CVE-2025-68218

CVE-2025-68218 relates to a Linux kernel fix for nvme-multipath deadlock risk. Blktests nvme/014,057,058 could trigger a lockdep WARN indicating a dependency cycle among disk/open_mutex, kblockd workqueue completion, and partition_scan_work. The fix cuts the dependency by moving partition_scan_wo...

CVE-2025-68214 timers: Fix NULL function pointer race in timer_shutdown_sync()

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...

CVE-2025-68214

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...

CVE-2025-68191

In the Linux kernel, CVE-2025-68191 is addressed by replacing netdev_WARN() with netdev_warn() in udp_tunnel_nic_register(). The old netdev_WARN() prints a backtrace via WARN/WARN_ON, which is inappropriate for an error that is simply a normal memory-allocation failure (kzalloc() or udp_tunnel_ni...

CVE-2025-68191 udp_tunnel: use netdev_warn() instead of netdev_WARN()

In the Linux kernel, the following vulnerability has been resolved: udptunnel: use netdevwarn instead of netdevWARN netdevWARN uses WARN/WARNON to print a backtrace along with file and line information. In this case, udptunnelnicregister returning an error is just a failed operation, not a kernel...

CVE-2025-40359

CVE-2025-40359 concerns a kernel KASAN global-out-of-bounds read triggered by perf/x86/intel on non-hybrid platforms. The initial description notes the issue arises from __grt_latency_data() accessing hybrid_pmu(event->pmu) unconditionally and warns with WARN_ON_ONCE for hybrid PMU types, caus...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a competing condition between timershutdownsync and timer expiration, which could result in WARNON being trigger...

PT-2025-51627

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists within the timer subsystem, specifically in the timer shutdown sync function, potentially leading to a kernel warning. This occurs when the timer function pointer...

PT-2025-51612

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0-rc1+ Description The Linux kernel contains a flaw related to the handling of CODETAG EMPTY in the mark objexts empty function for slab object extensions. Specifically, when a slab extension vector allocati...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991207)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991207 advisory. In the Linux kernel, the following vulnerability has been resolved: kprobes: don't call disarmkprobe for disabled kprobes The assumption in disablekprobe is wrong, a...

CVE-2023-53831

A data race was found in the Linux kernel's networking stack. The skmcloop function reads sk-skfamily without proper synchronization while another thread may be changing it via IPV6ADDRFORM socket option. This race can cause the function to take an unexpected code path, triggering a WARNONONCE or...

SUSE CVE-2022-50661

In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copyseccomp to no failure path. Our syzbot instance reported memory leaks in doseccomp 0, similar to the report 1. It shows that we miss freeing struct seccompfilter and some objects included in it. We can reproduce...

SUSE CVE-2023-53866

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcmmutex If paniconwarn is set and compress streamDPCM is started, then kernel panic occurred because card-pcmmutex isn't held appropriately. In the following functions, warning were issued ...

EUVD-2023-60165

In the Linux kernel, the following vulnerability has been resolved: net: read sk-skfamily once in skmcloop syzbot is playing with IPV6ADDRFORM quite a lot these days, and managed to hit the WARNONONCE1 in skmcloop We have many more similar issues to fix. WARNING: CPU: 1 PID: 1593 at...

DEBIAN-CVE-2023-53866

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcmmutex If paniconwarn is set and compress streamDPCM is started, then kernel panic occurred because card-pcmmutex isn't held appropriately. In the following functions, warning were issued ...

DEBIAN-CVE-2023-53841

In the Linux kernel, the following vulnerability has been resolved: devlink: report devlinkporttypewarn source device devlinkporttypewarn is scheduled for port devlink and warning when the port type is not set. But from this warning it is not easy found out which device driver has no devlink port...

CVE-2023-53831

In the Linux kernel, the following vulnerability has been resolved: net: read sk-skfamily once in skmcloop syzbot is playing with IPV6ADDRFORM quite a lot these days, and managed to hit the WARNONONCE1 in skmcloop We have many more similar issues to fix. WARNING: CPU: 1 PID: 1593 at...

DEBIAN-CVE-2022-50661

In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copyseccomp to no failure path. Our syzbot instance reported memory leaks in doseccomp 0, similar to the report 1. It shows that we miss freeing struct seccompfilter and some objects included in it. We can reproduce...

CVE-2023-53866 ASoC: soc-compress: Reposition and add pcm_mutex

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcmmutex If paniconwarn is set and compress streamDPCM is started, then kernel panic occurred because card-pcmmutex isn't held appropriately. In the following functions, warning were issued ...

CVE-2023-53866

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcmmutex If paniconwarn is set and compress streamDPCM is started, then kernel panic occurred because card-pcmmutex isn't held appropriately. In the following functions, warning were issued ...