Linux — Vulnerabilities & Security Advisories 11023

All 11023 CVE vulnerabilities found in Linux, with AI-generated Chinese analysis, references, and POCs.

Vendor: n/a

CVE ID	Title	CVSS	Severity	Published
CVE-2025-40096	drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies	7.8^AI	High^AI	2025-10-30
CVE-2025-40095	usb: gadget: f_rndis: Refactor bind path to use __free()	5.5^AI	Medium^AI	2025-10-30
CVE-2025-40094	usb: gadget: f_acm: Refactor bind path to use __free()	5.5^AI	Medium^AI	2025-10-30
CVE-2025-40093	usb: gadget: f_ecm: Refactor bind path to use __free()	5.5^AI	Medium^AI	2025-10-30
CVE-2025-40092	usb: gadget: f_ncm: Refactor bind path to use __free()	5.5^AI	Medium^AI	2025-10-30
CVE-2025-40091	ixgbe: fix too early devlink_free() in ixgbe_remove()	7.1^AI	High^AI	2025-10-30
CVE-2025-40090	ksmbd: fix recursive locking in RPC handle list access	4.7^AI	Medium^AI	2025-10-30
CVE-2025-40089	cxl/features: Add check for no entries in cxl_feature_info	7.1^AI	High^AI	2025-10-30
CVE-2025-40087	NFSD: Define a proc_layoutcommit for the FlexFiles layout type	5.5^AI	Medium^AI	2025-10-30
CVE-2025-40088	hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp()	7.1^AI	High^AI	2025-10-30
CVE-2025-40086	drm/xe: Don't allow evicting of BOs in same VM in array of VM binds	7.1^AI	High^AI	2025-10-30
CVE-2023-7324	scsi: ses: Fix possible addl_desc_ptr out-of-bounds accesses	7.8^AI	High^AI	2025-10-29
CVE-2025-40085	ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card	5.5^AI	Medium^AI	2025-10-29
CVE-2025-40084	ksmbd: transport_ipc: validate payload size before reading handle	7.5^AI	High^AI	2025-10-29
CVE-2025-40083	net/sched: sch_qfq: Fix null-deref in agg_dequeue	5.5^AI	Medium^AI	2025-10-29
CVE-2025-40082	hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()	7.1^AI	High^AI	2025-10-28
CVE-2025-40081	perf: arm_spe: Prevent overflow in PERF_IDX2OFF()	7.8^AI	High^AI	2025-10-28
CVE-2025-40080	nbd: restrict sockets to TCP and UDP	9.8^AI	Critical^AI	2025-10-28
CVE-2025-40079	riscv, bpf: Sign extend struct ops return values properly	5.5^AI	Medium^AI	2025-10-28
CVE-2025-40078	bpf: Explicitly check accesses to bpf_sock_addr	5.5^AI	Medium^AI	2025-10-28
CVE-2025-40077	f2fs: fix to avoid overflow while left shift operation	7.8^AI	High^AI	2025-10-28
CVE-2025-40076	PCI: rcar-host: Pass proper IRQ domain to generic_handle_domain_irq()	5.5^AI	Medium^AI	2025-10-28
CVE-2025-40075	tcp_metrics: use dst_dev_net_rcu()	8.8^AI	High^AI	2025-10-28
CVE-2025-40073	drm/msm: Do not validate SSPP when it is not ready	5.5^AI	Medium^AI	2025-10-28
CVE-2025-40074	ipv4: start using dst_dev_rcu()	7.1^AI	High^AI	2025-10-28
CVE-2025-40072	fanotify: Validate the return value of mnt_ns_from_dentry() before dereferencing	5.5^AI	Medium^AI	2025-10-28
CVE-2025-40071	tty: n_gsm: Don't block input queue by waiting MSC	9.1^AI	Critical^AI	2025-10-28
CVE-2025-40070	pps: fix warning in pps_register_cdev when register device fail	5.5^AI	Medium^AI	2025-10-28
CVE-2025-40068	fs: ntfs3: Fix integer overflow in run_unpack()	5.5^AI	Medium^AI	2025-10-28
CVE-2025-40069	drm/msm: Fix obj leak in VM_BIND error path	5.5^AI	Medium^AI	2025-10-28

All 11023 known CVE vulnerabilities affecting Linux with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

Linux — Vulnerabilities & Security Advisories 11023