kernel-kvmsmall (SUSE:Linux Micro 6.1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Micro 6.1 package kernel-kvmsmall, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2026-22984 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handle_auth_done()…
CVE-2026-43341 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wraparound in trace fill…
CVE-2026-43501 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows…
CVE-2025-39946 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: tls: make sure to abort the stream if headers are bogus Normally we…
CVE-2026-43414 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport double free In…
CVE-2026-23112 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec…
CVE-2024-36031 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: keys: Fix overwrite of key expiration on instantiation The expiry time…
CVE-2026-31448 — CVSS 9.4 (critical): In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod…
CVE-2026-46043 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv…
CVE-2026-43406 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in…
CVE-2024-47685 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() syzbot…
CVE-2026-43407 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in ceph_handle_auth_reply()…
CVE-2024-8805 — CVSS 8.8 (high): BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent…
CVE-2026-46113 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The…
CVE-2026-43249 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free against concurrent calls The…
CVE-2026-43284 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES…
CVE-2026-43503 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers…
CVE-2026-23193 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_coun…
CVE-2026-23395 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ Currently…
CVE-2026-31629 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCP_CLOSED checks In…
CVE-2026-23172 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: fix potential skb->frags overflow in RX path When…
CVE-2024-27407 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fixed overflow check in mi_enum_attr()
CVE-2026-45843 — CVSS 8.2 (high): In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length…
CVE-2026-31788 — CVSS 8.2 (high): In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: restrict usage in unprivileged domU The Xen privcmd driver…
CVE-2026-31464 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() A…
CVE-2026-31613 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE…
CVE-2025-39889 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Check encryption key size on incoming connection This…
CVE-2026-43362 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix in-place encryption corruption in SMB2_write()…
CVE-2024-56551 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix usage slab after free [ +0.000021] BUG: KASAN…
CVE-2024-46830 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS Grab…
CVE-2024-56558 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: make sure exp active before svc_export_show The function `e_show`…
CVE-2024-46831 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: microchip: vcap: Fix use-after-free error in kunit test This is a…
CVE-2023-53192 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix nexthop hash size The nexthop code expects a 31 bit hash…
CVE-2025-38289 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Avoid potential ndlp use-after-free in dev_loss_tmo_callbk…
CVE-2024-46836 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed_udc: validate endpoint index for ast udc We should…
CVE-2024-56570 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ovl: Filter invalid inodes with missing lookup function Add a check to…
CVE-2023-53479 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cxl/acpi: Fix a use-after-free in cxl_parse_cfmws() KASAN and KFENCE…
CVE-2023-31248 — CVSS 7.8 (high): Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain…
CVE-2023-53485 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev…
CVE-2023-53487 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas_flash: allow user copy to flash block cache objects With…
CVE-2025-38279 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Do not include stack ptr register in precision backtracking…
CVE-2024-46845 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tracing/timerlat: Only clear timer if a kthread exists The timerlat…
CVE-2023-53252 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync…
CVE-2024-56582 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free in btrfs_encoded_read_endio() Shinichiro…
CVE-2024-46849 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: meson: axg-card: fix 'use-after-free' Buffer 'card->dai_link' is…
CVE-2025-38512 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: prevent A-MSDU attacks in mesh networks This patch is a…
CVE-2024-46852 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by-one in CMA heap fault handler Until…
CVE-2024-46853 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: spi: nxp-fspi: fix the KASAN report out-of-bounds bug Change the memcpy…
CVE-2026-46181 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() Sashiko points out…
CVE-2024-56595 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree When…
CVE-2024-56596 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfs_readdir The stbl might…
CVE-2024-56598 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: array-index-out-of-bounds fix in dtReadFirst The value of stbl can…
CVE-2024-46859 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses…
CVE-2024-56600 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet6: do not leave a dangling sk pointer in inet6_create()…
CVE-2024-56601 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create()…
CVE-2024-56602 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: do not leave a dangling sk pointer in…
CVE-2024-56603 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: af_can: do not leave a dangling sk pointer in can_create() On…
CVE-2024-56604 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in…
CVE-2024-56605 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in…
CVE-2024-56606 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: af_packet: avoid erroring out after sock_init_data() in packet_create()…
CVE-2023-53673 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: call disconnect callback before deleting conn In…
CVE-2024-56608 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'…
CVE-2024-56609 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb When…
CVE-2023-53492 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: do not ignore genmask when looking up chain by id…
CVE-2023-53676 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()…
CVE-2024-56614 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xsk: fix OOB map writes when deleting elements Jordy says: " In the…
CVE-2024-56615 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: fix OOB devmap writes when deleting elements Jordy reported issue…
CVE-2024-56616 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/dp_mst: Fix MST sideband message body length check Fix the MST…
CVE-2025-38500 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collect_md xfrm…
CVE-2024-56619 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()…
CVE-2024-46871 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_…
CVE-2023-53493 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: accel/qaic: tighten bounds checking in decode_message() Copy the bounds…
CVE-2023-53495 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mvpp2_main: fix possible OOB write in…
CVE-2023-53257 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check S1G action frame size Before checking the action…
CVE-2026-45984 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline…
CVE-2026-45970 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv during bond up/down The ALB RX…
CVE-2024-56631 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Fix slab-use-after-free read in sg_release() Fix a…
CVE-2024-56633 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg The current…
CVE-2026-45910 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer handlers I encontered the…
CVE-2025-38259 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd9335: Fix missing free of regulator supplies Driver…
CVE-2024-56638 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: incorrect percpu area handling under softirq…
CVE-2024-56640 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/smc: fix LGR and link use-after-free issue We encountered a…
CVE-2026-45878 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking in debug address watch v2 The…
CVE-2024-56642 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free of kernel socket in cleanup_bearer()…
CVE-2026-45852 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_init In rxe_srq_from_init()…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2024-56651 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: can: hi311x: hi3110_can_ist(): fix potential use-after-free The commit…
CVE-2024-47670 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ocfs2: add bounds checking to ocfs2_xattr_find_entry() Add a paranoia…
CVE-2026-43499 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of current in remove_waiter()…
CVE-2024-56658 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: defer final 'struct net' free in netns dismantle Ilya reported a…
CVE-2025-38490 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: libwx: remove duplicate page_pool_put_full_page()…
CVE-2024-47675 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() If…
CVE-2025-38109 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF…
CVE-2023-53446 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free…
CVE-2024-53227 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Fix use-after-free in bfad_im_module_exit() BUG: KASAN…
CVE-2024-46796 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix double put of @cfile in smb2_set_path_size() If…
CVE-2024-46800 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sch/netem: fix use after free in netem_dequeue If netem_dequeue()…
CVE-2023-53184 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing…
CVE-2023-53638 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: octeon_ep: cancel queued works in probe error path If it fails to get…
CVE-2024-46804 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access [Why]…
CVE-2023-53645 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Make bpf_refcount_acquire fallible for non-owning refs This patch…
CVE-2024-53237 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix use-after-free in device_for_each_child() Syzbot has…
CVE-2024-53239 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: 6fire: Release resources at card release The current 6fire code…
CVE-2023-53454 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Correct devm device reference for hidinput input_dev…
CVE-2023-53187 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free of new block group that became unused If a…
CVE-2024-54458 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: bsg: Set bsg_queue to NULL after removal Currently, this…
CVE-2024-46811 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index may exceed array range within…
CVE-2024-46812 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfigu…
CVE-2024-46813 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check link_index before accessing dc->links[] [WHY &…
CVE-2024-46814 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check msg_id before processing transcation [WHY & HOW]…
CVE-2024-46815 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]…
CVE-2023-53331 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit…
CVE-2023-53652 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vdpa: Add features attr to vdpa_nl_policy for nlattr length check The…
CVE-2024-46818 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpio_id before used as array index [WHY & HOW]…
CVE-2024-46821 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix negative array index read Avoid using the negative…
CVE-2024-56538 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm: zynqmp_kms: Unplug DRM device before removal Prevent userspace…
CVE-2023-53148 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: igb: Fix igb_down hung on surprise removal In a setup where a…
CVE-2023-53338 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: lwt: Fix return values of BPF xmit ops BPF encap ops can return…
CVE-2024-56548 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't query the device logical block size multiple times…
CVE-2024-46828 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sched: sch_cake: fix bulk flow accounting logic for host fairness In…
CVE-2024-50158 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix out of bound check Driver exports pacing stats only…
CVE-2024-50159 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup()…
CVE-2025-38718 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctp_rcv A cloned head skb still…
CVE-2025-21979 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel wiphy_work before freeing wiphy A wiphy_work can…
CVE-2025-21991 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA…
CVE-2025-38702 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbdev: fix potential buffer overflow in do_register_framebuffer() The…
CVE-2025-38699 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Double-free fix When the bfad_im_probe() function fails…
CVE-2025-38697 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the…
CVE-2025-38685 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit This issue…
CVE-2025-21999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: proc: fix UAF in proc_get_inode() Fix race between rmmod and…
CVE-2023-54285 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomap_write_delalloc_scan…
CVE-2025-22004 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lec_send() The ->send() operation frees…
CVE-2025-38676 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Avoid stack buffer overflow from kernel cmdline While the…
CVE-2024-50180 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbdev: sisfb: Fix strbuf array overflow The values of the variables…
CVE-2025-38401 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mtk-sd: Prevent memory corruption from DMA map failure If…
CVE-2025-38396 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass…
CVE-2025-38656 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start() Preserve the…
CVE-2025-38653 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: proc: use the same treatment to check proc_lseek as ones for…
CVE-2024-50186 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: explicitly clear the sk pointer, when pf->create fails We have…
CVE-2025-38618 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a…
CVE-2025-22020 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: memstick: rtsx_usb_ms: Fix slab-use-after-free in…
CVE-2025-38595 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xen: fix UAF in dmabuf_exp_from_pages() [dma_buf_fd() fixes; no…
CVE-2025-22022 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Apply the link chain quirk on NEC isoc endpoints Two clearly…
CVE-2025-38187 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix a use-after-free in r535_gsp_rpc_push() The RPC…
CVE-2025-38183 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: lan743x: fix potential out-of-bounds write in…
CVE-2025-38593 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: fix double free in 'hci_discovery_filter_clear()'…
CVE-2025-38585 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: staging: media: atomisp: Fix stack buffer overflow in…
CVE-2025-22035 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tracing: Fix use-after-free in print_graph_function_flags during tracer…
CVE-2025-38584 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: padata: Fix pd UAF once and for all There is a race condition/UAF in…
CVE-2025-38582 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix double destruction of rsv_qp rsv_qp may be double…
CVE-2025-38574 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pptp: ensure minimal skb length in pptp_xmit() Commit aabc6596ffb3…
CVE-2025-38182 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ublk: santizize the arguments from userspace when adding a device…
CVE-2025-38572 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: reject malicious packets in ipv6_gso_segment() syzbot was able to…
CVE-2025-38568 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing…
CVE-2025-22056 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix geneve_opt type confusion addition When…
CVE-2024-50203 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix address emission with tag-based KASAN enabled When…
CVE-2025-38180 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure…
CVE-2025-38565 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf/core: Exit early on perf_mmap() fail When perf_mmap() fails to…
CVE-2025-38563 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf/core: Prevent VMA split of buffer mappings The perf mmap code is…
CVE-2024-50209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add a check for memory allocation __alloc_pbl() can…
CVE-2025-38389 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Fix timeline left held on VMA alloc error The following…
CVE-2024-50215 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dh_key to NULL after kfree_sensitive ctrl->dh_key…
CVE-2025-38555 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget : fix use-after-free in composite_dev_cleanup() 1. In func…
CVE-2025-38552 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mptcp: plug races between subflow fail and subflow creation We have…
CVE-2025-22083 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint…
CVE-2024-50221 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Vangogh: Fix kernel memory out of bounds write KASAN…
CVE-2025-22088 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/erdma: Prevent use-after-free in erdma_accept_newconn() After the…
CVE-2023-53500 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: fix slab-use-after-free in decode_session6 When the xfrm device…
CVE-2026-46090 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during format-change stop…
CVE-2025-38385 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect…
CVE-2025-22097 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the…
CVE-2023-53504 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Properly order ib_device_unalloc() to avoid UAF…
CVE-2024-50230 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug due to missing clearing of checked flag Syzbot…
CVE-2023-52921 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix possible UAF in amdgpu_cs_pass1() Since the gang_size…
CVE-2023-53507 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Unregister devlink params in case interface is down…
CVE-2023-53508 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ublk: fail to start device if queue setup is interrupted In…
CVE-2024-50235 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: clear wdev->cqm_config pointer on free When we free…
CVE-2023-53510 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix handling of lrbp->cmd ufshcd_queuecommand() may be…
CVE-2023-53515 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: virtio-mmio: don't break lifecycle of vm_dev vm_dev has a separate…
CVE-2023-53516 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: add forgotten nla_policy for IFLA_MACVLAN_BC_CUTOFF The…
CVE-2024-50246 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add rough attr alloc_size check
CVE-2025-22126 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: md: fix mddev uaf while iterating all_mddevs list While iterating…
CVE-2024-26782 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mptcp: fix double-free on socket dismantle when MPTCP server accepts an…
CVE-2025-38550 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Delay put pmc->idev in mld_del_delrec() pmc->idev is still…
CVE-2025-23133 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: update channel list in reg notifier instead reg worker…
CVE-2025-23142 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sctp: detect and prevent references to a freed transport in sendmsg…
CVE-2024-50257 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: Fix use-after-free in get_info() ip6table_nat module unload…
CVE-2024-50261 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macsec: Fix use-after-free while sending the offloading packet KASAN…
CVE-2024-50262 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds write in trie_get_next_key() trie_get_next_key()…
CVE-2024-50264 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Initialization of the dangling pointer occurring in…
CVE-2023-53205 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: s390/diag: fix racy access of physical cpu number in diag 9c…
CVE-2024-50267 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_edgeport: fix use after free in debug printk The…
CVE-2025-38157 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Abort software beacon handling if disabled A malicious…
CVE-2025-23158 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: venus: hfi: add check to handle incorrect queue size qsize…
CVE-2024-50269 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: musb: sunxi: Fix accessing an released usb phy Commit 6ed05c68cbca…
CVE-2024-26944 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after-free in do_zone_finish() Shinichiro…
CVE-2023-53263 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/disp: fix use-after-free in error handling of…
CVE-2024-50274 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: idpf: avoid vport access in idpf_get_link_ksettings When the device…
CVE-2024-50276 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: vertexcom: mse102x: Fix possible double free of TX skb The scope…
CVE-2025-37750 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in decryption with multichannel After commit…