Lucene search
K
LinuxLinux Kernel

14330 matches found

CVE
CVE
added 2025/04/01 3:26 p.m.54 views

CVE-2025-21896

CVE-2025-21896 affects the Linux kernel fuse readahead path. The issue arose when converting readahead to folios: folio references were dropped after locking, breaking the expected reference on ap->folios during splice operations, risking use-after-free in readpages. The fix reverts to __reada...

7.8CVSS7.2AI score0.00198EPSS
CVE
CVE
added 2025/06/18 9:33 a.m.54 views

CVE-2025-38039

CVE-2025-38039 affects the Linux kernel's net/mlx5e driver in scenarios where MQPRIO is enabled while HTB offload is already configured. The vulnerability arises when the driver previously returned -EINVAL and triggered a WARN_ON, potentially generating a call trace. A patch was applied to handle...

5.5CVSS6.7AI score0.00159EPSS
CVE
CVE
added 2025/06/18 9:33 a.m.54 views

CVE-2025-38070

The CVE-2025-38070 entry concerns the Linux kernel ASoC sma1307 driver. The vulnerability arises from missing NULL checks in sma1307_setting_loaded(), with allocations via kzalloc and devm_kzalloc that could be NULL. The connected Astra Linux advisory confirms this description and notes that mult...

5.5CVSS6.4AI score0.0013EPSS
CVE
CVE
added 2025/07/03 8:35 a.m.54 views

CVE-2025-38140

CVE-2025-38140 concerns a Linux kernel vulnerability in the dm (device-mapper) layer affecting devices with zone write plugs. The issue in dm_revalidate_zones() could cause the device’s zoned settings to diverge from the new table, and if zone write plug resources are present, reading bdev_zone_i...

5.5CVSS7.3AI score0.00137EPSS
CVE
CVE
added 2025/08/16 9:34 a.m.54 views

CVE-2025-38502

Technical details beyond the initial description are not provided in the connected documents; no explicit product/version, impact specifics, or remediation are present here. Monitor for updates.

7.1CVSS6.4AI score0.00146EPSS
CVE
CVE
added 2025/08/19 5:2 p.m.54 views

CVE-2025-38572

CVE-2025-38572 affects the Linux kernel IPv6 path, where an attacker could craft IPv6 extension headers to overflow skb->transport_header via ipv6_gso_segment() when processing very long headers. The root cause is related to the 16-bit transport header field handling, with a suggested fix addi...

7.8CVSS7.3AI score0.0018EPSS
CVE
CVE
added 2026/01/25 2:36 p.m.54 views

CVE-2026-22997

The CVE-2026-22997 issue affects the Linux kernel CAN/J1939 subsystem. The root cause is that j1939_session_deactivate_activate_next() is only invoked in j1939_tp_rxtimer() when the timer is enabled, allowing a refcount leak if the timer is cancelled without calling the function. This can lead to...

7.5CVSS5.2AI score0.00424EPSS
CVE
CVE
added 2026/01/25 2:36 p.m.54 views

CVE-2026-22999

CVE-2026-22999 is addressed by fixes in the Linux kernel's net/sched code: sch_qfq now avoids freeing an existing class in qfq_change_class() unless a new class and qdisc are allocated, preventing potential use-after-free (UAF). The Ubuntu/Ubuntu USN and SUSE SUSE-SU-2026:1305-1 advisories list t...

7.8CVSS5.2AI score0.00204EPSS
CVE
CVE
added 2026/04/13 1:21 p.m.54 views

CVE-2026-31414

CVE-2026-31414 (Linux kernel netfilter nf_conntrack_expect) The vulnerability arises from using nfct_help() without holding a reference to the master conntrack, leading to unsafe references when the helper is dumped via ctnetlink and /proc. The fix switches to using exp->master->helper in t...

9.8CVSS5.7AI score0.00381EPSS
CVE
CVE
added 2026/05/27 12:56 p.m.54 views

CVE-2026-46043

The CVE-2026-46043 detail shows a Linux kernel RDMA/rxe issue in rxe_rcv() where payload_size() could underflow due to attacker-controlled BTH pad and RXE_ICRC_SIZE not being accounted for in the initial length check. The fix requires validating paylen against the full minimum length: header_size...

9.1CVSS5.8AI score0.00514EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.53 views

CVE-1999-0330

The CVE-1999-0330 entry concerns the Linux bdash game and a buffer overflow that allows local users to gain root access. The connected documents corroborate a local-privilege-elevation flaw in the bdash game kernel/user-space handling, with no explicit product version, patch, or root-cause code s...

7.2CVSS7.8AI score0.00414EPSS
CVE
CVE
added 2000/04/25 4:0 a.m.53 views

CVE-1999-0780

CVE-1999-0780 affects KDE klock. The vulnerability allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file. The available connected documents confirm this specific behavior and do not provide additional technical details (e.g., root cause, affected versi...

4.6CVSS7.1AI score0.00323EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.53 views

CVE-1999-1341

CVE-1999-1341 concerns the Linux kernel before 2.3.18 or 2.2.13pre15, when compiled with SLIP and PPP options, allowing a local unprivileged user to forge IP packets via the TIOCSETD option on tty devices. The vulnerability enables local access to tamper with packet data, with partial impacts to ...

4.6CVSS6.7AI score0.00407EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.53 views

CVE-2002-1319

The CVE-2002-1319 issue affects the Linux kernel on x86, specifically versions 2.4.20 and earlier and 2.5.x. The root cause is a flaw in emulation mode where TF and NT EFLAGS are not properly cleared, enabling a local user to cause a denial of service (hang). The impact is a local DoS without rem...

2.1CVSS6.2AI score0.00373EPSS
CVE
CVE
added 2005/06/01 4:0 a.m.53 views

CVE-2004-2136

The CVE-2004-2136 entry concerns dm-crypt in the Linux kernel (2.6.x) used on certain filesystems with block sizes of 1024 or greater. The underlying issue is an IV computation weakness in the encryption mode that can allow watermarked files to be detected without decrypting the data. The availab...

2.1CVSS6.9AI score0.00517EPSS
CVE
CVE
added 2005/04/05 4:0 a.m.53 views

CVE-2005-0977

The CVE-2005-0977 entry concerns the Linux kernel 2.6 tmpfs shmem_nopage function, where the address argument is not properly verified in shmem.c. This allows a local user to trigger a denial of service (kernel crash) via an invalid address. Public advisories (RHSA-2005:366 / CESA-2005:366) indic...

2.1CVSS6AI score0.00357EPSS
CVE
CVE
added 2009/11/20 2:0 a.m.53 views

CVE-2009-4004

CVE-2009-4004 : The Linux kernel KVM subsystem (arch/x86/kvm/x86.c, function kvm_vcpu_ioctl_x86_setup_mce) is vulnerable to a buffer overflow when processing the KVM_X86_SETUP_MCE IOCTL if a large number of Machine Check Exception (MCE) banks is specified. This can lead to denial of service (memo...

7.8CVSS7.7AI score0.00406EPSS
CVE
CVE
added 2017/05/12 3:0 p.m.53 views

CVE-2016-10283

CVE-2016-10283 is an elevation-of-privilege flaw in the Qualcomm Wi‑Fi driver for Android that allows a local malicious app to execute arbitrary code in the kernel context after compromising a privileged process. The issue affects Kernel-3.10/3.18 Android builds (Android 5.x–7.x era devices inclu...

7.6CVSS6.6AI score0.01709EPSS
CVE
CVE
added 2017/05/12 3:0 p.m.53 views

CVE-2016-10291

CVE-2016-10291 involves an elevation of privilege in the Qualcomm Slimbus driver affecting Android kernels (Kernel-3.10). The issue allows a local malicious app to execute arbitrary code in the kernel context via this driver. Public exploitation details are not provided in the supplied documents....

7.6CVSS6.6AI score0.01467EPSS
CVE
CVE
added 2017/01/12 3:0 p.m.53 views

CVE-2016-6760

CVE-2016-6760: Elevation of privilege in Qualcomm Media Codecs affecting Android. A local malicious app could execute arbitrary code in a privileged process via the Qualcomm Media Codecs component. Affected products/versions include Android devices with Kernel 3.10 and 3.18. The issue is categori...

9.3CVSS7.3AI score0.01606EPSS
CVE
CVE
added 2017/02/08 3:0 p.m.53 views

CVE-2016-8414

CVE-2016-8414 is an information-disclosure vulnerability in the Qualcomm Secure Execution Environment Communicator affecting Android. It permits a local attacker with a compromised privileged process to access data outside its permissions. Affected components are the Android kernel (Kernel-3.10 a...

4.7CVSS4.4AI score0.00672EPSS
CVE
CVE
added 2017/02/08 3:0 p.m.53 views

CVE-2016-8420

The CVE-2016-8420 entry describes an elevation-of-privilege vulnerability in the Qualcomm Wi‑Fi driver for Android kernels (Kernel-3.10 and Kernel-3.18). A local malicious application could execute arbitrary code in kernel context after compromising a privileged process. The description lists And...

7.6CVSS6.6AI score0.00845EPSS
CVE
CVE
added 2017/01/12 8:0 p.m.53 views

CVE-2016-8434

CVE-2016-8434 is a local elevation-of-privilege vulnerability in the Qualcomm GPU driver that could allow a malicious local app to execute arbitrary code in the kernel context on Android with Kernel-3.10. The impact is a potential local root compromise. The vulnerability is documented in NVD with...

9.3CVSS6.8AI score0.01227EPSS
CVE
CVE
added 2017/01/12 8:0 p.m.53 views

CVE-2016-8449

CVE-2016-8449 is an elevation-of-privilege vulnerability in the NVIDIA Tegra GPU/NVMAP kernel driver. The issue arises from referencing memory after it has been freed in NVMAP, which can allow a local attacker to escalate privileges and potentially execute code in kernel context. Affected platfor...

7.6CVSS6.9AI score0.01509EPSS
CVE
CVE
added 2017/01/12 8:0 p.m.53 views

CVE-2016-8453

CVE-2016-8453 describes an elevation-of-privilege in the Broadcom Wi‑Fi driver for Android on Kernel-3.10. A local malicious app could run code in the kernel by exploiting this driver after compromising a privileged process. Impact is ability to execute arbitrary kernel code with high severity. R...

7.6CVSS6.9AI score0.01443EPSS
CVE
CVE
added 2017/01/12 8:0 p.m.53 views

CVE-2016-8455

CVE-2016-8455 describes an elevation of privilege in the Broadcom Wi‑Fi driver affecting Android devices using kernel 3.10 (notably Nexus 6P). A local malicious application could execute arbitrary code in the kernel after compromising a privileged process. The connected documents confirm the issu...

9.3CVSS6.9AI score0.0149EPSS
CVE
CVE
added 2017/01/12 8:0 p.m.53 views

CVE-2016-8461

CVE-2016-8461 denotes an information-disclosure vulnerability in the Android bootloader, enabling a local attacker to access data outside of the attacker’s permission level. The NVD entry specifies the affected component as the Android kernel (kernel-3.18) with Android ID A-32369621. The CVSS met...

5.5CVSS5.2AI score0.00332EPSS
CVE
CVE
added 2017/01/12 8:0 p.m.53 views

CVE-2016-8464

CVE-2016-8464 is a Broadcom Wi‑Fi driver elevation-of-privilege vulnerability on Android. The issue allows a local malicious application to execute arbitrary code in the kernel context by exploiting the Broadcom Wi‑Fi driver after compromising a privileged process. Affected products are Android d...

7.6CVSS7AI score0.01532EPSS
CVE
CVE
added 2017/01/12 8:0 p.m.53 views

CVE-2016-8474

CVE-2016-8474 is an information disclosure vulnerability in the STMicroelectronics driver on Android (kernel 3.10). A local malicious app could access data beyond its permissions, requiring compromise of a privileged process. CVSS3: 4.7 (MEDIUM), local, user interaction required; confidentiality ...

4.7CVSS4.4AI score0.00771EPSS
CVE
CVE
added 2017/05/12 3:0 p.m.53 views

CVE-2017-0612

CVE-2017-0612 describes an elevation of privilege in the Qualcomm Secure Execution Environment Communicator driver on Android kernel 3.18. A local malicious application could exploit this to execute arbitrary code in the kernel context after compromising a privileged process. The vulnerability is...

7.6CVSS6.7AI score0.01467EPSS
CVE
CVE
added 2017/05/12 3:0 p.m.53 views

CVE-2017-0619

The CVE-2017-0619 entry describes an elevation-of-privilege vulnerability in the Qualcomm pin controller driver on Android kernels (Kernel-3.10). A local malicious app could execute arbitrary code in the kernel context. The CVSS indicates LOCAL access with HIGH impact on confidentiality, integrit...

7.6CVSS6.6AI score0.00533EPSS
CVE
CVE
added 2017/05/12 3:0 p.m.53 views

CVE-2017-0621

CVE-2017-0621 is an elevation-of-privilege flaw in the Qualcomm camera driver for Android. The vulnerability lets a local, malicious app run code in the kernel context by exploiting the Qualcomm camera driver after compromising a privileged process. The issue affects Android devices with the affe...

7.6CVSS6.6AI score0.01467EPSS
CVE
CVE
added 2017/05/12 3:0 p.m.53 views

CVE-2017-0624

CVE-2017-0624 describes an information-disclosure vulnerability in the Qualcomm Wi‑Fi driver on Android, enabling a local malicious app to access data outside its permissions. Affected: Android devices (notably Nexus 5X, Pixel, Pixel XL) with Kernel 3.10/3.18; root cause: Qualcomm Wi‑Fi driver in...

5.5CVSS4.9AI score0.01017EPSS
CVE
CVE
added 2017/05/12 3:0 p.m.53 views

CVE-2017-0633

CVE-2017-0633 affects the Broadcom Wi‑Fi driver in Android. The Seebug entry details a information disclosure in the Broadcom bcmdhd driver where the host’s ioctl buffers to the dongle over SDIO are not cleared of unused memory before wldev_ioctl is invoked, causing uninitialized memory (includin...

4.7CVSS4.4AI score0.00876EPSS
CVE
CVE
added 2025/05/01 2:10 p.m.53 views

CVE-2022-49849

CVE-2022-49849 fixes a Linux kernel flaw in the Btrfs dev_args_match_device path. When devid is set to (u64)-1 via ioctl, the match of devid may be skipped and device matching may succeed incorrectly. The issue was introduced by a patch that added the function used to match devices; the two match...

5.5CVSS6.5AI score0.00167EPSS
CVE
CVE
added 2025/06/18 11:0 a.m.53 views

CVE-2022-49970

CVE-2022-49970 concerns a Linux kernel vulnerability in the bpf/cgroup path, where an invalid opcode triggers a kernel BUG during purge_effective_progs when detaching BPF programs from nested cgroups. Reproduction steps described in multiple sources involve attaching prog2 to cg2, prog1 to cg1, w...

7.1CVSS6.5AI score0.00234EPSS
CVE
CVE
added 2025/06/18 11:0 a.m.53 views

CVE-2022-49994

The CVE-2022-49994 issue affects the Linux kernel memory management path involving bootmem and kmemleak. Specifically, vmemmap pages allocated from memblock were not removed from kmemleak when the page was freed, allowing kmemleak to report an error or stop working when the page is reused. The co...

5.5CVSS6.5AI score0.002EPSS
CVE
CVE
added 2023/04/06 12:0 a.m.53 views

CVE-2023-20676

CVE-2023-20676 is an out-of-bounds read vulnerability in the WLAN component of MediaTek devices (notably affecting Mediatek WLAN stacks such as MT5221 and similar chips). The underlying issue is a missing bounds check, enabling local information disclosure and, per the description, potentially al...

4.4CVSS4.2AI score0.00093EPSS
CVE
CVE
added 2025/02/27 2:12 a.m.53 views

CVE-2024-58008

CVE-2024-58008 affects the Linux kernel where, with CONFIG_VMAP_STACK=y, the DCP crypto driver can crash while encrypting/decrypting the blob key due to improper use of sg_init_one() on vmalloc’d buffers (plain_key_blob). The fix is to always use kmalloc() for buffers given to the DCP crypto driv...

5.5CVSS6.7AI score0.00117EPSS
CVE
CVE
added 2025/08/09 2:31 p.m.53 views

CVE-2024-58238

In the Linux kernel Bluetooth btnxpuart driver, CVE-2024-58238, a race during power-save UART break handling could cause a TX timeout when two HCI commands timed with the 2-second power-save window occurred during extended stress tests. The issue was mitigated by adding a ps_lock mutex around UAR...

5.5CVSS7AI score0.00127EPSS
CVE
CVE
added 2025/06/18 9:33 a.m.53 views

CVE-2025-38033

CVE-2025-38033 affects the Linux kernel (x86) where FineIBT and Rust integration triggers a kernel panic when core::fmt::write() is invoked from Rust with FineIBT enabled. Root cause is that core::fmt::rt::Argument::fmt() has CFI-disabled code (no_sanitize(cfi, kcfi)), causing a Control Protectio...

5.5CVSS6.5AI score0.00157EPSS
CVE
CVE
added 2025/07/04 1:37 p.m.53 views

CVE-2025-38201

CVE-2025-38201 affects the Linux kernel netfilter nft_set_pipapo. The issue arises when resizing hashtables in netfilter, where WARN_ON_ONCE can trigger if GFP flags allow high bucket counts; the fix clamps the maximum map bucket size to INT_MAX. The vulnerability is described as local-attack-vec...

7.8CVSS6.4AI score0.00185EPSS
CVE
CVE
added 2025/07/10 8:15 a.m.53 views

CVE-2025-38333

CVE-2025-38333 affects the Linux kernel’s f2fs file system. A fix was applied to bail out in get_new_segment() when inconsistent status is detected between free_segmap and free_secmap, recording the error into the superblock and aborting the segment allocation. The vulnerability stems from get_ne...

5.5CVSS6.5AI score0.00144EPSS
CVE
CVE
added 2025/08/16 10:55 a.m.53 views

CVE-2025-38514

The CVE-2025-38514 issue affects the Linux kernel RxRPC: when an AF_RXRPC service socket is opened/bound and calls are preallocated, rxrpc_alloc_incoming_call() can oops because rxrpc_backlog may not be allocated until the first preallocation. The fix is to return NULL from rxrpc_alloc_incoming_c...

5.5CVSS6.5AI score0.00148EPSS
CVE
CVE
added 2025/08/16 11:12 a.m.53 views

CVE-2025-38531

CVE-2025-38531 affects the Linux kernel IIO common/st_sensors code. The issue arises from using uninitialized indio_dev->dev in probe paths, which can trigger a kernel panic in st_sensors_power_enable() when devm_regulator_bulk_get_enable() fails and later calls dev_err_probe() with an uniniti...

5.5CVSS6.3AI score0.00146EPSS
CVE
CVE
added 2025/08/19 5:3 p.m.53 views

CVE-2025-38602

CVE-2025-38602 affects the Linux kernel’s iwlwifi driver. Root cause: missing check for alloc_ordered_workqueue return value, which may yield NULL, leading to NULL dereference. Impact: local attacker could exploit a vulnerability with high impact on availability, per the CVSS metrics (LOCAL, LOW ...

5.5CVSS7.3AI score0.00148EPSS
CVE
CVE
added 2025/08/22 4:0 p.m.53 views

CVE-2025-38653

CVE-2025-38653: In the Linux kernel, the vulnerability stems from checking proc_lseek directly via pde->proc_ops->proc_lseek, which can cause a use-after-free in a module removal (rmmod) scenario. The issue is a gap in proc_reg_open() that was later addressed by applying the same mitigation...

7.8CVSS6.5AI score0.00153EPSS
CVE
CVE
added 2026/05/27 12:55 p.m.53 views

CVE-2026-45988

The CVE-2026-45988 issue affects the Linux kernel rxrpc subsystem: a RESPONSE packet that experiences a temporary failure could end up partially decrypted and be retried, risking communication disruption or resource exhaustion. The published fix discards the problematic packet and triggers a new ...

9.8CVSS5.8AI score0.00457EPSS
CVE
CVE
added 2026/05/28 9:35 a.m.53 views

CVE-2026-46116

CVE-2026-46116 affects the Linux kernel xfrm subsystem (xfrm_state). The root cause is a local-use-after-free in __xfrm_state_delete due to unsafe deletions from byseq/byspi hash chains. The patch changes deletions to hlist_del_init_rcu and uses hlist_unhashed() checks, preventing writes after LI...

7.8CVSS5.8AI score0.00125EPSS
CVE
CVE
added 2026/05/28 9:40 a.m.53 views

CVE-2026-46230

CVE-2026-46230 affects the Linux kernel’s drm/amdgpu/vcn3 component. The vulnerability is an Out-of-Bounds read during decoder message parsing, due to missing bounds checks; the fix adds checks against the end of the BO before msg access. Impact is described as high severity (CVSSv3.1: Local, Low...

7.1CVSS5.8AI score0.00122EPSS
Total number of security vulnerabilities14330