21727 matches found
bpf: Guard stack limits against 32bit overflow
...
drm/amd/display: Fix hang/underflow when transitioning to ODM4:1
...
media: rkisp1: Fix IRQ handling due to shared interrupts
...
Chromium: CVE-2025-10892 Integer overflow in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-10891 Integer overflow in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-10890 Side-channel information leakage in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
...
mm/slub: Avoid list corruption when removing a slab from the full list
...
f2fs: fix to shrink read extent node in batches
...
mm/hugetlb: fix missing hugetlb_lock for resv uncharge
...
btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations
...
Kata Containers coco-tdx malicious host can circumvent initdata verification
...
drm/vc4: don't check if plane->state->fb == state->fb
...
cpu/hotplug: Don't offline the last non-isolated CPU
...
riscv: VMAP_STACK overflow detection thread-safe
...
memstick/mspro_block: fix handling of read-only devices
...
parisc: Fix non-access data TLB cache flush faults
...
ASoC: mediatek: Fix error handling in mt8183_da7219_max98357_dev_probe
...
Bluetooth: hci_event: Ignore multiple conn complete events
...
drm/amd/pm: fix a potential gpu_metrics_table memory leak
...
libceph: fix invalid accesses to ceph_connection_v1_info
...
net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable()
...
mm/memory-failure: fix VM_BUG_ON_PAGE(PagePoisoned(page)) when unpoison memory
...
can: xilinx_can: xcan_write_frame(): fix use-after-free of transmitted SKB
...
bpf: Tell memcg to use allow_spinning=false path in bpf_timer_init()
...
kernfs: Fix UAF in polling when open file is released
...
axboe fio options.c str_buffer_pattern_cb null pointer dereference
...
OmniParser Remote Code Execution Vulnerability
Binding to an unrestricted ip address in GitHub allows an unauthorized attacker to execute code over a network...
dmaengine: ti: edma: Fix memory allocation size for queue_priority_map
...
netfilter: nft_set_pipapo: fix null deref for empty set
...
mm/damon/sysfs: fix use-after-free in state_show()
...
ocfs2: fix recursive semaphore deadlock in fiemap call
...
axboe fio init.c __parse_jobs_ini use after free
...
net: dsa: Avoid cross-chip syncing of VLAN filtering
...
REXML has a DoS condition when parsing malformed XML file
...
WAMR runtime hangs or crashes with large memory.fill addresses in LLVM-JIT mode
...
cifs: prevent NULL pointer dereference in UTF16 conversion
...
pcmcia: Fix a NULL pointer dereference in __iodyn_find_io_region()
...
ax25: properly unshare skbs in ax25_kiss_rcv()
...
fs: writeback: fix use-after-free in __mark_inode_dirty()
...
wifi: cfg80211: fix use-after-free in cmp_bss()
...
Bluetooth: vhci: Prevent use-after-free by removing debugfs files early
...
wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info work
...
Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen()
...
mm: move page table sync declarations to linux/pgtable.h
...
ppp: fix memory leak in pad_compress_skb
...
scsi: lpfc: Fix buffer free/clear order in deferred receive path
...
net/smc: fix one NULL pointer dereference in smc_ib_is_sg_need_sync()
...
ocfs2: prevent release journal inode after journal shutdown
...
x86/mm/64: define ARCH_PAGE_TABLE_SYNC_MASK and arch_sync_kernel_mappings()
...