kernel-rt (SUSE:Linux Micro 6.2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Micro 6.2 package kernel-rt, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2026-23240 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: tls: Fix race condition in tls_sw_cancel_work_tx() This issue was…
CVE-2026-45898 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption by removing work_list The…
CVE-2026-23112 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec…
CVE-2026-43414 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport double free In…
CVE-2026-22984 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handle_auth_done()…
CVE-2026-43341 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wraparound in trace fill…
CVE-2025-39946 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: tls: make sure to abort the stream if headers are bogus Normally we…
CVE-2026-31448 — CVSS 9.4 (critical): In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod…
CVE-2026-46316 — CVSS 9.3 (critical): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the…
CVE-2026-43197 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: netconsole: avoid OOB reads, msg is not nul-terminated msg passed to…
CVE-2026-46043 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv…
CVE-2026-23193 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_coun…
CVE-2026-23230 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to avoid shared-byte RMW races…
CVE-2026-43112 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath When…
CVE-2026-46317 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nested_mmus array behind mmu_lock…
CVE-2026-23425 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix ID register initialization for non-protected pKVM…
CVE-2026-23172 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: fix potential skb->frags overflow in RX path When…
CVE-2026-31788 — CVSS 8.2 (high): In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: restrict usage in unprivileged domU The Xen privcmd driver…
CVE-2026-45843 — CVSS 8.2 (high): In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length…
CVE-2026-31464 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() A…
CVE-2026-31613 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE…
CVE-2026-43362 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix in-place encryption corruption in SMB2_write()…
CVE-2025-39889 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Check encryption key size on incoming connection This…
CVE-2026-43009 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix incorrect pruning due to atomic fetch precision tracking When…
CVE-2026-31729 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: validate connector number in ucsi_notify_common() The…
CVE-2025-38087 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: fix use-after-free in taprio_dev_notifier Since taprio’s…
CVE-2026-31703 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_switch_wbs_work_fn()…
CVE-2026-31683 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: batman-adv: avoid OGM aggregation when skb tailroom is insufficient…
CVE-2026-31648 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nr_pages calculation overflow in filemap_map_pages()…
CVE-2025-38091 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: check stream id dml21 wrapper to get plane_id [Why &…
CVE-2026-31584 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix use-after-free in encoder release path The…
CVE-2026-31516 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: prevent policy_hthresh.work from racing with netns teardown A…
CVE-2026-31493 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/efa: Fix use of completion ctx after free On admin queue…
CVE-2025-38101 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix buffer locking in ring_buffer_subbuf_order_set()…
CVE-2026-31455 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: stop reclaim before pushing AIL during unmount The unmount…
CVE-2025-38106 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix use-after-free of sq->thread in __io_uring_show_fdinfo()…
CVE-2026-31454 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In…
CVE-2025-38109 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF…
CVE-2026-31446 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free in update_super_work when racing with umount…
CVE-2026-31401 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hid_hw_request right now the…
CVE-2026-31396 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is…
CVE-2026-23444 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure…
CVE-2025-38117 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Protect mgmt_pending list with its own lock This uses…
CVE-2025-38118 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix UAF on mgmt_remove_adv_monitor_complete This…
CVE-2026-23413 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: clsact: Fix use-after-free in init/destroy rollback asymmetry Fix a…
CVE-2026-23393 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bridge: cfm: Fix race condition in peer_mep deletion When a peer MEP is…
CVE-2026-23383 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic…
CVE-2026-23361 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint…
CVE-2026-23359 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stack-out-of-bounds write in devmap get_upper_ifindexes()…
CVE-2026-23343 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xdp: produce a warning when calculated tailroom is negative Many…
CVE-2026-23326 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xsk: Fix fragment node deletion to prevent buffer leak After commit…
CVE-2026-23319 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a UAF issue in bpf_trampoline_link_cgroup_shim The root cause…
CVE-2025-38129 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: page_pool: Fix use-after-free in page_pool_recycle_in_ring syzbot…
CVE-2026-23281 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix use-after-free in lbs_free_adapter() The…
CVE-2026-23278 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pending catchall elements During…
CVE-2026-23274 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels…
CVE-2025-38137 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's…
CVE-2026-23272 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump set->nelems before insertion…
CVE-2026-23270 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Only allow act_ct to bind to clsact/ingress qdiscs and…
CVE-2025-38141 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm: fix dm_blk_report_zones If dm_get_live_table() returned NULL…
CVE-2026-23262 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue count change The driver and…
CVE-2026-23243 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_umad_write ib_umad_write…
CVE-2025-38146 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix the dead loop of MPLS parse The unexpected MPLS…
CVE-2026-23239 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: espintcp: Fix race condition in espintcp_close() This issue was…
CVE-2026-23231 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix use-after-free in nf_tables_addchain()…
CVE-2026-23224 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: erofs: fix UAF issue for file-backed mounts w/ directio option […
CVE-2025-38154 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Avoid using sk_socket after free when sending The…
CVE-2026-23223 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_check_block_owner We cannot dereference…
CVE-2026-23222 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly…
CVE-2025-38157 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Abort software beacon handling if disabled A malicious…
CVE-2026-23221 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_override_show() The…
CVE-2026-23216 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()…
CVE-2026-23209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix error recovery in macvlan_common_newlink() valis provided…
CVE-2026-23208 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Prevent excessive number of frames In this case, the…
CVE-2026-23198 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when deassigning irqfd When…
CVE-2026-23191 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix racy access at PCM trigger The PCM trigger callback of…
CVE-2025-38172 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: erofs: avoid using multiple devices with different type For multiple…
CVE-2026-23178 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report()…
CVE-2026-23171 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bonding: fix use-after-free due to enslave fail after slave array…
CVE-2025-38180 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure…
CVE-2026-23169 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs_doit() syzbot and Eulgyu Kim…
CVE-2025-38182 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ublk: santizize the arguments from userspace when adding a device…
CVE-2026-23158 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser…
CVE-2026-23156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: efivarfs: fix error propagation in efivar_entry_get()…
CVE-2026-23111 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask check in…
CVE-2026-23105 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: qfq: Use cl_is_active to determine whether class is active…
CVE-2026-23103 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipvlan: Make the addrs_lock be per port Make the addrs_lock be per…
CVE-2026-23089 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() When…
CVE-2026-23083 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOU_ATTR_IPPROTO. fou_udp_recv() has the same…
CVE-2025-38198 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbcon: Make sure modelist not set on unregistered console It looks like…
CVE-2025-38201 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX…
CVE-2026-23078 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Fix buffer overflow in config retrieval The…
CVE-2026-23074 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be used as root qdisc Design…
CVE-2025-38209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: remove tag set when second admin queue config fails Commit…
CVE-2025-38211 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction…
CVE-2026-23073 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Fix memory corruption due to not set vif driver data size…
CVE-2026-23068 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver…
CVE-2026-23066 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recvmsg() unconditional requeue If rxrpc_recvmsg() fails…
CVE-2025-38216 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices…
CVE-2026-23010 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix use-after-free in inet6_addr_del(). syzbot reported…
CVE-2026-23004 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list()…
CVE-2026-23001 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlan_forward_source() Add RCU…
CVE-2026-22999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: do not free existing class in qfq_change_class()…
CVE-2026-22988 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: arp: do not assume dev_hard_header() does not change skb->head…
CVE-2025-38226 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: vivid: Change the siize of the composing syzkaller found a bug…
CVE-2025-38227 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization…
CVE-2026-22980 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: provide locking for v4_end_grace Writing to v4_end_grace can race…
CVE-2025-71234 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add The driver…
CVE-2025-71162 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: tegra-adma: Fix use-after-free A use-after-free bug exists…
CVE-2025-38233 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is…
CVE-2025-71157 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/core: always drop device refcount in ib_del_sub_device_and_put()…
CVE-2025-71156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gve: defer interrupt enabling until NAPI registration Currently…
CVE-2025-71145 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: phy: isp1301: fix non-OF device reference imbalance A recent…
CVE-2025-71143 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: clk: samsung: exynos-clkout: Assign .num before accessing .hws Commit…
CVE-2025-38245 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: atm: Release atm_dev_mutex after removing procfs in…
CVE-2025-71137 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" This patch ensures…
CVE-2025-71123 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix string copying in parse_apply_sb_mount_options()…
CVE-2025-71100 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()…
CVE-2025-71099 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() In…
CVE-2025-71091 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: team: fix check for port enabled in team_queue_override_port_prio_change…
CVE-2025-71089 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set Patch series "Fix stale IOTLB…
CVE-2025-38257 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdup_user()…
CVE-2025-71086 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: rose: fix invalid array index in rose_kill_by_device()…
CVE-2025-38259 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd9335: Fix missing free of regulator supplies Driver…
CVE-2025-71082 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: revert use of devm_kzalloc in btusb This reverts…
CVE-2025-71078 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/64s/slb: Fix SLB multihit issue during SLB preload On systems…
CVE-2025-71073 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Input: lkkbd - disable pending work before freeing device…
CVE-2025-71071 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/mediatek: fix use-after-free on probe deferral The driver is…
CVE-2025-38267 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not trigger WARN_ON() due to a commit_overrun When…
CVE-2025-40364 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix io_req_prep_async with provided buffers…
CVE-2025-38270 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: drv: netdevsim: don't napi_complete() from netpoll netdevsim…
CVE-2025-40149 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock()…
CVE-2025-39967 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcon_do_set_font Fix integer overflow…
CVE-2025-39963 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix incorrect io_kiocb reference in io_link_skb In…
CVE-2025-39957 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: increase scan_ies_len for S1G Currently the S1G…
CVE-2025-39955 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect(). syzbot…
CVE-2025-39952 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: avoid buffer overflow in WID string configuration Fix…
CVE-2025-39945 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cnic: Fix use-after-free bugs in cnic_delete_task The original code…
CVE-2025-38288 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix smp_processor_id() call trace for preemptible…
CVE-2025-38289 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Avoid potential ndlp use-after-free in dev_loss_tmo_callbk…
CVE-2025-39944 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() The…
CVE-2025-39917 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt Stanislav…
CVE-2025-39913 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to…
CVE-2025-39911 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path If…
CVE-2025-39896 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Prevent recovery work from being queued during device…
CVE-2025-38298 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: EDAC/skx_common: Fix general protection fault After loading i10nm_edac…
CVE-2025-39882 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: fix potential OF node use-after-free The…
CVE-2025-39881 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: kernfs: Fix UAF in polling when open file is released A use-after-free…
CVE-2025-39880 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: libceph: fix invalid accesses to ceph_connection_v1_info There is a…
CVE-2025-39877 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix use-after-free in state_show() state_show() reads…
CVE-2025-39873 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: can: xilinx_can: xcan_write_frame(): fix use-after-free of transmitted…
CVE-2025-39871 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Remove improper idxd_free The call to idxd_free()…
CVE-2025-39870 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix double free in idxd_setup_wqs() The clean up in…
CVE-2025-39866 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs: writeback: fix use-after-free in __mark_inode_dirty() An…
CVE-2025-39864 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmp_bss() Following bss_free()…
CVE-2025-39863 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info…
CVE-2025-38313 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix double-free on mc_dev The blamed commit tried to…
CVE-2025-39861 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: vhci: Prevent use-after-free by removing debugfs files early…
CVE-2025-38317 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix buffer overflow in debugfs If the user tries to write…
CVE-2025-39860 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen() syzbot…
CVE-2025-39859 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog The…
CVE-2025-39854 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL access of tx->in_use in ice_ll_ts_intr Recent versions of…
CVE-2025-39849 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() If…
CVE-2025-38323 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: add lec_mutex syzbot found its way in net/atm/lec.c, and…
CVE-2025-39841 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a…
CVE-2025-39836 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: efi: stmm: Fix incorrect buffer allocation method The communication…
CVE-2025-39835 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfs: do not propagate ENODATA disk errors into xattr code ENODATA (aka…
CVE-2025-39828 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control(). syzbot…
CVE-2025-39824 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: asus: fix UAF via HID_CLAIMED_INPUT validation After…
CVE-2025-38338 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/nfs/read: fix double-unlock bug in nfs_return_empty_folio()…
CVE-2025-39823 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use array_index_nospec with indices that come from guest min…
CVE-2025-38341 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: avoid double free when failing to DMA-map FW msg The…
CVE-2025-39810 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix memory corruption when FW resources change during ifdown…
CVE-2025-39797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan…
CVE-2025-39790 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote…
CVE-2025-39788 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE On Google…
CVE-2025-38348 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback() Robert…
CVE-2025-38349 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: eventpoll: don't decrement ep refcount while still holding the ep mutex…
CVE-2025-38350 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty…
CVE-2025-39783 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Fix configfs group list head handling Doing a list_del()…
CVE-2025-39766 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit…
CVE-2025-39738 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: do not allow relocation of partially dropped subvolumes [BUG]…
CVE-2025-39730 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() The function…
CVE-2025-39727 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm: swap: fix potential buffer overflow in setup_clusters() In…
CVE-2025-39723 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfs: Fix unbuffered write error handling If all the subrequests in an…
CVE-2025-39711 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: ivsc: Fix crash at shutdown due to missing mei_cldev_disable()…
CVE-2025-39701 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ACPI: pfr_update: Fix the driver update version check The…
CVE-2025-38361 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check dce_hwseq before dereferencing it [WHAT] hws was…
CVE-2025-39691 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/buffer: fix use-after-free when call bh_read() helper There's issue…
CVE-2025-39689 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ftrace: Also allocate and copy hash for reading of filter files…
CVE-2025-39686 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: comedi: Make insn_rw_emulate_bits() do insn->n samples The…
CVE-2025-38734 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/smc: fix UAF on smcsk after smc_listen_out() BPF CI testing report…
CVE-2025-38730 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring/net: commit partial buffers on retry Ring provided buffers are…
CVE-2025-38369 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Check availability of workqueue allocated by idxd wq…
CVE-2025-38729 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Validate UAC3 power domain descriptors, too UAC3 power…
CVE-2025-38724 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()…
CVE-2025-38722 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: habanalabs: fix UAF in export_dmabuf() As soon as we'd inserted a file…
CVE-2025-38718 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctp_rcv A cloned head skb still…
CVE-2025-38375 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size…
CVE-2025-38704 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer access In…