CVE-2025-38464

CVE-2025-38464 affects the Linux kernel Tipc subsystem. The issue is a use-after-free in tipc_conn_close() that can occur when tipc_topsrv_stop() iterates tipc_net(net)->topsrv->conn_idr and calls tipc_conn_close() for each tipc_conn after releasing the IDR lock. If tipc_conn_recv_work() is...

The vulnerability in the module drivers/media/usb/cx231xx/cx231xx-417.c of Linux kernel allows a hacker to cause a service failure.

The vulnerability in the module drivers/media/usb/cx231xx/cx231xx-417.c of Linux operating systems is related to incorrect handling of resource identifiers. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the set_boost() function in the drivers/cpufreq/amd-pstate.c kernel module of Linux operating systems allows a hacker to cause a system failure.

The vulnerability of the setboost function in the drivers/cpufreq/amd-pstate.c kernel module of Linux operating systems is related to insufficient resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the ath12k_core_halt() function in the drivers/net/wireless/ath/ath12k/core.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ath12kcorehalt function in the drivers/net/wireless/ath/ath12k/core.c file of the Linux kernel is related to the expiration of a resource’s lifespan. Exploiting this vulnerability could allow an attacker to cause a service failure...

kernel: cifs: potential buffer overflow in handling symlinks

A buffer overflow vulnerability has been identified in the Linux kernel's Common Internet File System CIFS module, specifically within the parsemfsymlink function. This flaw is caused by insufficient input validation on the linklen value, which dictates the length of a symbolic link. An attacker...

The vulnerability of the ath11k_core_halt() function in the drivers/net/wireless/ath/ath11k/core.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ath11kcorehalt function in the drivers/net/wireless/ath/ath11k/core.c kernel module of the Linux operating system is related to damage to a node in the arvifs list due to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a...

UBUNTU-CVE-2025-38298

In the Linux kernel, the following vulnerability has been resolved: EDAC/skxcommon: Fix general protection fault After loading i10nmedac which automatically loads skxedaccommon, if unload only i10nmedac, then reload it and perform error injection testing, a general protection fault may occur: mce...

The vulnerability of the ocfs2 function: The remove() component in the fs/ocfs2/xattr.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ocfs2 function: The remove component in the fs/ocfs2/xattr.c file of the Linux kernel is associated with pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ptp_ocp_probe() function in the drivers/ptp/ptp_ocp.c kernel module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the ptpocpprobe function in the drivers/ptp/ptpocp.c kernel module of the Linux operating system is related to security configuration errors. Exploiting this vulnerability can allow a attacker to cause service failures...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: nvkm: The available space of the GSP cmdq buffer is calculated correctly. r535gspcmdqpush waits for an available page in the GSP cmdq buffer when handling a large RPC request. When it encounters at least one available page in...

Trend Micro Apex One Virus Scan Engine Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Furthermore, the product is...

kernel: ext4: fix OOB read when checking dotdot dir

A flaw was found in the ext4 module in the Linux kernel. An out-of-bounds read can be triggered when a corrupted ext4 filesystem is mounted due to a missing check, resulting in a denial of service that causes the system to freeze or become unusable...

The vulnerability of the function ieee80211_if_parse_active_links() in the net/mac80211/debugfs_netdev.c kernel module of Linux systems allows a hacker to cause a service failure.

The vulnerability of the function ieee80211ifparseactivelinks in the net/mac80211/debugfsnetdev.c module of the Linux kernel is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the breakpoint_handler() function in the arch/arm/kernel/hw_breakpoint.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the breakpointhandler function in the arch/arm/kernel/hwbreakpoint.c module of the Linux operating system is related to incorrect checking of the return value of the function. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the kernel module drivers/base/topology.c of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the drivers/base/topology.c module in the Linux operating system is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

DEBIAN-CVE-2025-37995

In the Linux kernel, the following vulnerability has been resolved: module: ensure that kobjectput is safe for module type kobjects In 'lookuporcreatemodulekobject', an internal kobject is created using 'modulektype'. So call to 'kobjectput' on error handling path causes an attempt to use an...

CVE-2025-37995

In the Linux kernel, the following vulnerability has been resolved: module: ensure that kobjectput is safe for module type kobjects In 'lookuporcreatemodulekobject', an internal kobject is created using 'modulektype'. So call to 'kobjectput' on error handling path causes an attempt to use an...

CVE-2024-22830

Anti-Cheat Expert's Windows kernel module "ACE-BASE.sys" version 1.0.2202.6217 does not perform proper access control when handling system resources. This allows a local attacker to escalate privileges from regular user to System or PPL level...

CVE-2023-52550

Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2023-44119

Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability...