CVE-2025-22094 powerpc/perf: Fix ref-counting on the PMU 'vpa_pmu'

In the Linux kernel, the following vulnerability has been resolved: powerpc/perf: Fix ref-counting on the PMU 'vpapmu' Commit 176cda0619b6 "powerpc/perf: Add perf interface to expose vpa counters" introduced 'vpapmu' to expose Book3s-HV nested APIv2 provided L1L2 context switch latency counters t...

CVE-2025-22050

The CVE-2025-22050 entry concerns the Linux kernel USB networking path. A race between usb_submit_urb and __usbnet_queue_skb occurs due to a missing usbnet_going_away check in usb_submit_urb, while __usbnet_queue_skb performs this validation. This can let a URB proceed while the corresponding SKB...

CVE-2025-22050 usbnet:fix NPE during rx_complete

In the Linux kernel, the following vulnerability has been resolved: usbnet:fix NPE during rxcomplete Missing usbnetgoingaway Check in Critical Path. The usbsubmiturb function lacks a usbnetgoingaway validation, whereas usbnetqueueskb includes this check. This inconsistency creates a race conditio...

CVE-2025-22032 wifi: mt76: mt7921: fix kernel panic due to null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix kernel panic due to null pointer dereference Address a kernel panic caused by a null pointer dereference in the mt792xrxgetwcid function. The issue arises because the deflink structure is not properly...

CVE-2025-22032 wifi: mt76: mt7921: fix kernel panic due to null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix kernel panic due to null pointer dereference Address a kernel panic caused by a null pointer dereference in the mt792xrxgetwcid function. The issue arises because the deflink structure is not properly...

CVE-2025-22033 arm64: Don't call NULL in do_compat_alignment_fixup()

In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in docompatalignmentfixup doalignmentt32tohandler only fixes up alignment faults for specific instructions; it returns NULL otherwise e.g. LDREX. When that's the case, signal to the caller that it needs to...

CVE-2025-22032 wifi: mt76: mt7921: fix kernel panic due to null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix kernel panic due to null pointer dereference Address a kernel panic caused by a null pointer dereference in the mt792xrxgetwcid function. The issue arises because the deflink structure is not properly...

CVE-2025-22032

CVE-2025-22032 affects the Linux kernel wifi driver (mt76/mt7921). The vulnerability stems from mt792x_rx_get_wcid dereferencing an uninitialized deflink because it isn’t correctly linked to the sta context, causing a kernel NULL pointer dereference and a subsequent panic. A patch fixes the linka...

CVE-2025-22033 arm64: Don't call NULL in do_compat_alignment_fixup()

In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in docompatalignmentfixup doalignmentt32tohandler only fixes up alignment faults for specific instructions; it returns NULL otherwise e.g. LDREX. When that's the case, signal to the caller that it needs to...

CVE-2025-22032

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix kernel panic due to null pointer dereference Address a kernel panic caused by a null pointer dereference in the mt792xrxgetwcid function. The issue arises because the deflink structure is not properly...

PT-2025-38572

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.6.0-39 and earlier Description A NULL pointer dereference issue was identified within the tee shm put function of the Linux kernel. Specifically, a check was missing in tee shm put, leading to a potential crash when shm...

PT-2025-29010

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's Wi-Fi subsystem related to the ath12k driver. The issue involves potential corruption of nodes within the ar-arvifs list during WLAN recovery...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a kernel panic that could be triggered by f2fs on a fallocation failure...

PT-2025-16734 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the powerpc/perf component. The issue arises from the introduction of the 'vpa pmu' PMU, which does not assign ownersh...

PT-2025-16672 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.12.13 Description: A kernel panic is caused by a null pointer dereference in the mt792x rx get wcid function. The issue arises because the deflink structure is not properly initialized with the sta context. Th...

PT-2025-20344

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A kernel panic issue has been resolved in the Linux kernel. The problem occurred when accessing the IRQ handler associated with a generated IRQ, which was fixed by acquiring a spinlock a...

PT-2025-25808

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for this issue Description A vulnerability in the Linux kernel has been resolved. The issue occurs when calling core::fmt::write from Rust code while FineIBT is enabled, resultin...

PT-2025-18440

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version containing commit 8284066946e6 Description A null pointer dereference issue has been identified in the Linux kernel's ublk driver, specifically in the handling of recovery and reissue in ublk abort...

PT-2025-18454

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability has been identified in the Linux kernel related to virtiofs, where in certain scenarios, such as during fuzz testing, the source name may be NULL. This could lead to a...

SUSE CVE-2025-21973

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix kernel panic in the bnxtgetqueuestatsrx | tx When qstats-get operation is executed, callbacks of netdevstatsops are called. The bnxtgetqueuestatsrx | tx collect per-queue stats from swstats in the rings. But rx | t...