kernel-docs (SUSE:Linux Enterprise Server for SAP applications 16.0) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server for SAP applications 16.0 package kernel-docs, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2026-22984 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handle_auth_done()…
CVE-2026-23112 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec…
CVE-2026-43414 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport double free In…
CVE-2025-39946 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: tls: make sure to abort the stream if headers are bogus Normally we…
CVE-2026-45898 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption by removing work_list The…
CVE-2026-43341 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wraparound in trace fill…
CVE-2026-31448 — CVSS 9.4 (critical): In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod…
CVE-2026-46316 — CVSS 9.3 (critical): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the…
CVE-2026-46043 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv…
CVE-2026-43197 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: netconsole: avoid OOB reads, msg is not nul-terminated msg passed to…
CVE-2026-43112 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath When…
CVE-2026-23230 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to avoid shared-byte RMW races…
CVE-2026-46317 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nested_mmus array behind mmu_lock…
CVE-2026-23172 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: fix potential skb->frags overflow in RX path When…
CVE-2026-45843 — CVSS 8.2 (high): In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length…
CVE-2026-43362 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix in-place encryption corruption in SMB2_write()…
CVE-2025-39889 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Check encryption key size on incoming connection This…
CVE-2026-31613 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE…
CVE-2026-31464 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() A…
CVE-2025-38456 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipmi:msghandler: Fix potential memory corruption in ipmi_create_user()…
CVE-2026-43332 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If…
CVE-2025-38146 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix the dead loop of MPLS parse The unexpected MPLS…
CVE-2025-38685 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit This issue…
CVE-2025-38459 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix infinite recursive call of clip_push(). syzbot reported…
CVE-2026-43328 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error…
CVE-2025-38226 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: vivid: Change the siize of the composing syzkaller found a bug…
CVE-2025-38227 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization…
CVE-2025-38464 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_conn_close(). syzbot reported a…
CVE-2025-38338 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/nfs/read: fix double-unlock bug in nfs_return_empty_folio()…
CVE-2025-38702 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbdev: fix potential buffer overflow in do_register_framebuffer() The…
CVE-2025-38703 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/xe: Make dma-fences compliant with the safe access rules Xe can…
CVE-2025-38704 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer access In…
CVE-2025-38341 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: avoid double free when failing to DMA-map FW msg The…
CVE-2025-38109 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF…
CVE-2025-38718 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctp_rcv A cloned head skb still…
CVE-2025-38722 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: habanalabs: fix UAF in export_dmabuf() As soon as we'd inserted a file…
CVE-2025-38724 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()…
CVE-2025-38348 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback() Robert…
CVE-2025-38349 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: eventpoll: don't decrement ep refcount while still holding the ep mutex…
CVE-2025-38729 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Validate UAC3 power domain descriptors, too UAC3 power…
CVE-2025-38730 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring/net: commit partial buffers on retry Ring provided buffers are…
CVE-2025-38476 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpl_do_srh_inline(). Running…
CVE-2026-45852 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_init In rxe_srq_from_init()…
CVE-2025-38734 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/smc: fix UAF on smcsk after smc_listen_out() BPF CI testing report…
CVE-2025-38350 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty…
CVE-2025-40149 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock()…
CVE-2025-38428 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Input: ims-pcu - check record size in ims_pcu_flash_firmware() The…
CVE-2026-46090 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during format-change stop…
CVE-2025-38209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: remove tag set when second admin queue config fails Commit…
CVE-2025-38211 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction…
CVE-2026-46181 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() Sashiko points out…
CVE-2025-38313 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix double-free on mc_dev The blamed commit tried to…
CVE-2025-38141 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm: fix dm_blk_report_zones If dm_get_live_table() returned NULL…
CVE-2025-38443 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbd_genl_connect() error path There is a use-after-free…
CVE-2025-38317 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix buffer overflow in debugfs If the user tries to write…
CVE-2025-38653 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: proc: use the same treatment to check proc_lseek as ones for…
CVE-2025-38656 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start() Preserve the…
CVE-2026-45910 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer handlers I encontered the…
CVE-2025-38216 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices…
CVE-2025-38662 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8365-dai-i2s: pass correct size to…
CVE-2026-46176 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init()…
CVE-2025-38323 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: add lec_mutex syzbot found its way in net/atm/lec.c, and…
CVE-2025-38106 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix use-after-free of sq->thread in __io_uring_show_fdinfo()…
CVE-2025-38676 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Avoid stack buffer overflow from kernel cmdline While the…
CVE-2025-38288 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix smp_processor_id() call trace for preemptible…
CVE-2026-31703 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_switch_wbs_work_fn()…
CVE-2025-38289 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Avoid potential ndlp use-after-free in dev_loss_tmo_callbk…
CVE-2025-38091 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: check stream id dml21 wrapper to get plane_id [Why &…
CVE-2025-38593 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: fix double free in 'hci_discovery_filter_clear()'…
CVE-2025-38595 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xen: fix UAF in dmabuf_exp_from_pages() [dma_buf_fd() fixes; no…
CVE-2025-39911 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path If…
CVE-2025-39913 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to…
CVE-2025-38129 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: page_pool: Fix use-after-free in page_pool_recycle_in_ring syzbot…
CVE-2025-39917 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt Stanislav…
CVE-2025-38019 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_router: Fix use-after-free when deleting GRE net…
CVE-2025-38298 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: EDAC/skx_common: Fix general protection fault After loading i10nm_edac…
CVE-2025-38415 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Squashfs: check return result of sb_min_blocksize Syzkaller reports an…
CVE-2025-38416 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFC: nci: uart: Set tty->disc_data only in success path Setting…
CVE-2026-31683 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: batman-adv: avoid OGM aggregation when skb tailroom is insufficient…
CVE-2025-37798 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()…
CVE-2025-37861 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply…
CVE-2025-38137 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's…
CVE-2025-38198 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbcon: Make sure modelist not set on unregistered console It looks like…
CVE-2025-39944 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() The…
CVE-2025-39945 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cnic: Fix use-after-free bugs in cnic_delete_task The original code…
CVE-2025-38421 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmf: Use device managed allocations If setting up…
CVE-2025-38618 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a…
CVE-2025-39952 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: avoid buffer overflow in WID string configuration Fix…
CVE-2025-39955 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect(). syzbot…
CVE-2025-38423 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd9375: Fix double free of regulator supplies Driver…
CVE-2025-39957 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: increase scan_ies_len for S1G Currently the S1G…
CVE-2026-31648 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nr_pages calculation overflow in filemap_map_pages()…
CVE-2025-39963 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix incorrect io_kiocb reference in io_link_skb In…
CVE-2025-38201 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX…
CVE-2025-39967 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcon_do_set_font Fix integer overflow…
CVE-2026-31584 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix use-after-free in encoder release path The…
CVE-2026-31516 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: prevent policy_hthresh.work from racing with netns teardown A…
CVE-2026-31493 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/efa: Fix use of completion ctx after free On admin queue…
CVE-2026-31455 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: stop reclaim before pushing AIL during unmount The unmount…
CVE-2026-31454 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In…
CVE-2026-31446 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free in update_super_work when racing with umount…
CVE-2026-31401 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hid_hw_request right now the…
CVE-2026-31396 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is…
CVE-2026-23444 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure…
CVE-2026-23359 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stack-out-of-bounds write in devmap get_upper_ifindexes()…
CVE-2026-23224 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: erofs: fix UAF issue for file-backed mounts w/ directio option […
CVE-2026-23223 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_check_block_owner We cannot dereference…
CVE-2026-23222 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly…
CVE-2026-23221 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_override_show() The…
CVE-2026-23209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix error recovery in macvlan_common_newlink() valis provided…
CVE-2026-23208 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Prevent excessive number of frames In this case, the…
CVE-2026-23198 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when deassigning irqfd When…
CVE-2026-23191 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix racy access at PCM trigger The PCM trigger callback of…
CVE-2026-23178 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report()…
CVE-2026-23171 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bonding: fix use-after-free due to enslave fail after slave array…
CVE-2025-38425 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: check msg length in SMBUS block read For SMBUS block read…
CVE-2026-23169 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs_doit() syzbot and Eulgyu Kim…
CVE-2026-23158 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser…
CVE-2026-23156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: efivarfs: fix error propagation in efivar_entry_get()…
CVE-2026-23111 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask check in…
CVE-2026-23105 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: qfq: Use cl_is_active to determine whether class is active…
CVE-2026-23089 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() When…
CVE-2026-23083 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOU_ATTR_IPPROTO. fou_udp_recv() has the same…
CVE-2026-23078 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Fix buffer overflow in config retrieval The…
CVE-2026-23074 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be used as root qdisc Design…
CVE-2026-23073 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Fix memory corruption due to not set vif driver data size…
CVE-2026-23068 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver…
CVE-2026-23066 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recvmsg() unconditional requeue If rxrpc_recvmsg() fails…
CVE-2025-38052 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done Syzbot…
CVE-2026-23010 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix use-after-free in inet6_addr_del(). syzbot reported…
CVE-2026-23004 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list()…
CVE-2026-23001 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlan_forward_source() Add RCU…
CVE-2026-22999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: do not free existing class in qfq_change_class()…
CVE-2026-22988 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: arp: do not assume dev_hard_header() does not change skb->head…
CVE-2026-22980 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: provide locking for v4_end_grace Writing to v4_end_grace can race…
CVE-2025-71234 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add The driver…
CVE-2025-71162 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: tegra-adma: Fix use-after-free A use-after-free bug exists…
CVE-2025-71157 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/core: always drop device refcount in ib_del_sub_device_and_put()…
CVE-2025-71156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gve: defer interrupt enabling until NAPI registration Currently…
CVE-2025-71145 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: phy: isp1301: fix non-OF device reference imbalance A recent…
CVE-2025-71143 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: clk: samsung: exynos-clkout: Assign .num before accessing .hws Commit…
CVE-2025-71137 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" This patch ensures…
CVE-2025-71123 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix string copying in parse_apply_sb_mount_options()…
CVE-2025-71100 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()…
CVE-2025-71099 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() In…
CVE-2025-71091 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: team: fix check for port enabled in team_queue_override_port_prio_change…
CVE-2025-71089 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set Patch series "Fix stale IOTLB…
CVE-2025-71086 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: rose: fix invalid array index in rose_kill_by_device()…
CVE-2025-71082 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: revert use of devm_kzalloc in btusb This reverts…
CVE-2025-71078 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/64s/slb: Fix SLB multihit issue during SLB preload On systems…
CVE-2025-71073 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Input: lkkbd - disable pending work before freeing device…
CVE-2025-71071 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/mediatek: fix use-after-free on probe deferral The driver is…
CVE-2025-40364 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix io_req_prep_async with provided buffers…
CVE-2025-38101 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix buffer locking in ring_buffer_subbuf_order_set()…
CVE-2025-38233 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is…
CVE-2025-38484 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: backend: fix out-of-bound write The buffer is set to 80 character…
CVE-2025-38485 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: accel: fxls8962af: Fix use after free in fxls8962af_fifo_flush…
CVE-2025-39686 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: comedi: Make insn_rw_emulate_bits() do insn->n samples The…
CVE-2025-39689 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ftrace: Also allocate and copy hash for reading of filter files…
CVE-2025-39691 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/buffer: fix use-after-free when call bh_read() helper There's issue…
CVE-2025-38488 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in crypt_message when using async…
CVE-2025-38490 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: libwx: remove duplicate page_pool_put_full_page()…
CVE-2026-43150 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf/arm-cmn: Reject unsupported hardware configurations So far we've…
CVE-2025-38154 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Avoid using sk_socket after free when sending The…
CVE-2025-39701 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ACPI: pfr_update: Fix the driver update version check The…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2025-38245 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: atm: Release atm_dev_mutex after removing procfs in…
CVE-2025-38361 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check dce_hwseq before dereferencing it [WHAT] hws was…
CVE-2025-39711 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: ivsc: Fix crash at shutdown due to missing mei_cldev_disable()…
CVE-2025-38500 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collect_md xfrm…
CVE-2025-38157 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Abort software beacon handling if disabled A malicious…
CVE-2025-39723 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfs: Fix unbuffered write error handling If all the subrequests in an…
CVE-2026-43063 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: don't irele after failing to iget in xfs_attri_recover_work…
CVE-2025-39727 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm: swap: fix potential buffer overflow in setup_clusters() In…
CVE-2025-39730 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() The function…
CVE-2025-38369 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Check availability of workqueue allocated by idxd wq…
CVE-2025-39738 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: do not allow relocation of partially dropped subvolumes [BUG]…
CVE-2025-38512 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: prevent A-MSDU attacks in mesh networks This patch is a…
CVE-2025-38257 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdup_user()…
CVE-2025-38259 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd9335: Fix missing free of regulator supplies Driver…
CVE-2026-43030 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsafe() for pointers to packet In case rold->reg->range ==…
CVE-2025-38375 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size…
CVE-2026-43499 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of current in remove_waiter()…
CVE-2024-57951 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: hrtimers: Handle CPU state correctly on hotplug Consider a scenario…
CVE-2025-38527 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cifs_oplock_break A race condition…
CVE-2025-39766 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit…
CVE-2025-38377 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rose: fix dangling neighbour pointers in rose_rt_device_down() There…
CVE-2025-38117 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Protect mgmt_pending list with its own lock This uses…
CVE-2025-38533 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: libwx: fix the using of Rx buffer DMA The wx_rx_buffer structure…
CVE-2025-38535 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode…
CVE-2025-39783 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Fix configfs group list head handling Doing a list_del()…
CVE-2026-45984 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline…
CVE-2025-39788 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE On Google…
CVE-2025-39790 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote…
CVE-2025-38538 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: nbpfaxi: Fix memory corruption in probe() The nbpf->chan[]…
CVE-2025-38118 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix UAF on mgmt_remove_adv_monitor_complete This…
CVE-2025-37916 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pds_core: remove write-after-free of client_id A use-after-free error…
CVE-2025-39797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan…
CVE-2026-45970 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv during bond up/down The ALB RX…
CVE-2025-38267 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not trigger WARN_ON() due to a commit_overrun When…