VYPR

linux package

kernel

pkg:linux/kernel

Vulnerabilities (1,755)

  • CVE-2025-68724Dec 24, 2025
    affected >= 3.18.0, < 5.10.248fixed 5.10.248

    In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id Use check_add_overflow() to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetric_k

  • CVE-2025-68380Dec 24, 2025
    affected >= 5.16.0, < 6.1.160fixed 6.1.160

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix peer HE MCS assignment In ath11k_wmi_send_peer_assoc_cmd(), peer's transmit MCS is sent to firmware as receive MCS while peer's receive MCS sent as transmit MCS, which goes against firmwire's

  • CVE-2025-68379Dec 24, 2025
    affected >= 4.8.0, < 6.6.120fixed 6.6.120

    In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure A NULL pointer dereference can occur in rxe_srq_chk_attr() when ibv_modify_srq() is invoked twice in succession under certain error conditions. The

  • CVE-2025-68378Dec 24, 2025
    affected >= 5.18.0, < 6.12.63fixed 6.12.63

    In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check in __bpf_get_stackid() Syzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid() when copying stack trace data. The issue occurs when the perf trace contains m

  • CVE-2025-68377Dec 24, 2025
    affected >= 6.18.0, < 6.18.2fixed 6.18.2

    In the Linux kernel, the following vulnerability has been resolved: ns: initialize ns_list_node for initial namespaces Make sure that the list is always initialized for initial namespaces.

  • CVE-2025-68376Dec 24, 2025
    affected >= 6.6.0, < 6.17.13fixed 6.17.13

    In the Linux kernel, the following vulnerability has been resolved: coresight: ETR: Fix ETR buffer use-after-free issue When ETR is enabled as CS_MODE_SYSFS, if the buffer size is changed and enabled again, currently sysfs_buf will point to the newly allocated memory(buf_new) a

  • CVE-2025-68375Dec 24, 2025
    affected >= 6.16.0, < 6.17.13fixed 6.17.13

    In the Linux kernel, the following vulnerability has been resolved: perf/x86: Fix NULL event access and potential PEBS record loss When intel_pmu_drain_pebs_icl() is called to drain PEBS records, the perf_event_overflow() could be called to process the last PEBS record. While

  • CVE-2025-68374Dec 24, 2025
    affected >= 6.5.0, < 6.12.63fixed 6.12.63

    In the Linux kernel, the following vulnerability has been resolved: md: fix rcu protection in md_wakeup_thread We attempted to use RCU to protect the pointer 'thread', but directly passed the value when calling md_wakeup_thread(). This means that the RCU pointer has been acquir

  • CVE-2025-68373Dec 24, 2025
    affected >= 6.17.0, < 6.17.13fixed 6.17.13

    In the Linux kernel, the following vulnerability has been resolved: md: avoid repeated calls to del_gendisk There is a uaf problem which is found by case 23rdev-lifetime: Oops: general protection fault, probably for non-canonical address 0xdead000000000122 RIP: 0010:bdi_unregi

  • CVE-2025-68372Dec 24, 2025
    affected >= 5.10.0, < 5.10.248fixed 5.10.248

    In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recv_work There is one uaf issue in recv_work when running NBD_CLEAR_SOCK and NBD_CMD_RECONFIGURE: nbd_genl_connect // conf_ref=2 (connect and recv_work A) nbd_open // co

  • CVE-2025-68371Dec 24, 2025
    affected >= 6.0.0, < 6.1.160fixed 6.1.160

    In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix device resources accessed after device removal Correct possible race conditions during device removal. Previously, a scheduled work item to reset a LUN could still execute after the device

  • CVE-2025-68370Dec 24, 2025
    affected >= 6.15.0, < 6.17.13fixed 6.17.13

    In the Linux kernel, the following vulnerability has been resolved: coresight: tmc: add the handle of the event to the path The handle is essential for retrieving the AUX_EVENT of each CPU and is required in perf mode. It has been added to the coresight_path so that dependent d

  • CVE-2025-68369Dec 24, 2025
    affected < 5.15.198fixed 5.15.198

    In the Linux kernel, the following vulnerability has been resolved: ntfs3: init run lock for extend inode After setting the inode mode of $Extend to a regular file, executing the truncate system call will enter the do_truncate() routine, causing the run_lock uninitialized error

  • CVE-2025-68368Dec 24, 2025
    affected >= 6.12.0, < 6.18.2fixed 6.18.2

    In the Linux kernel, the following vulnerability has been resolved: md: init bioset in mddev_init IO operations may be needed before md_run(), such as updating metadata after writing sysfs. Without bioset, this triggers a NULL pointer dereference as below: BUG: kernel NULL po

  • CVE-2025-68367Dec 24, 2025
    affected >= 2.6.34, < 5.10.248fixed 5.10.248

    In the Linux kernel, the following vulnerability has been resolved: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse The following warning appears when running syzkaller, and this issue also exists in the mainline code. ------------[ cut here ]------------ li

  • CVE-2025-68366Dec 24, 2025
    affected >= 4.12.0, < 5.10.248fixed 5.10.248

    In the Linux kernel, the following vulnerability has been resolved: nbd: defer config unlock in nbd_genl_connect There is one use-after-free warning when running NBD_CMD_CONNECT and NBD_CLEAR_SOCK: nbd_genl_connect nbd_alloc_and_init_config // config_refs=1 nbd_start_devic

  • CVE-2025-68364Dec 24, 2025
    affected >= 3.0.0, < 5.10.248fixed 5.10.248

    In the Linux kernel, the following vulnerability has been resolved: ocfs2: relax BUG() to ocfs2_error() in __ocfs2_move_extent() In '__ocfs2_move_extent()', relax 'BUG()' to 'ocfs2_error()' just to avoid crashing the whole kernel due to a filesystem corruption.

  • CVE-2025-68363Dec 24, 2025
    affected >= 5.12.0, < 6.1.160fixed 6.1.160

    In the Linux kernel, the following vulnerability has been resolved: bpf: Check skb->transport_header is set in bpf_skb_check_mtu The bpf_skb_check_mtu helper needs to use skb->transport_header when the BPF_MTU_CHK_SEGS flag is used: bpf_skb_check_mtu(skb, ifindex, &mtu_len, 0

  • CVE-2025-68362Dec 24, 2025
    affected >= 2.6.27, < 5.10.248fixed 5.10.248

    In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() The rtl8187_rx_cb() calculates the rx descriptor header address by subtracting its size from the skb tail pointer. However, it does not

  • CVE-2025-68361Dec 24, 2025
    affected >= 6.12.0, < 6.12.63fixed 6.12.63

    In the Linux kernel, the following vulnerability has been resolved: erofs: limit the level of fs stacking for file-backed mounts Otherwise, it could cause potential kernel stack overflow (e.g., EROFS mounting itself).

Page 44 of 88