Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/11/12 5:15 p.m.•1 views

CVE-2025-59088

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request f...

8.6CVSS7.3AI score0.00406EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•3 views

CVE-2025-40160

In the Linux kernel, the following vulnerability has been resolved: xen/events: Return -EEXIST for bound VIRQs Change findvirq to return -EEXIST when a VIRQ is bound to a different CPU than the one passed in. With that, remove the BUGON from bindvirqtoirq to propogate the error upwards. Some VIRQ...

5.7AI score0.00166EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40144

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00032EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40162

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd/sdwutils: avoid NULL deref when devmkasprintf fails devmkasprintf may return NULL on memory allocation failure, but the debug message prints cpus-dainame before checking it. Move the devdbg call after the NULL check to...

5.7AI score0.00164EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•4 views

CVE-2025-40150

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid migrating empty section It reports a bug from device w/ zufs: F2FS-fs dm-64: Inconsistent segment 173822 type 1, 0 in SSA and SIT F2FS-fs dm-64: Stopped filesystem due to reason: 4 Thread A Thread B -...

5.7AI score0.00218EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40166

In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Check GuC running state before deregistering exec queue In normal operation, a registered exec queue is disabled and deregistered through the GuC, and freed only after the GuC confirms completion. However, if the driv...

5.7AI score0.00164EPSS
Exploits0References19
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40148

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL pointer checks in dcstream cursor attribute functions The function dcstreamsetcursorattributes currently dereferences the stream pointer and nested members stream-ctx-dc-currentstate without checking for...

5.8AI score0.00201EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40120

In the Linux kernel, the following vulnerability has been resolved: net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock Prevent USB runtime PM autosuspend for AX88772 in bind. usbnet enables runtime PM autosuspend by default, so disabling it via the usbdriver flag is ineffective. O...

5.7AI score0.00183EPSS
Exploits0References37
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•8 views

CVE-2025-40118

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

5.8AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40147

In the Linux kernel, the following vulnerability has been resolved: blk-throttle: fix access race during throttle policy activation On repeated cold boots we occasionally hit a NULL pointer crash in blkshouldthrotl when throttling is consulted before the throttle policy is fully enabled for the...

5.8AI score0.00216EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40172

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Treat remaining == 0 as error in findandmapuserpages Currently, if findandmapuserpages takes a DMA xfer request from the user with a length field set to 0, or in a rare case, the host receives QAICTRANSDMAXFERCONT fro...

5.8AI score0.00166EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40132

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sofsdw: Prevent jump to NULL addsidecar callback In createsdwdailink check that sofend-codecinfo-addsidecar is not NULL before calling it. The original code assumed that if includesidecar is true, the codec on that...

5.8AI score0.00176EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40170

In the Linux kernel, the following vulnerability has been resolved: net: use dstdevrcu in sksetupcaps Use RCU to protect accesses to dst-dev from sksetupcaps and skdstgsomaxsize. Also use dstdevrcu in ip6dstmtumaybeforward, and ipdstmtumaybeforward. ip4dsthoplimit can use dstdevnetrcu...

6.2AI score0.0017EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40164

In the Linux kernel, the following vulnerability has been resolved: usbnet: Fix using smpprocessorid in preemptible code warnings Syzbot reported the following warning: BUG: using smpprocessorid in preemptible 00000000 code: dhcpcd/2879 caller is usbnetskbreturn+0x74/0x490...

5.5CVSS5.9AI score0.00171EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40138

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid NULL pointer dereference in f2fscheckquotaconsistency syzbot reported a f2fs bug as below: Oops: gen 107.736417 T5848 Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 ...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•10 views

CVE-2025-40116

In the Linux kernel, the following vulnerability has been resolved: usb: host: max3421-hcd: Fix error pointer dereference in probe cleanup The kthreadrun function returns error pointers so the max3421hcd-spithread pointer can be either error pointers or NULL. Check for both before dereferencing i...

5.7AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•3 views

CVE-2025-40168

In the Linux kernel, the following vulnerability has been resolved: smc: Use skdstget and dstdevrcu in smcclcprfxmatch. smcclcprfxmatch is called from smclistenwork and not under RCU nor RTNL. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the returned value o...

5.7AI score0.00154EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40139

In the Linux kernel, the following vulnerability has been resolved: smc: Use skdstget and dstdevrcu in in smcclcprfxset. smcclcprfxset is called during connect and not under RCU nor RTNL. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and devdstrcu under rcureadlock after...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40149

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

7.8CVSS6.2AI score0.00142EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40152

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix bootup splat with separategpudrm modparam The drmgemforeachgpuvmbo call from lookupvma accesses drmgemobj.gpuva.list, which is not initialized when the drm driver does not support DRIVERGEMGPUVA feature. Enable it fo...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40154

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB...

5.7AI score0.00175EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•4 views

CVE-2025-40123

In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce expectedattachtype for tailcall compatibility Yinhao et al. recently reported: Our fuzzer tool discovered an uninitialized pointer issue in the bpfprogtestrunxdp function within the Linux kernel's BPF subsystem. This...

5.7AI score0.00178EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40129

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix null pointer dereference on zero-length checksum In xdrstreamdecodeopaqueauth, zero-length checksum.len causes checksum.data to be set to NULL. This triggers a NPD when accessing checksum.data in gsskrb5verifymicv2...

5.7AI score0.00178EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•3 views

CVE-2025-40122

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix IA32PMCxCFGB MSRs access error When running perffuzzer on PTL, sometimes the below "unchecked MSR access error" is seen when accessing IA32PMCxCFGB MSRs. 55.611268 unchecked MSR access error: WRMSR to 0x1986...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•4 views

CVE-2025-40124

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC III Anthony Yznaga tracked down that a BUGON in ext4 code with large folios enabled resulted from copyfromuser returning impossibly large values greater tha...

5.8AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40117

In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix array underflow in pciendpointtestioctl Commit eefb83790a0d "misc: pciendpointtest: Add doorbell test case" added NOBAR -1 to the pcibarno enum which, in practical terms, changes the enum from an unsign...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40136

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - request reserved interrupt for virtual function The device interrupt vector 3 is an error interrupt for physical function and a reserved interrupt for virtual function. However, the driver has not registere...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40133

In the Linux kernel, the following vulnerability has been resolved: mptcp: Use skdstget and dstdevrcu in mptcpactiveenable. mptcpactiveenable is called from subflowfinishconnect, which is icsk-icskafops-skrxdstset and it's not always under RCU. Using skdstgetsk-dev could trigger UAF. Let's use...

5.7AI score0.00176EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40115

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix crash in transport port remove by using iocinfo During mpt3sastransportportremove, messages were logged with devprintk against &mpt3sasport-port-dev. At this point the SAS transport device may already be...

5.7AI score0.00192EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40113

In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcom: pas: Shutdown lite ADSP DTB on X1E The ADSP firmware on X1E has separate firmware binaries for the main firmware and the DTB. The same applies for the "lite" firmware loaded by the boot firmware. When preparing ...

5.8AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40121

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5651: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver just ignores and leaves as is, which may lead to unepxected results like OOB access. This...

5.7AI score0.00192EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40153

In the Linux kernel, the following vulnerability has been resolved: mm: hugetlb: avoid soft lockup when mprotect to large memory area When calling mprotect to a large hugetlb memory area in our customer's workload 300GB hugetlb memory, soft lockup was observed: watchdog: BUG: soft lockup - CPU98...

5.7AI score0.00175EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40119

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential null deref in ext4mbinit In ext4mbinit, ext4mbavgfragmentsizedestroy may be called when sbi-smbavgfragmentsize remains uninitialized e.g., if groupinfo slab cache allocation fails. Since...

5.6AI score0.00177EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40155

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

5.7AI score0.00196EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40151

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: No support of struct argument in trampoline programs The current implementation does not support struct argument. This causes a oops when running bpf selftest: $ ./testprogs -a tracingstruct Oops1: CPU -1 Unable t...

5.7AI score0.00165EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•6 views

CVE-2025-40157

In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller When loading the i10nmedac driver on some Intel Granite Rapids servers, a call trace may appear as follows: UBSAN: shift-out-of-bounds in...

5.7AI score0.00203EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40145

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Fix double cleanup on devmaddactionorreset failure When devmaddactionorreset fails, it calls the passed cleanup function. Hence the caller must not repeat that cleanup. Replace the "goto errregulatorfree" by the actu...

5.7AI score0.00201EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40161

In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix SGI cleanup on unbind The driver incorrectly determines SGI vs SPI interrupts by checking IRQ number 16, which fails with dynamic IRQ allocation. During unbind, this causes improper SGI cleanup leading to...

5.7AI score0.00164EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40141

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix possible UAF on isoconnfree This attempt to fix similar issue to scoconnfree where if the conn-sk is not set to NULL may lead to UAF on isoconnfree...

5.7AI score0.00178EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40137

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to truncate first page in error path of f2fstruncate syzbot reports a bug as below: loop0: detected capacity change from 0 to 40427 F2FS-fs loop0: Wrong SSA boundary, start3584 end4096 blocks3072 F2FS-fs loop0: Can't fi...

5.7AI score0.00178EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40130

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix data race in CPU latency PM QoS request handling The cpulatencyqosadd/remove/updaterequest interfaces lack internal synchronization by design, requiring the caller to ensure thread safety. The current...

5.8AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40131

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix peer lookup in ath12kdpmonrxdelivermsdu In ath12kdpmonrxdelivermsdu, peer lookup fails because rxcb-peerid is not updated with a valid value. This is expected in monitor mode, where RX frames bypass the regular ...

5.7AI score0.00175EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40143

In the Linux kernel, the following vulnerability has been resolved: bpf: dont report verifier bug for missing bpfsccvisit on speculative path Syzbot generated a program that triggers a verifierbug call in maybeexitscc. maybeexitscc assumes that, when called for a state with insnidx in some SCC,...

5.9AI score0.0022EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40142

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Disable bottom softirqs as part of spinlockirq on PREEMPTRT sndpcmgrouplockirq acquires a spinlockt and disables interrupts via spinlockirq. This also implicitly disables the handling of softirqs such as TIMERSOFTIRQ. ...

5.7AI score0.00176EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•3 views

CVE-2025-40165

In the Linux kernel, the following vulnerability has been resolved: media: nxp: imx8-isi: m2m: Fix streaming cleanup on release If streamon/streamoff calls are imbalanced, such as when exiting an application with Ctrl+C when streaming, the m2m usagecount will never reach zero and the ISI channel...

5.7AI score0.00166EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40177

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix bootlog initialization ordering As soon as we queue MHI buffers to receive the bootlog from the device, we could be receiving data. Therefore all the resources needed to process that data need to be setup prior to...

5.7AI score0.00164EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•1 views

CVE-2025-40174

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Fix SMP ordering in switchmmirqsoff Stephen noted that it is possible to not have an smpmb between the loadedmm store and the tlbgen load in switchmm, meaning the ordering against flushtlbmmrange goes out the window, and ...

5.7AI score0.00154EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•3 views

CVE-2025-40175

In the Linux kernel, the following vulnerability has been resolved: idpf: cleanup remaining SKBs in PTP flows When the driver requests Tx timestamp value, one of the first steps is to clone SKB using skbget. It increases the reference counter for that SKB to prevent unexpected freeing by another...

5.7AI score0.00154EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40158

In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6output Use RCU in ip6output in order to use dstdevrcu to prevent possible UAF. We can remove rcureadlock/rcureadunlock pairs from ip6finishoutput2...

6.7AI score0.00193EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40163

In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Stop dlserver before CPU goes offline IBM CI tool reported kernel warning1 when running a CPU removal operation through drmgr2. i.e "drmgr -c cpu -r -q 1" WARNING: CPU: 0 PID: 0 at kernel/sched/cpudeadline.c:219...

5.7AI score0.00164EPSS
Exploits0References8
Total number of security vulnerabilities68528