Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

Linux — Vulnerabilities & Security Advisories 12632

Browse all 12632 CVE security advisories affecting Linux. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Linux serves as the foundational operating system for the majority of internet servers, cloud infrastructure, and embedded devices, powering critical global digital services. Its open-source nature and widespread deployment have historically exposed it to diverse vulnerability classes, including remote code execution, buffer overflows, and privilege escalation flaws within kernel modules and system utilities. While the project maintains rigorous security practices, the sheer volume of code contributes to a high cumulative count of recorded Common Vulnerabilities and Exposures, currently exceeding eleven thousand. Notable incidents often stem from misconfigurations or unpatched legacy components rather than fundamental architectural failures. The community responds rapidly to disclosed threats, yet the extensive attack surface necessitates continuous vigilance. Administrators must prioritize regular updates and strict access controls to mitigate risks associated with this ubiquitous platform, ensuring stability across both enterprise and consumer environments.

Top products by Linux: Linux kernel Linux Kernel linux_kernel util-linux kernel: Linux Kernal
CVE IDTitleCVSSSeverityPublished
CVE-2026-43364 ublk: fix NULL pointer dereference in ublk_ctrl_set_size() — Linux 5.5 -2026-05-08
CVE-2026-43363 x86/apic: Disable x2apic on resume if the kernel expects so — Linux 5.5AIMediumAI2026-05-08
CVE-2026-43361 btrfs: fix transaction abort when snapshotting received subvolumes — Linux 5.5 -2026-05-08
CVE-2026-43362 smb: client: fix in-place encryption corruption in SMB2_write() — Linux 8.1 High2026-05-08
CVE-2026-43360 btrfs: fix transaction abort on file creation due to name hash collision — Linux 5.5 -2026-05-08
CVE-2026-43359 btrfs: fix transaction abort on set received ioctl due to item overflow — Linux 5.5 -2026-05-08
CVE-2026-43358 btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer() — Linux 7.1AIHighAI2026-05-08
CVE-2026-43357 iio: gyro: mpu3050-core: fix pm_runtime error handling — Linux 5.5AIMediumAI2026-05-08
CVE-2026-43356 iio: imu: adis: Fix NULL pointer dereference in adis_init — Linux 7.8AIHighAI2026-05-08
CVE-2026-43355 iio: light: bh1780: fix PM runtime leak on error path — Linux 5.5AIMediumAI2026-05-08
CVE-2026-43354 iio: proximity: hx9023s: Protect against division by zero in set_samp_freq — Linux 5.5AIMediumAI2026-05-08
CVE-2026-43352 i3c: mipi-i3c-hci: Correct RING_CTRL_ABORT handling in DMA dequeue — Linux 7.8 High2026-05-08
CVE-2026-43353 i3c: mipi-i3c-hci: Fix race in DMA ring dequeue — Linux 7.8 High2026-05-08
CVE-2026-43351 KVM: arm64: Eagerly init vgic dist/redist on vgic creation — Linux 7.0AIHighAI2026-05-08
CVE-2026-43350 smb: client: require a full NFS mode SID before reading mode bits — Linux 7.6 High2026-05-08
CVE-2026-43349 f2fs: fix to avoid uninit-value access in f2fs_sanity_check_node_footer — Linux 7.1AIHighAI2026-05-08
CVE-2026-43348 mshv_vtl: Fix vmemmap_shift exceeding MAX_FOLIO_ORDER — Linux 7.1AIHighAI2026-05-08
CVE-2026-43347 arm64: dts: qcom: monaco: Reserve full Gunyah metadata region — Linux 7.5 High2026-05-08
CVE-2026-43346 ice: ptp: don't WARN when controlling PF is unavailable — Linux 7.5 -2026-05-08
CVE-2026-43345 net: ipa: fix event ring index not programmed for IPA v5.0+ — Linux 7.5 High2026-05-08
CVE-2026-43344 perf/x86/intel/uncore: Fix die ID init and look up bugs — Linux 5.5 -2026-05-08
CVE-2026-43343 usb: gadget: f_subset: Fix unbalanced refcnt in geth_free — Linux 5.5AIMediumAI2026-05-08
CVE-2026-43342 usb: gadget: f_rndis: Protect RNDIS options with mutex — Linux 7.0AIHighAI2026-05-08
CVE-2026-43340 comedi: Reinit dev->spinlock between attachments to low-level drivers — Linux 7.8AIHighAI2026-05-08
CVE-2026-43341 net/ipv6: ioam6: prevent schema length wraparound in trace fill — Linux 9.8 Critical2026-05-08
CVE-2026-43339 ipv6: prevent possible UaF in addrconf_permanent_addr() — Linux 7.8 High2026-05-08
CVE-2026-43338 btrfs: reserve enough transaction items for qgroup ioctls — Linux 4.7AIMediumAI2026-05-08
CVE-2026-43337 drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw() — Linux 7.1AIHighAI2026-05-08
CVE-2026-43336 lib/crypto: chacha: Zeroize permuted_state before it leaves scope — Linux 7.5 High2026-05-08
CVE-2026-43335 interconnect: qcom: sm8450: Fix NULL pointer dereference in icc_link_nodes() — Linux 5.5AIMediumAI2026-05-08

This page lists every published CVE security advisory associated with Linux. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.