Lucene search
K
LinuxLinux Kernel6.7.1

20 matches found

CVE
CVE
added 2024/01/23 12:0 a.m.200 views

CVE-2024-23848

CVE-2024-23848 : Linux kernel up to 6.7.1 contains a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c. The connected IBM/Linux kernel bulletin also lists this CVE among resolved issues. Public technical details about root cause ...

5.5CVSS5.2AI score0.00254EPSS
CVE
CVE
added 2024/01/23 12:0 a.m.196 views

CVE-2024-23849

CVE-2024-23849 affects the Linux kernel’s RDS path (net/rds/af_rds.c) up to and including 6.7.1. The issue is an off-by-one in the RDS_MSG_RX_DGRAM_TRACE_MAX comparison, causing out-of-bounds access. Connected advisories confirm this vulnerability and show it in multiple vendor/OS contexts (Debia...

5.5CVSS5.9AI score0.00309EPSS
CVE
CVE
added 2024/01/23 12:0 a.m.176 views

CVE-2024-23851

CVE-2024-23851 affects the Linux kernel; the issue is in copy_params() in drivers/md/dm-ioctl.c (up to 6.7.1) where it may allocate more than INT_MAX bytes due to a missing param_kernel->data_size check, leading to a crash. Several connected advisories note a patched kernel is available; apply...

5.5CVSS5.8AI score0.00296EPSS
CVE
CVE
added 2024/01/23 12:0 a.m.171 views

CVE-2024-23850

CVE-2024-23850 affects the Linux kernel (through 6.7.1) in btrfs_get_root_ref (fs/btrfs/disk-io.c): subvolumes can be read too soon after their root item is inserted during subvolume creation, leading to an assertion failure and crash. Connected advisories confirm this issue across multiple Linux...

5.5CVSS5.7AI score0.00308EPSS
CVE
CVE
added 2024/05/19 8:34 a.m.151 views

CVE-2024-35880

Summary of CVE-2024-35880 (Linux kernel) : A local privilege escalation fix addressing io_uring kbuf handling during mmap. The issue stems from unsafe use of the io_uring lock while mmap’ing, requiring a reference to the io_buffer_list to prevent unregistering during use. The lookup now returns t...

5.5CVSS6.8AI score0.00654EPSS
CVE
CVE
added 2025/02/27 8:4 p.m.131 views

CVE-2025-21816

CVE-2025-21816 affects the Linux kernel hrtimers subsystem. The issue arises when hrtimers queued on an offline CPU can wake up and arm the deadline timer after CPU hotplug stage CPUHP_AP_HRTIMERS_DYING, potentially impacting bandwidth timer handling (notably RCU-related wakeups). The documented ...

5.5CVSS6.4AI score0.00193EPSS
CVE
CVE
added 2025/05/09 6:45 a.m.123 views

CVE-2025-37889

CVE-2025-37889 : In the Linux kernel’s ASoC code, platform_max was inconsistently interpreted as a control value versus a register value. The patching effort reverts a previous +min shift and updates all code paths to consistently treat platform_max as a control value (customer-facing representat...

5.5CVSS6.6AI score0.00221EPSS
CVE
CVE
added 2025/04/08 8:18 a.m.117 views

CVE-2025-22015

CVE-2025-22015 : In the Linux kernel, the vulnerability lies in mm/migrate where a shmem folio can be in page cache or swap cache but not both. The root cause is that __folio_migrate_mapping() used folio_test_swapbacked() to determine how many xarray entries to update, which conflates shmem in pa...

5.5CVSS7.1AI score0.00173EPSS
CVE
CVE
added 2024/04/17 3:59 p.m.111 views

CVE-2024-26916

In the Linux kernel, CVE-2024-26916 is tied to the drm/amd gfxoff handling during suspend. Reverting earlier gfxoff flush logic allowed GFXOFF control to be exercised again on suspend, which can trigger SDMA traffic and lead to system deadlocks when suspending from GNOME. The fix is the revert of...

5.5CVSS6.3AI score0.00171EPSS
CVE
CVE
added 2024/05/17 12:24 p.m.95 views

CVE-2024-35785

CVE-2024-35785 affects the Linux kernel: a bug in the error path when registering devices on the TEE bus could trigger a kernel panic due to an incorrect error handling flow, specifically following the supplicant-based device enumeration change (commit 7269cba53d90). The issue manifests as a tran...

7.1CVSS6.6AI score0.00232EPSS
CVE
CVE
added 2024/05/17 12:24 p.m.80 views

CVE-2024-35793

CVE-2024-35793 affects the Linux kernel debugfs remove path. The issue was a logic error in the removal cancelation flow: if a refcount is non-zero, cancellations must be triggered; otherwise, removal can finish without cancellations, but the existing loop could never run. The fix adjusts wait/ca...

5.5CVSS7AI score0.00172EPSS
CVE
CVE
added 2024/07/29 3:48 p.m.73 views

CVE-2024-41086

In Linux kernel context, CVE-2024-41086 concerns bcachefs. The vulnerability arises from incomplete validation in the downgrade handling code: bch2_sb_downgrade_validate() did not check for a downgrade entry that extends past the end of the superblock section, and for_each_downgrade_entry() used ...

5.5CVSS6.6AI score0.00196EPSS
CVE
CVE
added 2026/04/24 2:35 p.m.35 views

CVE-2026-31554

The CVE-2026-31554 entry concerns a Linux kernel futex requeue issue: using sys_futex_requeue() with different flags could enable a use-after-free/UaF condition. To fix, the code now requires identical flags for sys_futex_requeue() (matching the behavior of old-style sys_futex() requeue). The vul...

7.8CVSS5.5AI score0.00163EPSS
CVE
CVE
added 2026/05/28 9:35 a.m.34 views

CVE-2026-46110

CVE-2026-46110 affects the Linux kernel stmmac driver. When RX memory is exhausted, stmmac_rx() could misinterpret descriptors (full vs dirty), risking a NULL pointer dereference and potential kernel panic. The fix adds an explicit check to bail out when the next RX descriptor is dirty before adv...

7.5CVSS5.9AI score0.005EPSS
CVE
CVE
added 2026/01/13 3:34 p.m.26 views

CVE-2025-71086

Technical details for CVE-2025-71086 are not publicly available in the provided documents. Monitor for updates from official advisories; the initial description mentions a Linux kernel fix in net rose_kill_by_device but no product/version specifics are provided here.

7.8CVSS5.9AI score0.0012EPSS
CVE
CVE
added 2026/01/14 3:7 p.m.25 views

CVE-2025-71141

CVE-2025-71141 (Linux kernel) affects the DRM tilcdc path. The root cause was that drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() were invoked unconditionally in tilcdc_fini(), even when the device failed to register, causing probe-time warnings. The fix rewrites the failed probe cle...

5.5CVSS6.2AI score0.00117EPSS
CVE
CVE
added 2026/01/31 11:39 a.m.25 views

CVE-2026-23017

CVE-2026-23017 affects the Linux kernel idpf driver. Root cause: if init_task fails during driver load, vports/netdevs are not created and a reset can crash while service/mailbox tasks run. Fix: in the init_task error path, disable service/mailbox tasks and stop PTP callbacks; ensures proper clea...

5.5CVSS5.7AI score0.00132EPSS
CVE
CVE
added 2026/03/25 10:27 a.m.23 views

CVE-2026-23363

The CVE-2026-23363 issue affects the Linux kernel wifi driver stack, specifically the mt7925 component of the mt76 driver. A missing frame-length check in mt7925_mac_write_txwi_80211() could allow out-of-bounds access to management fields, potentially impacting system stability. The vulnerability...

7.1CVSS5.6AI score0.00125EPSS
CVE
CVE
added 2026/01/31 11:39 a.m.21 views

CVE-2026-23023

CVE-2026-23023 concerns the Linux kernel, where a memory leak was fixed in the idpf driver. The vulnerability arises from not freeing vport->rx_ptype_lkup in idpf_vport_rel(), leading to leaked memory during a reset. The fix frees the memory as part of idpf_vport_rel(), preventing the unrefere...

5.5CVSS5.8AI score0.00147EPSS
CVE
CVE
added 2026/03/25 10:27 a.m.15 views

CVE-2026-23369

CVE-2026-23369 (i2c i801) Summary: The vulnerability affects the Linux kernel i2c/i801 driver. Under rare boot-time race conditions, multiple udev threads may access i801_acpi_io_handler concurrently, leading to a scenario where an area is deregistered and a subsequent access uses an unregistered...

5.5CVSS5.7AI score0.00122EPSS