Lucene search
K
LinuxLinux Kernel6.13.2

9 matches found

CVE
CVE
added 2025/05/01 12:55 p.m.145 views

CVE-2025-37752

CVE-2025-37752 is a Linux kernel vulnerability affecting the scheduler, specifically net_sched: sch_sfq. The root cause is that limit validation could be bypassed if the limit was indirectly updated as other parameters changed. The fix moves the limit validation to the end of the configuration up...

7.8CVSS6.9AI score0.00235EPSS
CVE
CVE
added 2025/03/27 2:57 p.m.108 views

CVE-2025-21886

CVE-2025-21886 summary (Linux kernel) This vulnerability affects the mlx5 RDMA path. The issue is related to implicit MR management during deregistration: on entering destroy_unused_implicit_child_mr(), the parent implicit MR’s refcount is incremented with refcount_inc_not_zero(), but a correspon...

5.5CVSS7.4AI score0.00187EPSS
CVE
CVE
added 2025/02/27 2:18 a.m.106 views

CVE-2025-21794

The CVE-2025-21794 issue affects the Linux kernel HID driver for thrustmaster devices (HID: hid-thrustmaster). It is a stack-out-of-bounds read in the core usb_check_int_endpoints() path caused by passing an ep_addr array to a loop that advances past the end of the array when a null terminator is...

7.1CVSS6.4AI score0.00219EPSS
CVE
CVE
added 2025/04/16 2:11 p.m.104 views

CVE-2025-22032

CVE-2025-22032 affects the Linux kernel wifi driver (mt76/mt7921). The vulnerability stems from mt792x_rx_get_wcid dereferencing an uninitialized deflink because it isn’t correctly linked to the sta context, causing a kernel NULL pointer dereference and a subsequent panic. A patch fixes the linka...

5.5CVSS6.2AI score0.00176EPSS
CVE
CVE
added 2025/06/18 9:33 a.m.85 views

CVE-2025-38031

CVE-2025-38031 is a Linux kernel issue in the padata subsystem where a parallel_data refcount is incremented unconditionally by a patch, allowing a refcount leak if queue_work() returns that the work is already queued. The described fix is to check queue_work()’s return value and decrement the re...

5.5CVSS6.5AI score0.0017EPSS
CVE
CVE
added 2025/02/27 8:4 p.m.83 views

CVE-2025-21817

The CVE-2025-21817 entry concerns the Linux kernel block subsystem: GFP_NOIO is now required around sysfs ->store() to prevent potential deadlock when sysfs->store callbacks allocate memory via GFP_KERNEL during direct reclaim. This vulnerability vector arises from GFP_KERNEL allocations ta...

5.5CVSS6.7AI score0.00119EPSS
CVE
CVE
added 2025/04/01 3:41 p.m.57 views

CVE-2025-21942

CVE-2025-21942 affects the Linux kernel btrfs zoned code. A hang can occur in cow_file_range() when unlocking extents if there is no active zone finish path or after partial allocations, due to unlock code being moved outside the loop by a commit. The fix sets the end to the end of the allocated ...

5.5CVSS7.2AI score0.00186EPSS
CVE
CVE
added 2025/07/25 12:53 p.m.42 views

CVE-2025-38372

CVE-2025-38372 : The Linux kernel patch for RDMA/mlx5 implicit ODP handling fixes an unsafe xarray access by replacing __xa_store() and __xa_erase() (which were used without proper locking) with xa_store() and xa_erase(), which perform the necessary locking internally. This resolves a suspicious ...

5.5CVSS6.1AI score0.00145EPSS
CVE
CVE
added 2025/08/22 4:4 p.m.29 views

CVE-2025-38675

CVE-2025-38675 affects the Linux kernel xfrm subsystem. The issue arises when preemption causes xfrm_state_look_at to search on a different pcpu (CPU2 vs CPU1); if a state for CPU2 is found in the state_cache during the lookup, the code may enter the acquire block with state_ptrs not initialized....

4.7CVSS6.4AI score0.00101EPSS