Search for packages
| purl | pkg:deb/debian/linux@6.18.3-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-12gb-pxkp-dyhh | kernel: Linux kernel: mlx5 firmware tracer vulnerable to arbitrary memory access or denial of service via malformed format strings |
CVE-2025-68816
|
| VCID-17aa-tftq-eufp | kernel: iommu/mediatek: fix use-after-free on probe deferral |
CVE-2025-71071
|
| VCID-1a3x-wcx3-j3gf | kernel: ipvs: fix ipv4 null-ptr-deref in route error path |
CVE-2025-68813
|
| VCID-1g4u-g1ms-bqew | kernel: hfsplus: Verify inode mode when loading from disk |
CVE-2025-68767
|
| VCID-22ea-xr86-4kfj | kernel: drm/msm/a6xx: move preempt_prepare_postamble after error check |
CVE-2025-71124
|
| VCID-3bw5-61q3-6kc8 | kernel: scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path" |
CVE-2025-68818
|
| VCID-3cbu-frk2-vudb | kernel: net: hns3: using the num_tqps in the vf driver to apply for resources |
CVE-2025-71064
|
| VCID-3hzg-4gzg-eqgm | kernel: ext4: fix string copying in parse_apply_sb_mount_options() |
CVE-2025-71123
|
| VCID-3uwu-5fws-kqbf | kernel: f2fs: use global inline_xattr_slab instead of per-sb slab cache |
CVE-2025-71105
|
| VCID-4248-x8q2-e7bb | kernel: exfat: fix refcount leak in exfat_find |
CVE-2025-68351
|
| VCID-4a82-k3tc-cqhm | kernel: net/handshake: restore destructor on submit failure |
CVE-2025-71148
|
| VCID-58vh-ekfk-s3da | kernel: Linux kernel: Memory leak in io_uring's __io_openat_prep() leading to denial of service |
CVE-2025-68814
|
| VCID-6gy7-6hv6-q3hj | kernel: fuse: fix io-uring list corruption for terminated non-committed requests |
CVE-2025-68805
|
| VCID-6hdv-aj36-jbar | kernel: hfsplus: fix missing hfs_bnode_get() in __hfs_bnode_create |
CVE-2025-68774
|
| VCID-6ndq-q638-wbbm | kernel: ACPICA: Avoid walking the Namespace if start_node is NULL |
CVE-2025-71118
|
| VCID-6u26-3zuf-xqee | kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats |
CVE-2025-68800
|
| VCID-6vd4-q7jm-zfcr | kernel: f2fs: fix to avoid updating compression context during writeback |
CVE-2025-68772
|
| VCID-72px-huyw-r7fj | kernel: spi: fsl-cpm: Check length parity before switching to 16 bit mode |
CVE-2025-68773
|
| VCID-7gw9-7kbs-2uh2 | kernel: landlock: Fix handling of disconnected directories |
CVE-2025-68736
|
| VCID-7pd1-ukkz-nkak | kernel: tpm2-sessions: Fix out of range indexing in name_size |
CVE-2025-68792
|
| VCID-7qxq-9ynq-dbhy | kernel: um: init cpu_tasks[] earlier |
CVE-2025-71115
|
| VCID-7rz5-thve-fqeg | kernel: ethtool: Avoid overflowing userspace buffer on stats query |
CVE-2025-68795
|
| VCID-82f3-bpp3-6fc7 | kernel: scsi: aic94xx: fix use-after-free in device removal path |
CVE-2025-71075
|
| VCID-87gw-ezjs-cqcs | kernel: svcrdma: bound check rq_pages index in inline path |
CVE-2025-71068
|
| VCID-8ezy-ac5w-n3ce | kernel: bnxt_en: Fix XDP_TX path |
CVE-2025-68770
|
| VCID-8jvn-gxu5-23ff | kernel: ksmbd: fix buffer validation by including null terminator size in EA length |
CVE-2025-68806
|
| VCID-8ssr-76q5-6kf4 | kernel: iomap: adjust read range correctly for non-block-aligned positions |
CVE-2025-68794
|
| VCID-8t35-ntfd-xfdk | kernel: media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() |
CVE-2025-68819
|
| VCID-93v6-kf9s-kqdw | kernel: ksmbd: skip lock-range check on equal size to avoid size==0 underflow |
CVE-2025-68786
|
| VCID-941h-r7bf-6bby | kernel: Linux kernel: Denial of Service due to memory leak in tpm2_load_cmd |
CVE-2025-71147
|
| VCID-94e9-zqve-rkgf | kernel: ALSA: usb-mixer: us16x08: validate meter packet indices |
CVE-2025-68783
|
| VCID-94ed-vp4v-mqeg | kernel: Kernel: Denial of Service via NULL pointer dereference in VXLAN module |
CVE-2025-68353
|
| VCID-95g7-p1fv-1ue3 | kernel: Linux kernel KVM: Host system hard lockup due to periodic HV timer mishandling after VM inactivity |
CVE-2025-71104
|
| VCID-b5p2-21xd-p3fy | kernel: netfilter: nf_conncount: fix leaked ct in error paths |
CVE-2025-71146
|
| VCID-b9uq-ggy1-eyan | kernel: Linux kernel: Denial of Service in qla2xxx SCSI driver due to improper command handling after chip reset |
CVE-2025-68745
|
| VCID-bguv-whnr-nfbn | kernel: scsi: target: Reset t_task_cdb pointer in error case |
CVE-2025-68782
|
| VCID-bmn2-92hv-duh6 | kernel: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change |
CVE-2025-71066
|
| VCID-bq1z-43av-hqar | kernel: perf/x86/amd: Check event before enable to avoid GPF |
CVE-2025-68798
|
| VCID-cbeu-zwx2-5yfz | kernel: powerpc/kexec: Enable SMT before waking offline CPUs |
CVE-2025-71119
|
| VCID-cpg7-6nst-gkfn | kernel: Linux kernel: Denial of Service via deadlock in block layer sysfs store callbacks |
CVE-2025-71117
|
| VCID-cvps-1xf8-kqb5 | kernel: MIPS: ftrace: Fix memory corruption when kernel is located beyond 32 bits |
CVE-2025-71109
|
| VCID-cxck-7msm-zqd8 | kernel: media: vidtv: initialize local pointers upon transfer of memory ownership |
CVE-2025-68808
|
| VCID-czc5-wx9e-h3fn | kernel: fuse: missing copy_finish in fuse-over-io-uring argument copies |
CVE-2025-68791
|
| VCID-d13s-yg24-zfc3 | kernel: drm/amdgpu: fix a job->pasid access race in gpu recovery |
CVE-2025-68793
|
| VCID-dkk7-4gp5-qudp | kernel: ext4: xattr: fix null pointer deref in ext4_raw_inode() |
CVE-2025-68820
|
| VCID-drm2-nczm-17cc | kernel: drm/xe/oa: Limit num_syncs to prevent oversized allocations |
CVE-2025-71076
|
| VCID-er86-x8wa-myek | kernel: Linux kernel ksmbd: Denial of Service via reference count leak |
CVE-2025-71150
|
| VCID-ete6-ycnw-7kgg | kernel: Input: alps - fix use-after-free bugs caused by dev3_register_work |
CVE-2025-68822
|
| VCID-f7bf-qcbv-skh4 | kernel: Linux kernel: Deadlock due to MPTCP packet reinjection during fallback |
CVE-2025-71126
|
| VCID-fs92-wkwt-wyez | kernel: shmem: fix recovery on rename failures |
CVE-2025-71072
|
| VCID-g48p-wt28-4udv | kernel: iomap: allocate s_dio_done_wq for async reads as well |
CVE-2025-68357
|
| VCID-g5sa-v8nq-gqge | kernel: Kernel: Denial of Service in md driver via uninitialized bioset |
CVE-2025-68368
|
| VCID-gcff-16g5-t7ew | kernel: parisc: Do not reprogram affinitiy on ASP chip |
CVE-2025-71121
|
| VCID-gg51-5hyr-yucc | kernel: ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency |
CVE-2025-68817
|
| VCID-gm9m-whjq-g3bg | kernel: crypto: af_alg - zero initialize memory allocated via sock_kmalloc |
CVE-2025-71113
|
| VCID-gmyf-wrkm-77a8 | kernel: platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver |
CVE-2025-68804
|
| VCID-j9gx-qj2u-z3e8 | kernel: f2fs: invalidate dentry cache on failed whiteout creation |
CVE-2025-71069
|
| VCID-jc5k-3959-q3bd | kernel: f2fs: fix return value of f2fs_recover_fsync_data() |
CVE-2025-68769
|
| VCID-jd9b-ge7g-6yfz | kernel: fsnotify: do not generate ACCESS/MODIFY events on child for special files |
CVE-2025-68788
|
| VCID-jfyb-pwuz-8qh9 | kernel: net: openvswitch: fix middle attribute validation in push_nsh() action |
CVE-2025-68785
|
| VCID-jktn-jpe1-4bh9 | kernel: fs/ntfs3: Initialize allocated memory before use |
CVE-2025-68365
|
| VCID-jnrk-j45s-5bf4 | kernel: NFSD: NFSv4 file creation neglects setting ACL |
CVE-2025-68803
|
| VCID-jpe6-w1pt-z7g9 | kernel: svcrdma: use rc_pageoff for memcpy byte offset |
CVE-2025-68811
|
| VCID-jvng-9kc1-yqc6 | kernel: f2fs: ensure node page reads complete before f2fs_put_super() finishes |
CVE-2025-71107
|
| VCID-jx77-wef2-n3hz | kernel: net/sched: ets: Remove drr class from the active list if it changes to strict |
CVE-2025-68815
|
| VCID-k5vh-n54n-5yey | kernel: net/handshake: duplicate handshake cancellations leak socket |
CVE-2025-68775
|
| VCID-ka3s-uc76-6kaj | kernel: f2fs: fix to avoid updating zero-sized extent in extent cache |
CVE-2025-68796
|
| VCID-kcce-wptw-myd5 | kernel: Input: ti_am335x_tsc - fix off-by-one error in wire_order validation |
CVE-2025-68777
|
| VCID-khjv-e1th-muhd | kernel: bpf: Do not let BPF test infra emit invalid GSO types to stack |
CVE-2025-68725
|
| VCID-mhz3-9c5a-rbex | kernel: ocfs2: fix kernel BUG in ocfs2_find_victim_chain |
CVE-2025-68771
|
| VCID-mrnq-33qx-tuc7 | kernel: drm/xe: Limit num_syncs to prevent oversized allocations |
CVE-2025-68802
|
| VCID-mt8z-wdzf-kugb | kernel: f2fs: fix to avoid potential deadlock |
CVE-2025-71065
|
| VCID-mw62-5y92-3ffv | kernel: sched/deadline: only set free_cpus for online runqueues |
CVE-2025-68780
|
| VCID-nd41-sf8a-yqe3 | kernel: netrom: Fix memory leak in nr_sendmsg() |
CVE-2025-68787
|
| VCID-nsj4-2nrx-8qgc | kernel: tpm: Cap the number of PCR banks |
CVE-2025-71077
|
| VCID-nuhs-4sjq-dkcb | kernel: inet: frags: flush pending skbs in fqdir_pre_exit() |
CVE-2025-68768
|
| VCID-q4u3-9g62-wydw | kernel: caif: fix integer underflow in cffrml_receive() |
CVE-2025-68799
|
| VCID-qehp-d246-wbg4 | kernel: cifs: Fix memory and information leak in smb3_reconfigure() |
CVE-2025-71151
|
| VCID-qjbb-7826-y7bz | kernel: via_wdt: fix critical boot hang due to unnamed resource allocation |
CVE-2025-71114
|
| VCID-qku6-hwk7-mqbp | kernel: usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal |
CVE-2025-68781
|
| VCID-rttw-c714-93gm | kernel: net: hns3: add VLAN id validation before using |
CVE-2025-71112
|
| VCID-s5k9-u1uk-3be8 | kernel: Linux kernel: Denial of Service in ublk due to deadlock when reading partition table |
CVE-2025-68823
|
| VCID-t2km-2c8a-hkbj | kernel: iommufd/selftest: Check for overflow in IOMMU_TEST_OP_ADD_RESERVED |
CVE-2025-71122
|
| VCID-te34-bpjf-hfgb | kernel: io_uring/poll: correctly handle io_poll_add() return value on update |
CVE-2025-71149
|
| VCID-u1ku-k252-nyem | kernel: libceph: make decode_pool() more resilient against corrupted osdmaps |
CVE-2025-71116
|
| VCID-u1yt-tx4r-qken | kernel: usb: typec: ucsi: Handle incorrect num_connectors capability |
CVE-2025-71108
|
| VCID-ubtn-8mb7-huef | kernel: Input: lkkbd - disable pending work before freeing device |
CVE-2025-71073
|
| VCID-uwgx-rj1u-27f3 | kernel: block: fix race between wbt_enable_default and IO submission |
CVE-2025-68807
|
| VCID-uyek-ttht-7kdw | kernel: hwmon: (w83791d) Convert macros to functions to avoid TOCTOU |
CVE-2025-71111
|
| VCID-v2y7-vmt3-w3dq | kernel: ksmbd: vfs: fix race on m_flags in vfs_cache |
CVE-2025-68809
|
| VCID-vrpt-mbfc-7qef | kernel: Linux kernel: Denial of Service in SUNRPC via zero-length gss_token |
CVE-2025-71120
|
| VCID-w8af-5n1k-ybag | kernel: Linux kernel: Denial of Service via NULL pointer dereference in HSR |
CVE-2025-68776
|
| VCID-wc35-8p3b-y7bf | kernel: ublk: clean up user copy references on ublk server exit |
CVE-2025-71070
|
| VCID-x2ap-8xew-wkaa | kernel: mlxsw: spectrum_router: Fix neighbour use-after-free |
CVE-2025-68801
|
| VCID-x57v-tc6r-aqf8 | kernel: media: iris: Add sanity check for stop streaming |
CVE-2025-68812
|
| VCID-xa5q-5ask-c3gk | kernel: tracing: Do not register unsupported perf events |
CVE-2025-71125
|
| VCID-xhyq-tmc3-8uct | kernel: btrfs: don't log conflicting inode if it's a dir moved in the current transaction |
CVE-2025-68778
|
| VCID-xpvc-wm8p-myhp | kernel: Linux kernel FUSE: Denial of Service via readahead reclaim deadlock |
CVE-2025-68821
|
| VCID-z3tf-ttvk-mfdm | kernel: xfs: fix a UAF problem in xattr repair |
CVE-2025-68784
|
| VCID-z43r-us4p-fbad | kernel: KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot |
CVE-2025-68810
|
| VCID-zpz8-8ahv-ayc2 | kernel: char: applicom: fix NULL pointer dereference in ac_ioctl |
CVE-2025-68797
|
| VCID-zr8t-jazh-9qgs | kernel: scs: fix a wrong parameter in __scs_magic |
CVE-2025-71102
|
| VCID-zvp5-zhsh-9qap | kernel: ntfs: set dummy blocksize to read boot_block when mounting |
CVE-2025-71067
|