kernel-livepatch-SLE15-SP7-RT_Update_3 (SUSE:Linux Enterprise Live Patching 15 SP7) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 15 SP7 package kernel-livepatch-SLE15-SP7-RT_Update_3, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2025-38250 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix use-after-free in vhci_flush() syzbot reported…
CVE-2023-53676 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()…
CVE-2025-38259 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd9335: Fix missing free of regulator supplies Driver…
CVE-2025-38117 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Protect mgmt_pending list with its own lock This uses…
CVE-2025-38118 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix UAF on mgmt_remove_adv_monitor_complete This…
CVE-2025-38257 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdup_user()…
CVE-2025-38157 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Abort software beacon handling if disabled A malicious…
CVE-2025-38248 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The…
CVE-2025-38239 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix invalid node index On a system with DRAM…
CVE-2025-38236 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: af_unix: Don't leave consecutive consumed OOB skbs. Jann Horn reported…
CVE-2025-38129 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: page_pool: Fix use-after-free in page_pool_recycle_in_ring syzbot…
CVE-2025-38131 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: coresight: prevent deactivate active config while enabling the config…
CVE-2025-38227 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization…
CVE-2025-38226 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: vivid: Change the siize of the composing syzkaller found a bug…
CVE-2025-38212 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it…
CVE-2025-38211 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction…
CVE-2025-38206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayed_free The double free could happen in…
CVE-2025-38198 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbcon: Make sure modelist not set on unregistered console It looks like…
CVE-2025-38187 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix a use-after-free in r535_gsp_rpc_push() The RPC…
CVE-2025-38183 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: lan743x: fix potential out-of-bounds write in…
CVE-2025-38182 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ublk: santizize the arguments from userspace when adding a device…
CVE-2025-38180 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure…
CVE-2025-38154 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Avoid using sk_socket after free when sending The…
CVE-2025-38618 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2025-38485 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: accel: fxls8962af: Fix use after free in fxls8962af_fifo_flush…
CVE-2025-38476 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpl_do_srh_inline(). Running…
CVE-2025-38471 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in…
CVE-2025-38443 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbd_genl_connect() error path There is a use-after-free…
CVE-2025-38428 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Input: ims-pcu - check record size in ims_pcu_flash_firmware() The…
CVE-2025-37798 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()…
CVE-2025-38425 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: check msg length in SMBUS block read For SMBUS block read…
CVE-2025-38416 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFC: nci: uart: Set tty->disc_data only in success path Setting…
CVE-2025-37885 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reset IRTE to host control if *new* route isn't postable…
CVE-2025-38415 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Squashfs: check return result of sb_min_blocksize Syzkaller reports an…
CVE-2025-38403 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock/vmci: Clear the vmci transport packet properly when initializing…
CVE-2025-38401 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mtk-sd: Prevent memory corruption from DMA map failure If…
CVE-2025-38396 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass…
CVE-2025-38052 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done Syzbot…
CVE-2025-38389 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Fix timeline left held on VMA alloc error The following…
CVE-2025-38385 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect…
CVE-2025-38377 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rose: fix dangling neighbour pointers in rose_rt_device_down() There…
CVE-2025-38375 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size…
CVE-2025-38369 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Check availability of workqueue allocated by idxd wq…
CVE-2025-38361 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check dce_hwseq before dereferencing it [WHAT] hws was…
CVE-2025-38350 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty…
CVE-2025-38087 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: fix use-after-free in taprio_dev_notifier Since taprio’s…
CVE-2025-38349 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: eventpoll: don't decrement ep refcount while still holding the ep mutex…
CVE-2025-38348 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback() Robert…
CVE-2025-38091 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: check stream id dml21 wrapper to get plane_id [Why &…
CVE-2025-38338 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/nfs/read: fix double-unlock bug in nfs_return_empty_folio()…
CVE-2025-38323 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: add lec_mutex syzbot found its way in net/atm/lec.c, and…
CVE-2025-38317 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix buffer overflow in debugfs If the user tries to write…
CVE-2025-38313 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix double-free on mc_dev The blamed commit tried to…
CVE-2025-38289 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Avoid potential ndlp use-after-free in dev_loss_tmo_callbk…
CVE-2025-38106 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix use-after-free of sq->thread in __io_uring_show_fdinfo()…
CVE-2025-38109 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF…
CVE-2025-38288 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix smp_processor_id() call trace for preemptible…
CVE-2025-38279 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Do not include stack ptr register in precision backtracking…
CVE-2025-38566 — CVSS 7.5 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered…
CVE-2025-38342 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: software node: Correct a OOB check in software_node_get_reference_args()…
CVE-2025-38110 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access…
CVE-2025-38483 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: comedi: das16m1: Fix bit shift out of bounds When checking for a…
CVE-2025-38482 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: comedi: das6402: Fix bit shift out of bounds When checking for a…
CVE-2025-38111 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds read/write access When using…
CVE-2025-38153 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net: usb: aqc111: fix error handling of usbnet read calls Syzkaller…
CVE-2025-38286 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: pinctrl: at91: Fix possible out-of-boundary access at91_gpio_probe()…
CVE-2025-38292 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid access to memory In ath12k_dp_rx_msdu_coalesce…
CVE-2025-38395 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: regulator: gpio: Fix the out-of-bounds access to drvdata::gpiods…
CVE-2025-38497 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing…
CVE-2025-38159 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds…
CVE-2025-38088 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap…
CVE-2025-38249 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3(…
CVE-2025-39682 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rx_list Each recvmsg()…
CVE-2025-38204 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds read in add_missing_indices stbl is…
CVE-2025-38102 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: VMCI: fix race between vmci_host_setup_notify and vmci_ctx_unset_notify…
CVE-2025-38051 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free in cifs_fill_dirent There is a race…
CVE-2025-38108 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: red: fix a race in __red_change() Gerrard Tai reported a…
CVE-2025-38107 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: ets: fix a race in ets_qdisc_change() Gerrard Tai reported a…
CVE-2019-11135 — CVSS 6.5 (medium): TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable…
CVE-2024-36357 — CVSS 5.6 (medium): A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in…
CVE-2024-36350 — CVSS 5.6 (medium): A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting…
CVE-2025-38161 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction Upon…
CVE-2025-38162 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: prevent overflow in lookup table allocation…
CVE-2025-38165 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix panic when calling skb_linearize The panic can be…
CVE-2025-38166 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: fix ktls panic with sockmap [ 2172.936997] ------------[ cut here…
CVE-2025-38173 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/cesa - Handle zero-length skcipher requests Do not…
CVE-2025-38174 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Do not double dequeue a configuration request Some of our…
CVE-2025-38177 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: make hfsc_qlen_notify() idempotent hfsc_qlen_notify() is not…
CVE-2025-38151 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Fix hang when cma_netevent_callback fails to queue_work The…
CVE-2025-38181 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in calipso_req_{set,del}attr(). syzkaller…
CVE-2025-38149 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: phy: clear phydev->devlink when the link is deleted There is a…
CVE-2025-38148 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: phy: mscc: Fix memory leak when using one step timestamping Fix…
CVE-2025-38186 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix double invocation of bnxt_ulp_stop()/bnxt_ulp_start()…
CVE-2025-38147 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: calipso: Don't call calipso functions for AF_INET sk. syzkaller…
CVE-2025-38188 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm/a7xx: Call CP_RESET_CONTEXT_STATE Calling this packet is…
CVE-2025-38189 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Avoid NULL pointer dereference in `v3d_job_update_stats()` The…
CVE-2025-38192 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: clear the dst when changing skb protocol A not-so-careful NAT46…
CVE-2025-38193 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: reject invalid perturb period Gerrard Tai reported…
CVE-2025-38194 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jffs2: check that raw node were preallocated before writing summary…
CVE-2025-38197 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell_rbu: Fix list usage Pass the correct list head to…
CVE-2025-38145 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: soc: aspeed: Add NULL check in aspeed_lpc_enable_snoop()…
CVE-2025-38200 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40e_clear_hw When…
CVE-2025-38202 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()…
CVE-2025-38203 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfs_ioc_trim [ Syzkaller Report ] Oops…
CVE-2025-38143 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: backlight: pm8941: Add NULL check in wled_configure() devm_kasprintf()…
CVE-2025-38142 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: hwmon: (asus-ec-sensors) check sensor index in read_string() Prevent a…
CVE-2025-38210 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: configfs-tsm-report: Fix NULL dereference of tsm_ops Unlike sysfs, the…
CVE-2025-38138 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: Add NULL check in udma_probe() devm_kasprintf() returns…
CVE-2025-38136 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: renesas_usbhs: Reorder clock handling and power management in…
CVE-2025-38214 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_var…
CVE-2025-38215 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix do_register_framebuffer to prevent null-ptr-deref in…
CVE-2025-38220 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: only dirty folios when data journaling regular files fstest…
CVE-2025-38222 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4_prepare_inline_data When running…
CVE-2025-38225 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Cleanup after an allocation error When allocation…
CVE-2025-38135 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: serial: Fix potential null-ptr-deref in mlb_usio_probe() devm_ioremap()…
CVE-2025-38132 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: coresight: holding cscfg_csdev_lock while removing cscfg from csdev…
CVE-2025-38229 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: cxusb: no longer judge rbuf when the write fails syzbot reported…
CVE-2025-38231 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nfsd: Initialize ssc before laundromat_work to prevent NULL dereference…
CVE-2025-38127 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ice: fix Tx scheduler error handling in XDP callback When the XDP…
CVE-2025-38238 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: fnic: Fix crash in fnic_wq_cmpl_handler when FDMI times out When…
CVE-2025-38126 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: stmmac: make sure that ptp_rate is not 0 before configuring…
CVE-2025-38244 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when reconnecting channels Fix…
CVE-2025-38246 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bnxt: properly flush XDP redirect lists We encountered following crash…
CVE-2025-38124 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: fix udp gso skb_segment after pull from frag_list Commit…
CVE-2025-38123 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: Fix napi rx poll issue When driver handles the napi rx…
CVE-2025-38122 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: gve: add missing NULL check for gve_alloc_pending_packet() in TX DQO…
CVE-2025-38256 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: io_uring/rsrc: fix folio unpinning syzbot complains about an unmapping…
CVE-2025-38120 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_set_pipapo_avx2: fix initial map fill If the first field…
CVE-2025-38115 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: fix a potential crash on gso_skb handling SFQ has…
CVE-2025-38264 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in…
CVE-2025-38265 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: serial: jsm: fix NPE during jsm_uart_port_init No device was set which…
CVE-2025-38268 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: move tcpm_queue_vdm_unlocked to asynchronous work A…
CVE-2025-38272 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: dsa: b53: do not enable EEE on bcm63xx BCM63xx internal switches…
CVE-2025-38273 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix refcount warning in tipc_aead_encrypt syzbot reported a…
CVE-2025-38275 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug The qmp_usb_iomap()…
CVE-2025-38277 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mtd: nand: ecc-mxic: Fix use of uninitialized variable ret If…
CVE-2025-38114 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: e1000: Move cancel_work_sync to avoid deadlock Previously, e1000_down…
CVE-2025-38283 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: hisi_acc_vfio_pci: bugfix live migration function without VF device…
CVE-2025-38113 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Fix NULL pointer dereference when nosmp is used With nosmp…
CVE-2025-38287 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: IB/cm: Drop lockdep assert and WARN when freeing old msg The send…
CVE-2025-38429 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: Update read pointer only after buffer is written Inside…
CVE-2025-38155 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: Fix null-ptr-deref in mt7915_mmio_wed_init()…
CVE-2025-38475 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: smc: Fix various oops due to inet_sock type confusion. syzbot reported…
CVE-2024-57947 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_set_pipapo: fix initial map fill The initial buffer has…
CVE-2025-38478 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: comedi: Fix initialization of data for instructions that write to…
CVE-2025-38480 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: comedi: Fix use of uninitialized data in insn_rw_emulate_bits() For…
CVE-2025-38481 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: comedi: Fail COMEDI_INSNLIST ioctl if n_insns is too large The handling…
CVE-2024-56742 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vfio/mlx5: Fix an unwind issue in mlx5vf_add_migration_pages() Fix an…
CVE-2024-44963 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: do not BUG_ON() when freeing tree block after error When freeing…
CVE-2024-42134 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: virtio-pci: Check if is_avq is NULL [bug] In the virtio_pci_common.c…
CVE-2025-38487 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: soc: aspeed: lpc-snoop: Don't disable channels that aren't enabled…
CVE-2025-38489 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: s390/bpf: Fix bpf_arch_text_poke() with new_addr == NULL again Commit…
CVE-2025-38495 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved…
CVE-2025-38496 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dm-bufio: fix sched in atomic context If "try_verify_in_tasklet" is set…
CVE-2025-38498 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: do_change_type(): refuse to operate on unmounted/not ours mounts Ensure…
CVE-2025-38499 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the…
CVE-2025-38608 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls…
CVE-2025-38664 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() Add…
CVE-2025-38678 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject duplicate device on updates A…
CVE-2025-39742 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA: hfi1: fix possible divide-by-zero in find_hw_thread_mask() The…
CVE-2025-38105 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Kill timer properly at removal The USB-audio MIDI code…
CVE-2025-38290 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix node corruption in ar->arvifs list In current WLAN…
CVE-2025-38291 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Prevent sending WMI commands to firmware during firmware…
CVE-2025-38100 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/iopl: Cure TIF_IO_BITMAP inconsistencies io_bitmap_exit() is…
CVE-2025-38293 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix node corruption in ar->arvifs list In current WLAN…
CVE-2025-38299 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8195: Set ETDM1/2 IN/OUT to COMP_DUMMY() ETDM2_IN_BE…
CVE-2025-38300 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ce-cipher - fix error handling in sun8i_ce_cipher_prepare(…
CVE-2025-38303 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix possible crashes on eir_create_adv_data…
CVE-2025-38304 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix NULL pointer deference on eir_get_service_data The len…
CVE-2025-38305 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ptp: remove ptp->n_vclocks check logic in ptp_vclock_in_use() There is…
CVE-2025-38307 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify content returned by parse_int_array() The…
CVE-2025-38310 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: seg6: Fix validation of nexthop addresses The kernel currently…
CVE-2025-38312 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fbdev: core: fbcvt: avoid division by 0 in fb_cvt_hperiod() In…
CVE-2025-38099 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Disable SCO support if READ_VOICE_SETTING is…
CVE-2025-38315 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: Check dsbr size from EFI variable Since the size of…
CVE-2025-38098 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Don't treat wb connector as physical in…
CVE-2025-38319 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/pp: Fix potential NULL pointer dereference in…
CVE-2025-38097 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The…
CVE-2025-38326 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: aoe: clean device rq_list in aoedev_downdev() An aoe device's rq_list…
CVE-2025-38328 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jffs2: check jffs2_prealloc_raw_node_refs() result in few other places…
CVE-2025-38332 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Use memcpy() for BIOS version The strlcat() with FORTIFY…
CVE-2025-38334 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page…
CVE-2025-38335 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPT_RT When…
CVE-2025-38336 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ata: pata_via: Force PIO for ATAPI devices on VT6415/VT6330 The…
CVE-2025-38337 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata()…
CVE-2025-38095 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dma-buf: insert memory barrier before updating num_fences…
CVE-2025-38094 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: cadence: macb: Fix a possible deadlock in macb_halt_tx. There is a…
CVE-2025-38343 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: drop fragments with multicast or broadcast RA IEEE…
CVE-2025-38344 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi parse and parseext cache leaks ACPICA commit…
CVE-2025-38345 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi operand cache leak in dswstate.c ACPICA commit…
CVE-2025-38090 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drivers/rapidio/rio_cm.c: prevent possible heap overwrite In…
CVE-2025-38089 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sunrpc: handle SVC_GARBAGE during svc auth processing as auth error…
CVE-2025-38084 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: unshare page tables during VMA split, not before Currently…
CVE-2025-38353 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC…
CVE-2025-38354 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm/gpu: Fix crash when throttling GPU immediately during boot…
CVE-2025-38355 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/xe: Process deferred GGTT node removals on device unwind While we…
CVE-2025-38356 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Explicitly exit CT safe mode on unwind During driver probe…
CVE-2025-38074 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: protect vq->log_used with vq->mutex The vhost-scsi…