink: fix xa_alloc_cyclic() error handling In case of returning 1…
CVE-2025-22018 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: atm: Fix NULL pointer dereference When MPOA_cache_impos_rcvd() receives…
CVE-2025-22025 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nfsd: put dl_stid if fail to queue dl_recall Before calling…
CVE-2025-22033 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in do_compat_alignment_fixup()…
CVE-2025-22045 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/mm: Fix flush_tlb_range() when used for zapping normal PMDs On the…
CVE-2025-22053 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ibmveth: make veth_pool_store stop hanging v2: - Created a single…
CVE-2025-22055 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: fix geneve_opt length integer overflow struct geneve_opt uses 5…
CVE-2025-22058 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP…
CVE-2025-22062 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sctp: add mutual exclusion in proc_sctp_do_udp_port() We must serialize…
CVE-2025-22064 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: don't unregister hook when table is dormant When…
CVE-2025-22065 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: idpf: fix adapter NULL pointer dereference on reboot With SRIOV…
CVE-2025-22075 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit…
CVE-2025-22080 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Prevent integer overflow in hdr_first_de() The "de_off" and…
CVE-2025-22086 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow When cur_qp isn't…
CVE-2025-22090 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/mm/pat: Fix VM_PAT handling when fork() fails in copy_page_range()…
CVE-2025-22093 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid NPD when ASIC does not support DMUB…
CVE-2025-22102 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix kernel panic during FW release This fixes a…
CVE-2025-22105 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bonding: check xdp prog when set bond mode Following operations can…
CVE-2025-22106 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vmxnet3: unregister xdp rxq info in the reset path vmxnet3 does not…
CVE-2025-22108 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Mask the bd_cnt field in the TX BD properly The bd_cnt field…
CVE-2025-22109 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ax25: Remove broken autobind Binding AX25 socket by using the autobind…
CVE-2025-22116 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: idpf: check error for register_netdev() on init Current init logic…
CVE-2025-22128 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Clear affinity hint before calling ath12k_pci_free_irq()…
CVE-2025-23129 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Clear affinity hint before calling ath11k_pcic_free_irq()…
CVE-2025-23131 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dlm: prevent NPD when writing a positive value to event_done do_uevent…
CVE-2025-23136 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: thermal: int340x: Add NULL check for adev Not all devices have an ACPI…
CVE-2025-23138 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: watch_queue: fix pipe accounting mismatch Currently…
CVE-2025-23145 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer in can_accept_new_subflow When testing valkey…
CVE-2025-37799 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp vmxnet3…
CVE-2025-37860 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sfc: fix NULL dereferences in ef100_process_design_param() Since cited…
CVE-2025-38001 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice…
CVE-2025-38177 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: make hfsc_qlen_notify() idempotent hfsc_qlen_notify() is not…
CVE-2025-38181 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in calipso_req_{set,del}attr(). syzkaller…
CVE-2025-38495 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved…
CVE-2025-38498 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: do_change_type(): refuse to operate on unmounted/not ours mounts Ensure…
CVE-2025-38499 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the…
CVE-2025-22044 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: acpi: nfit: fix narrowing conversion in acpi_nfit_ctl Syzkaller has…
CVE-2024-35840 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect()…
CVE-2024-46763 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in…
CVE-2024-50038 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: avoid NFPROTO_UNSPEC where needed syzbot managed to…
CVE-2024-50162 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: devmap: provide rxq after redirect rxq contains a pointer to the…
CVE-2024-50163 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Make sure internal and UAPI bpf_redirect flags don't overlap The…
CVE-2024-56641 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/smc: initialize close_work early to avoid warning We encountered a…
CVE-2024-56702 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Mark raw_tp arguments with PTR_MAYBE_NULL Arguments to a raw…
CVE-2024-57924 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs: relax assertions on failure to encode file handles Encoding file…
CVE-2024-58001 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ocfs2: handle a symlink read error correctly Patch series "Convert…
CVE-2024-58018 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nvkm: correctly calculate the available space of the GSP cmdq buffer…
CVE-2024-58068 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: OPP: fix dev_pm_opp_find_bw_*() when bandwidth table not initialized If…
CVE-2024-58070 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: bpf_local_storage: Always use bpf_mem_alloc in PREEMPT_RT In…
CVE-2024-58071 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: team: prevent adding a device which is already a team device lower…
CVE-2024-58088 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock when freeing cgroup storage The following commit…
CVE-2024-58094 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jfs: add check read-only before truncation in jfs_truncate_nolock()…
CVE-2024-58095 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jfs: add check read-only before txBeginAnon() call Added a read-only…
CVE-2024-58096 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: add srng->lock for ath11k_hal_srng_* in monitor mode…
CVE-2024-58097 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix RCU stall while reaping monitor destination ring…
CVE-2025-21683 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix bpf_sk_select_reuseport() memory leak As pointed out in the…
CVE-2025-21696 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm: clear uffd-wp PTE/PMD state on mremap() When mremap()ing a memory…
CVE-2025-21707 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: consolidate suboption status MPTCP maintains the received…
CVE-2025-21758 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: add RCU protection to mld_newpack() mld_newpack() can be…
CVE-2025-21768 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels Some…
CVE-2025-21792 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ax25: Fix refcount leak caused by setting SO_BINDTODEVICE sockopt If an…
CVE-2025-21806 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: let net.core.dev_weight always be non-zero The following problem…
CVE-2025-21808 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode…
CVE-2025-21833 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid use of NULL after WARN_ON_ONCE There is a…
CVE-2025-21836 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: reallocate buf lists on upgrade IORING_REGISTER_PBUF_RING…
CVE-2025-21852 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: Add rx_skb of kfree_skb to raw_tp_null_args[]. Yan Zhai reported a…
CVE-2025-21853 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freeze_mutex during mmap operation We use…
CVE-2025-21854 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sockmap, vsock: For connectible sockets allow only connected sockmap…
CVE-2025-21873 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: bsg: Fix crash when arpmb command fails If the device…
CVE-2025-21875 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: always handle address removal under msk socket lock Syzkaller…
CVE-2025-21881 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: uprobes: Reject the shared zeropage in uprobe_write_opcode() We…
CVE-2025-21884 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: better track kernel sockets lifetime While kernel sockets are…
CVE-2025-21889 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: perf/core: Add RCU read lock protection to perf_iterate_ctx() The…
CVE-2025-21894 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: enetc: VFs do not support HWTSTAMP_TX_ONESTEP_SYNC Actually ENETC…
CVE-2025-21904 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: caif_virtio: fix wrong pointer check in cfv_probe() del_vqs() frees…
CVE-2025-21906 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: clean up ROC on failure If the firmware fails to…
CVE-2025-21908 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: NFS: fix nfs_release_folio() to not deadlock via kcompactd writeback…
CVE-2025-21909 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject cooked mode if it is set along with other flags…
CVE-2025-21910 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: regulatory: improve invalid hints checking Syzbot keeps…
CVE-2025-21912 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: gpio: rcar: Use raw_spinlock to protect register access Use…
CVE-2025-21913 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/amd_nb: Use rdmsr_safe() in amd_get_mmconfig_range() Xen doesn't…
CVE-2025-21916 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: atm: cxacru: fix a flaw in existing endpoint checks Syzbot once…
CVE-2025-21917 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: renesas_usbhs: Flush the notify_hotplug_work When performing…
CVE-2025-21918 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Fix NULL pointer access Resources should be released…
CVE-2025-21922 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ppp: Fix KMSAN uninit-value warning with bpf Syzbot caught an "KMSAN…
CVE-2025-21924 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: hns3: make sure ptp clock is unregister and freed if…
CVE-2025-21925 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: llc: do not use skb_get() before dev_queue_xmit() syzbot is able to…
CVE-2025-21926 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: gso: fix ownership in __udp_gso_segment In __udp_gso_segment the…
CVE-2025-21930 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't try to talk to a dead firmware This fixes…
CVE-2025-21931 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: hwpoison, memory_hotplug: lock folio before unmap hwpoisoned folio…
CVE-2025-21935 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: rapidio: add check for rio_add_net() in rio_scan_alloc_net() The return…
CVE-2025-21936 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Add check for mgmt_alloc_skb() in mgmt_device_connected()…
CVE-2025-21937 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Add check for mgmt_alloc_skb() in mgmt_remote_name() Add…
CVE-2025-21941 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix null check for pipe_ctx->plane_state in…
CVE-2025-21948 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle…
CVE-2025-21951 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: pci_generic: Use pci_try_reset_function() to avoid…
CVE-2025-21953 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: mana: cleanup mana struct after debugfs_remove() When on a MANA VM…
CVE-2025-21956 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Assign normalized_pix_clk when color depth = 14 [WHY &…
CVE-2025-21957 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qla1280: Fix kernel oops when debug level > 2 A null dereference…
CVE-2025-21960 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: do not update checksum in bnxt_xdp_build_skb() The…
CVE-2025-21961 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix truesize for mb-xdp-pass case When mb-xdp is set and…
CVE-2025-21962 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option…
CVE-2025-21963 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option…
CVE-2025-21964 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acregmax mount option…
CVE-2025-38644 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject TDLS operations when station is not associated…
CVE-2025-38678 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject duplicate device on updates A…
CVE-2025-39728 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fix UBSAN panic in samsung_clk_init() With…
CVE-2025-71120 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in…
CVE-2025-21943 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: gpio: aggregator: protect driver attr handlers against module unload…
CVE-2025-38083 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: prio: fix a race in prio_tune() Gerrard Tai reported a race…
CVE-2025-21895 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered…
CVE-2025-22115 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block group refcount race in btrfs_create_pending_block_group…