Linux — Vulnerabilities & Security Advisories 11027

All 11027 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

Vendor: n/a

CVE ID	Title	CVSS	Severity	Published
CVE-2025-38202	bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()	5.5	-	2025-07-04
CVE-2025-38201	netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX	5.5	-	2025-07-04
CVE-2025-38200	i40e: fix MMIO write access to an invalid page in i40e_clear_hw	7.8	-	2025-07-04
CVE-2025-38198	fbcon: Make sure modelist not set on unregistered console	7.8	-	2025-07-04
CVE-2025-38199	wifi: ath12k: Fix memory leak due to multiple rx_stats allocation	6.5	-	2025-07-04
CVE-2025-38197	platform/x86: dell_rbu: Fix list usage	7.7	-	2025-07-04
CVE-2025-38196	io_uring/rsrc: validate buffer count with offset for cloning	7.1	-	2025-07-04
CVE-2025-38195	LoongArch: Fix panic caused by NULL-PMD in huge_pte_offset()	5.5	-	2025-07-04
CVE-2025-38194	jffs2: check that raw node were preallocated before writing summary	5.5	-	2025-07-04
CVE-2025-38193	net_sched: sch_sfq: reject invalid perturb period	7.0	-	2025-07-04
CVE-2025-38192	net: clear the dst when changing skb protocol	6.5	-	2025-07-04
CVE-2025-38191	ksmbd: fix null pointer dereference in destroy_previous_session	5.5	-	2025-07-04
CVE-2025-38190	atm: Revert atm_account_tx() if copy_from_iter_full() fails.	7.1	-	2025-07-04
CVE-2025-38189	drm/v3d: Avoid NULL pointer dereference in `v3d_job_update_stats()`	5.5	-	2025-07-04
CVE-2025-38188	drm/msm/a7xx: Call CP_RESET_CONTEXT_STATE	5.5	-	2025-07-04
CVE-2025-38187	drm/nouveau: fix a use-after-free in r535_gsp_rpc_push()	7.1	-	2025-07-04
CVE-2025-38185	atm: atmtcp: Free invalid length skb in atmtcp_c_send().	-	-	2025-07-04
CVE-2025-38186	bnxt_en: Fix double invocation of bnxt_ulp_stop()/bnxt_ulp_start()	7.8	-	2025-07-04
CVE-2025-38184	tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer	7.5	-	2025-07-04
CVE-2025-38182	ublk: santizize the arguments from userspace when adding a device	5.5	-	2025-07-04
CVE-2025-38183	net: lan743x: fix potential out-of-bounds write in lan743x_ptp_io_event_clock_get()	4.7	-	2025-07-04
CVE-2025-38181	calipso: Fix null-ptr-deref in calipso_req_{set,del}attr().	5.5	-	2025-07-04
CVE-2025-38180	net: atm: fix /proc/net/atm/lec handling	8.1	-	2025-07-04
CVE-2025-38179	smb: client: fix max_sge overflow in smb_extract_folioq_to_rdma()	7.8	-	2025-07-04
CVE-2025-38177	sch_hfsc: make hfsc_qlen_notify() idempotent	-	-	2025-07-04
CVE-2025-38176	binder: fix use-after-free in binderfs_evict_inode()	7.8	-	2025-07-04
CVE-2025-38175	binder: fix yet another UAF in binder_devices	7.8	-	2025-07-04
CVE-2025-38174	thunderbolt: Do not double dequeue a configuration request	6.2	-	2025-07-04
CVE-2025-38173	crypto: marvell/cesa - Handle zero-length skcipher requests	8.1^AI	High^AI	2025-07-03
CVE-2025-38172	erofs: avoid using multiple devices with different type	5.5^AI	Medium^AI	2025-07-03

All 11027 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

Linux — Vulnerabilities & Security Advisories 11027