CVE-2026-46099

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6inputcore and rplinput call ip6routeinput which sets a NOREF dst on the skb, then pass it to dstcachesetip6 invoking dsthold unconditionally. On PREEMPTRT, ksoftirqd is...

CVE-2026-43418

In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Prevent CID stalls due to concurrent forks A newly forked task is accounted as MMCID user before the task is visible in the process' thread list and the global task list. This creates the following problem: CPU1 CPU2...

CVE-2026-23290

In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: validate USB endpoints The pegasus driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not...

CVE-2025-38375 affecting package kernel for versions less than 5.15.200.1-1

CVE-2025-38375 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-38666 affecting package kernel for versions less than 5.15.200.1-1

CVE-2025-38666 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-23015

In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpiompsseprobe error paths The reference obtained by calling usbgetdev is not released in the gpiompsseprobe error paths. Fix that by using device managed helper functions. Also remove the...

CVE-2025-40137

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to truncate first page in error path of f2fstruncate syzbot reports a bug as below: loop0: detected capacity change from 0 to 40427 F2FS-fs loop0: Wrong SSA boundary, start3584 end4096 blocks3072 F2FS-fs loop0: Can't fi...

CVE-2025-40130

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix data race in CPU latency PM QoS request handling The cpulatencyqosadd/remove/updaterequest interfaces lack internal synchronization by design, requiring the caller to ensure thread safety. The current...

CVE-2022-50552

In the Linux kernel, the following vulnerability has been resolved: blk-mq: use quiesced elevator switch when reinitializing queues The hctx's runwork may be racing with the elevator switch when reinitializing hardware queues. The queue is merely frozen in this context, but that only prevents...

CVE-2025-38648 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-38648 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-53378

In the Linux kernel, the following vulnerability has been resolved: drm/i915/dpt: Treat the DPT BO as a framebuffer Currently i915gemobjectisframebuffer doesn't treat the BO containing the framebuffer's DPT as a framebuffer itself. This means eg. that the shrinker can evict the DPT BO while leavi...

CVE-2022-50161

In the Linux kernel, the following vulnerability has been resolved: mtd: maps: Fix refcount leak in offlashprobeversatile offindmatchingnodeandmatch returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

CVE-2025-22030

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: fix cryptofreeacomp deadlock in zswapcpucompdead Currently, zswapcpucompdead calls cryptofreeacomp while holding the per-CPU acompctx mutex. cryptofreeacomp then holds scomplock through cryptoexitscompopsasync. On the...

CVE-2025-21983

In the Linux kernel, the following vulnerability has been resolved: mm/slab/kvfreercu: Switch to WQMEMRECLAIM wq Currently kvfreercu APIs use a system workqueue which is "systemunboundwq" to driver RCU machinery to reclaim a memory. Recently, it has been noted that the following kernel warning ca...

CVE-2024-56675 affecting package kernel for versions less than 6.6.76.1-1

CVE-2024-56675 affecting package kernel for versions less than 6.6.76.1-1. An upgraded version of the package is available that resolves this issue...

Linux Distros Unpatched Vulnerability : CVE-2024-47711

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: afunix: Don't return OOB skb in manageoob. syzbot reported use-after-free in...

CVE-2024-56624

In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix outfput in iommufdfaultalloc As fput calls the file-fop-release op, where fault obj and ictx are getting released, there is no need to release these two after fput one more time, which would result in imbalanced...

CVE-2024-26875 affecting package kernel for versions less than 5.15.167.1-2

CVE-2024-26875 affecting package kernel for versions less than 5.15.167.1-2. A patched version of the package is available...

CVE-2024-46737 affecting package kernel for versions less than 6.6.51.1-5

CVE-2024-46737 affecting package kernel for versions less than 6.6.51.1-5. An upgraded version of the package is available that resolves this issue...

CVE-2024-23849 affecting package kernel for versions less than 6.6.35.1-4

CVE-2024-23849 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...