CVE-2025-38001 — Infinite Loop in Linux

Vendor	Product	Version range	Fixed in
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	linux	< linux 6.1.147-1 (bookworm)	linux 6.1.147-1 (bookworm)
debian	linux-6.1	< linux 6.1.147-1 (bookworm)	linux 6.1.147-1 (bookworm)
google	chrome_chrome	—	—
linux	linux	—	—
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < e5bee633cc276410337d54b99f77fbc1ad8801e5	e5bee633cc276410337d54b99f77fbc1ad8801e5
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < 6672e6c00810056acaac019fe26cdc26fee8a66c	6672e6c00810056acaac019fe26cdc26fee8a66c
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < 2c928b3a0b04a431ffcd6c8b7d88a267124a3a28	2c928b3a0b04a431ffcd6c8b7d88a267124a3a28
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < a0ec22fa20b252edbe070a9de8501eef63c17ef5	a0ec22fa20b252edbe070a9de8501eef63c17ef5
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < 295f7c579b07b5b7cf2dffe485f71cc2f27647cb	295f7c579b07b5b7cf2dffe485f71cc2f27647cb
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < 2f2190ce4ca972051cac6a8d7937448f8cb9673c	2f2190ce4ca972051cac6a8d7937448f8cb9673c
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < 4e38eaaabfb7fffbb371a51150203e19eee5d70e	4e38eaaabfb7fffbb371a51150203e19eee5d70e
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < 39ed887b1dd2d6b720f87e86692ac3006cc111c8	39ed887b1dd2d6b720f87e86692ac3006cc111c8
linux	linux	>= 37d9cf1a3ce35de3df6f7d209bfb1f50cf188cea < ac9fe7dd8e730a103ae4481147395cc73492d786	ac9fe7dd8e730a103ae4481147395cc73492d786
linux	linux_kernel	—	—
linux	linux_kernel	>= 0 < 5.10.244-1	5.10.244-1
linux	linux_kernel	>= 0 < 6.1.147-1	6.1.147-1
linux	linux_kernel	>= 0 < 6.12.32-1	6.12.32-1
linux	linux_kernel	>= 0 < 6.12.32-1	6.12.32-1
linux	linux_kernel	>= 0 < 5.15.0-143.153	5.15.0-143.153
linux	linux_kernel	>= 0 < 6.8.0-63.66	6.8.0-63.66
linux	linux_kernel	>= 0 < 6.14.0-23.23	6.14.0-23.23
linux	linux_kernel	>= 0 < 5.4.0-219.239	5.4.0-219.239
linux	linux_kernel	>= 5.0.1 < 5.4.294	5.4.294

OSV

linux-azure-5.15 vulnerabilities

osv·2025-09-02

linux-azure-5.15 vulnerabilities linux-azure-5.15 vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - Serial ATA and Parallel ATA drivers; - Bluetooth drivers; - Bus devices; - CPU frequency scaling framework; - Buffer Sharing and Synchronization framework; - DMA engine subsystem; - Arm Firmware Framework for ARMv8-A(FFA); - ARM SCMI message protocol; - GPU drivers; - HID subsystem; - HSI subsystem; - I2C subsystem; - I3C subsystem; - IIO subsystem; - InfiniBand drivers; - IOMMU subsystem; - IRQ chip drivers; - MCB driver; - Multiple devices driver; - Media drivers;

OSV

linux-azure-fips vulnerabilities

osv·2025-08-22

linux-azure-fips vulnerabilities linux-azure-fips vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - Serial ATA and Parallel ATA drivers; - Bluetooth drivers; - Bus devices; - CPU frequency scaling framework; - Buffer Sharing and Synchronization framework; - DMA engine subsystem; - Arm Firmware Framework for ARMv8-A(FFA); - ARM SCMI message protocol; - GPU drivers; - HID subsystem; - HSI subsystem; - I2C subsystem; - I3C subsystem; - IIO subsystem; - InfiniBand drivers; - IOMMU subsystem; - IRQ chip drivers; - MCB driver; - Multiple devices driver; - Media drivers;

OSV

linux-raspi vulnerabilities

osv·2025-08-05

linux-raspi vulnerabilities linux-raspi vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - Serial ATA and Parallel ATA drivers; - Bluetooth drivers; - Bus devices; - CPU frequency scaling framework; - Buffer Sharing and Synchronization framework; - DMA engine subsystem; - ARM SCMI message protocol; - GPU drivers; - HID subsystem; - HSI subsystem; - I2C subsystem; - I3C subsystem; - IIO subsystem; - InfiniBand drivers; - IOMMU subsystem; - IRQ chip drivers; - MCB driver; - Multiple devices driver; - Media drivers; - Multifunction device drivers; - PCI Endpoint

OSV

linux-iot vulnerabilities

osv·2025-08-04·CVSS 4.7

CVE-2024-53051 [MEDIUM] linux-iot vulnerabilities linux-iot vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ACPI drivers; - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2024-53051, CVE-2024-46787, CVE-2024-50047, CVE-2024-56662, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932, CVE-2025-37798, CVE-2025-38177, CVE-2025-38000)

OSV

linux-azure vulnerabilities

osv·2025-07-30·CVSS 4.7

CVE-2025-37890 [MEDIUM] linux-azure vulnerabilities linux-azure vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051)

OSV

linux-azure, linux-azure-5.4, linux-azure-fips, linux-raspi, linux-raspi-5.4 vulnerabilities

osv·2025-07-29·CVSS 4.7

CVE-2024-53051 [MEDIUM] linux-azure, linux-azure-5.4, linux-azure-fips, linux-raspi, linux-raspi-5.4 vulnerabilities linux-azure, linux-azure-5.4, linux-azure-fips, linux-raspi, linux-raspi-5.4 vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ACPI drivers; - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2024-53051, CVE-2024-46787, CVE-2024-50047, CVE-2024-56662, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932, CVE-2025-37798, CVE-2025-38177, CVE-2025-38000)

OSV

linux, linux-aws, linux-aws-5.4, linux-aws-fips, linux-bluefield, linux-fips, linux-gcp, linux-gcp-5.4, linux-gcp-fips, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5

osv·2025-07-25·CVSS 4.7

[MEDIUM] linux, linux-aws, linux-aws-5.4, linux-aws-fips, linux-bluefield, linux-fips, linux-gcp, linux-gcp-5.4, linux-gcp-fips, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5 linux, linux-aws, linux-aws-5.4, linux-aws-fips, linux-bluefield, linux-fips, linux-gcp, linux-gcp-5.4, linux-gcp-fips, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-xilinx-zynqmp vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ACPI drivers; - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2024-53051, CVE-2024-46787, CVE-2024-50047, CVE-2024-56662, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932, CVE-2025-37798, CVE-2025-38177, CVE-2025-38000)

OSV

linux-aws-6.14 vulnerabilities

osv·2025-07-24·CVSS 7.8

[HIGH] linux-aws-6.14 vulnerabilities linux-aws-6.14 vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; - Compute Acceleration Framework; - Ublk userspace block driver; - Bluetooth drivers; - ARM SCMI message protocol; - GPU drivers; - IOMMU subsystem; - IRQ chip drivers; - Multiple devices driver; - Network drivers; - PCI subsystem; - PTP clock framework; - SPI subsystem; - BTRFS file system; - SMB network file system; - eXpress Data Path; - Universal MIDI packet (UMP) support module; - Tracing infrastructure; - Memory management; - IPv4 networking; - IPv6 networking; - Net

OSV

linux-oracle vulnerabilities

osv·2025-07-21·CVSS 7.8

CVE-2025-38000 [HIGH] linux-oracle vulnerabilities linux-oracle vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932)

OSV

linux-intel-iotg-5.15 vulnerabilities

osv·2025-07-18·CVSS 8.8

CVE-2024-8805 [HIGH] linux-intel-iotg-5.15 vulnerabilities linux-intel-iotg-5.15 vulnerabilities Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. (CVE-2024-8805) It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. (CVE-2025-2312) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Crypt

OSV

linux-azure-6.8, linux-azure-nvidia vulnerabilities

osv·2025-07-17·CVSS 7.8

CVE-2025-38001 [HIGH] linux-azure-6.8, linux-azure-nvidia vulnerabilities linux-azure-6.8, linux-azure-nvidia vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890)

OSV

linux-hwe-6.8 vulnerabilities

osv·2025-07-17·CVSS 5.9

CVE-2025-2312 [MEDIUM] linux-hwe-6.8 vulnerabilities linux-hwe-6.8 vulnerabilities It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. (CVE-2025-2312) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Drivers core; - Network block device driver; - Character device driver; - TPM device driver; - Clock framework and drivers; - FireWire subsystem; - GPIO subsystem; - GPU drivers; - HID subsystem; - I3C subsystem; - InfiniBand drivers; - IOMMU sub

OSV

linux-aws vulnerabilities

osv·2025-07-17·CVSS 7.8

CVE-2025-38000 [HIGH] linux-aws vulnerabilities linux-aws vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932)

OSV

linux-lowlatency-hwe-6.11 vulnerabilities

osv·2025-07-15·CVSS 7.8

CVE-2025-38001 [HIGH] linux-lowlatency-hwe-6.11 vulnerabilities linux-lowlatency-hwe-6.11 vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-37890)

OSV

linux-xilinx-zynqmp vulnerabilities

osv·2025-07-11·CVSS 4.7

CVE-2025-37890 [MEDIUM] linux-xilinx-zynqmp vulnerabilities linux-xilinx-zynqmp vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051)

OSV

linux-azure, linux-azure-6.11 vulnerabilities

osv·2025-07-08·CVSS 5.9

CVE-2025-2312 [MEDIUM] linux-azure, linux-azure-6.11 vulnerabilities linux-azure, linux-azure-6.11 vulnerabilities It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. (CVE-2025-2312) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Compute Acceleration Framework; - ACPI drivers; - Ublk userspace block driver; - Compressed RAM block device driver; - Bus devices; - AMD CDX bus driver; - Clock framework and drivers; - DMA engine subsystem; - DPLL subsystem; - Qualcomm firmware driv

OSV

linux-azure vulnerabilities

osv·2025-07-08·CVSS 7.8

CVE-2025-38000 [HIGH] linux-azure vulnerabilities linux-azure vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932)

OSV

linux-lowlatency, linux-oem-6.11 vulnerabilities

osv·2025-07-08·CVSS 7.8

CVE-2025-38001 [HIGH] linux-lowlatency, linux-oem-6.11 vulnerabilities linux-lowlatency, linux-oem-6.11 vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-37890)

OSV

linux-azure vulnerabilities

osv·2025-07-08·CVSS 7.8

CVE-2025-38001 [HIGH] linux-azure vulnerabilities linux-azure vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890)

OSV

linux-ibm-5.15, linux-intel-iotg, linux-nvidia-tegra, linux-nvidia-tegra-5.15, linux-nvidia-tegra-igx vulnerabilities

osv·2025-07-08·CVSS 4.7

CVE-2025-37890 [MEDIUM] linux-ibm-5.15, linux-intel-iotg, linux-nvidia-tegra, linux-nvidia-tegra-5.15, linux-nvidia-tegra-igx vulnerabilities linux-ibm-5.15, linux-intel-iotg, linux-nvidia-tegra, linux-nvidia-tegra-5.15, linux-nvidia-tegra-igx vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051)

OSV

linux-oem-6.14 vulnerabilities

osv·2025-07-04·CVSS 7.8

CVE-2025-37890 [HIGH] linux-oem-6.14 vulnerabilities linux-oem-6.14 vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Bluetooth drivers; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2025-37918, CVE-2025-37932, CVE-2025-38000, CVE-2025-37997, CVE-2025-38001)

OSV

linux-ibm vulnerabilities

osv·2025-07-04·CVSS 7.8

CVE-2025-38001 [HIGH] linux-ibm vulnerabilities linux-ibm vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890)

OSV

linux-aws-5.15, linux-intel-iot-realtime vulnerabilities

osv·2025-07-03·CVSS 4.7

CVE-2025-37890 [MEDIUM] linux-aws-5.15, linux-intel-iot-realtime vulnerabilities linux-aws-5.15, linux-intel-iot-realtime vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051)

OSV

linux, linux-gcp, linux-raspi, linux-realtime vulnerabilities

osv·2025-07-02·CVSS 7.8

CVE-2025-38000 [HIGH] linux, linux-gcp, linux-raspi, linux-realtime vulnerabilities linux, linux-gcp, linux-raspi, linux-realtime vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932)

OSV

linux, linux-aws, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oracle, linux-raspi, linux-realtime vulnerabilities

osv·2025-07-01·CVSS 7.8

CVE-2025-38001 [HIGH] linux, linux-aws, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oracle, linux-raspi, linux-realtime vulnerabilities linux, linux-aws, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oracle, linux-raspi, linux-realtime vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-37890)

OSV

linux-realtime vulnerabilities

osv·2025-07-01·CVSS 4.7

CVE-2025-37890 [MEDIUM] linux-realtime vulnerabilities linux-realtime vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051)

OSV

linux, linux-aws, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vu

osv·2025-07-01·CVSS 4.7

[MEDIUM] linux, linux-aws, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vu linux, linux-aws, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051)

OSV

linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities

osv·2025-07-01·CVSS 4.7

CVE-2025-37890 [MEDIUM] linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051)

OSV

linux-realtime, linux-raspi-realtime vulnerabilities

osv·2025-07-01·CVSS 7.8

CVE-2025-38001 [HIGH] linux-realtime, linux-raspi-realtime vulnerabilities linux-realtime, linux-raspi-realtime vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890)

OSV

linux, linux-aws, linux-aws-6.8, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oem-6.8, l

osv·2025-07-01·CVSS 7.8

[HIGH] linux, linux-aws, linux-aws-6.8, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oem-6.8, l linux, linux-aws, linux-aws-6.8, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oem-6.8, linux-oracle, linux-oracle-6.8, linux-raspi vulnerabilities Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890)

GHSA

GHSA-rh23-w5x7-xjm4: In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino s

ghsa_unreviewed·2025-06-06

CVE-2025-38001 [MEDIUM] CWE-835 GHSA-rh23-w5x7-xjm4: In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino s In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino says: "We are writing to report that this recent patch (141d34391abbb315d68556b7c67ad97885407547) [1] can be bypassed, and a UAF can still occur when HFSC is utilized with NETEM. The patch only checks the cl->cl_nactive field to determine whether it is the first insertion or not [2], but this field is only incremented by init_vf [3]. By using HFSC_RSC (which uses init_ed) [4], it is possible to bypass the check and insert the class twice in the eltree. Under normal conditions, this would lead to an infinite loop in hfsc_dequeue for the reasons we already explained in this report [5]. However, if TBF is added as root qdisc and it is configur

OSV

CVE-2025-38001: In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino say

osv·2025-06-06·CVSS 5.5

CVE-2025-38001 [MEDIUM] CVE-2025-38001: In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino say In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino says: "We are writing to report that this recent patch (141d34391abbb315d68556b7c67ad97885407547) [1] can be bypassed, and a UAF can still occur when HFSC is utilized with NETEM. The patch only checks the cl->cl_nactive field to determine whether it is the first insertion or not [2], but this field is only incremented by init_vf [3]. By using HFSC_RSC (which uses init_ed) [4], it is possible to bypass the check and insert the class twice in the eltree. Under normal conditions, this would lead to an infinite loop in hfsc_dequeue for the reasons we already explained in this report [5]. However, if TBF is added as root qdisc and it is configured wi

Chrome

Long Term Support Channel Update for ChromeOS: CVE-2025-38001

vendor_chrome·2026-02-27·CVSS 5.5

CVE-2025-38001 [MEDIUM] Long Term Support Channel Update for ChromeOS: CVE-2025-38001 Long Term Support Channel Update for ChromeOS CVE-2025-38001

Ubuntu

Linux kernel (Azure) vulnerabilities

vendor_ubuntu·2025-09-02

CVE-2022-49535 Linux kernel (Azure) vulnerabilities Title: Linux kernel (Azure) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - Serial ATA and Parallel ATA drivers; - Bluetooth drivers; - Bus devices; - CPU frequency scaling framework; - Buffer Sharing and Synchronization framework; - DMA engine subsystem; - Arm Firmware Framework for ARMv8-A(FFA); - ARM SCMI message protocol; - GPU drivers; - HID subsystem; - HSI subsystem; - I2C subsystem; - I3C subsystem; - IIO subsystem; - InfiniBand drivers; - IOMMU subsystem;

Ubuntu

Linux kernel (Azure FIPS) vulnerabilities

vendor_ubuntu·2025-08-22

CVE-2024-46816 Linux kernel (Azure FIPS) vulnerabilities Title: Linux kernel (Azure FIPS) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - Serial ATA and Parallel ATA drivers; - Bluetooth drivers; - Bus devices; - CPU frequency scaling framework; - Buffer Sharing and Synchronization framework; - DMA engine subsystem; - Arm Firmware Framework for ARMv8-A(FFA); - ARM SCMI message protocol; - GPU drivers; - HID subsystem; - HSI subsystem; - I2C subsystem; - I3C subsystem; - IIO subsystem; - InfiniBand drivers; - IOMMU subsys

Ubuntu

Linux kernel (Raspberry Pi) vulnerabilities

vendor_ubuntu·2025-08-05

CVE-2025-23147 Linux kernel (Raspberry Pi) vulnerabilities Title: Linux kernel (Raspberry Pi) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - Serial ATA and Parallel ATA drivers; - Bluetooth drivers; - Bus devices; - CPU frequency scaling framework; - Buffer Sharing and Synchronization framework; - DMA engine subsystem; - ARM SCMI message protocol; - GPU drivers; - HID subsystem; - HSI subsystem; - I2C subsystem; - I3C subsystem; - IIO subsystem; - InfiniBand drivers; - IOMMU subsystem; - IRQ chip drivers; - MCB driver; -

Ubuntu

Linux kernel (IoT) vulnerabilities

vendor_ubuntu·2025-08-04·CVSS 4.7

CVE-2024-50047 [MEDIUM] Linux kernel (IoT) vulnerabilities Title: Linux kernel (IoT) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ACPI drivers; - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2024-53051, CVE-2024-46787, CVE-2024-50047, CVE-2024-56662, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932, CVE-2025-37798, CVE-2025-38177, CVE-2025-38000) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number,

Ubuntu

Linux kernel (Azure) vulnerabilities

vendor_ubuntu·2025-07-30·CVSS 4.7

CVE-2025-38000 [MEDIUM] Linux kernel (Azure) vulnerabilities Title: Linux kernel (Azure) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall

Ubuntu

Linux kernel vulnerabilities

vendor_ubuntu·2025-07-29·CVSS 4.7

CVE-2024-53051 [MEDIUM] Linux kernel vulnerabilities Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ACPI drivers; - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2024-53051, CVE-2024-46787, CVE-2024-50047, CVE-2024-56662, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932, CVE-2025-37798, CVE-2025-38177, CVE-2025-38000) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which

Ubuntu

Linux kernel (AWS) vulnerabilities

vendor_ubuntu·2025-07-24·CVSS 7.8

CVE-2025-37933 [HIGH] Linux kernel (AWS) vulnerabilities Title: Linux kernel (AWS) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; - Compute Acceleration Framework; - Ublk userspace block driver; - Bluetooth drivers; - ARM SCMI message protocol; - GPU drivers; - IOMMU subsystem; - IRQ chip drivers; - Multiple devices driver; - Network drivers; - PCI subsystem; - PTP clock framework; - SPI subsystem; - BTRFS file system; - SMB network file system; - eXpress Data Path; - Universal MIDI packet (UMP) support module; - Tracing inf

Ubuntu

Linux kernel (Oracle) vulnerabilities

vendor_ubuntu·2025-07-21·CVSS 7.8

CVE-2025-37997 [HIGH] Linux kernel (Oracle) vulnerabilities Title: Linux kernel (Oracle) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.

Ubuntu

Linux kernel (Intel IoTG) vulnerabilities

vendor_ubuntu·2025-07-18·CVSS 8.8

CVE-2025-38009 [HIGH] Linux kernel (Intel IoTG) vulnerabilities Title: Linux kernel (Intel IoTG) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. (CVE-2024-8805) It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. (CVE-2025-2312) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture;

Ubuntu

Linux kernel (Azure) vulnerabilities

vendor_ubuntu·2025-07-17·CVSS 7.8

CVE-2025-37798 [HIGH] Linux kernel (Azure) vulnerabilities Title: Linux kernel (Azure) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manu

Ubuntu

Linux kernel (HWE) vulnerabilities

vendor_ubuntu·2025-07-17·CVSS 5.9

CVE-2024-57953 [MEDIUM] Linux kernel (HWE) vulnerabilities Title: Linux kernel (HWE) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. (CVE-2025-2312) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Drivers core; - Network block device driver; - Character device driver; - TPM device driver; - Clock framework and drivers; - FireWire subsystem; - GPIO subsystem; - GP

Ubuntu

Linux kernel (AWS) vulnerabilities

vendor_ubuntu·2025-07-17·CVSS 7.8

CVE-2025-37997 [HIGH] Linux kernel (AWS) vulnerabilities Title: Linux kernel (AWS) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g.

Ubuntu

Linux kernel (Low Latency) vulnerabilities

vendor_ubuntu·2025-07-15·CVSS 7.8

CVE-2025-37798 [HIGH] Linux kernel (Low Latency) vulnerabilities Title: Linux kernel (Low Latency) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-37890) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard ke

Ubuntu

Linux kernel (Xilinx ZynqMP) vulnerabilities

vendor_ubuntu·2025-07-11·CVSS 4.7

CVE-2025-38001 [MEDIUM] Linux kernel (Xilinx ZynqMP) vulnerabilities Title: Linux kernel (Xilinx ZynqMP) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and r

Ubuntu

Linux kernel (Azure) vulnerabilities

vendor_ubuntu·2025-07-08·CVSS 5.9

CVE-2025-22095 [MEDIUM] Linux kernel (Azure) vulnerabilities Title: Linux kernel (Azure) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. (CVE-2025-2312) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Compute Acceleration Framework; - ACPI drivers; - Ublk userspace block driver; - Compressed RAM block device driver; - Bus devices; - AMD CDX bus driver; - Clock framework and drivers; -

Ubuntu

Linux kernel vulnerabilities

vendor_ubuntu·2025-07-08·CVSS 7.8

CVE-2025-37932 [HIGH] Linux kernel vulnerabilities Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-37890) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapacka

Ubuntu

Linux kernel (Azure) vulnerabilities

vendor_ubuntu·2025-07-08·CVSS 7.8

CVE-2025-37932 [HIGH] Linux kernel (Azure) vulnerabilities Title: Linux kernel (Azure) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g

Ubuntu

Linux kernel vulnerabilities

vendor_ubuntu·2025-07-08·CVSS 4.7

CVE-2024-53051 [MEDIUM] Linux kernel vulnerabilities Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all thi

Ubuntu

Linux kernel (Azure) vulnerabilities

vendor_ubuntu·2025-07-08·CVSS 7.8

CVE-2025-37798 [HIGH] Linux kernel (Azure) vulnerabilities Title: Linux kernel (Azure) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manu

Ubuntu

Linux kernel (OEM) vulnerabilities

vendor_ubuntu·2025-07-04·CVSS 7.8

CVE-2025-37932 [HIGH] Linux kernel (OEM) vulnerabilities Title: Linux kernel (OEM) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Bluetooth drivers; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2025-37918, CVE-2025-37932, CVE-2025-38000, CVE-2025-37997, CVE-2025-38001) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled th

Ubuntu

Linux kernel (IBM) vulnerabilities

vendor_ubuntu·2025-07-04·CVSS 7.8

CVE-2025-37798 [HIGH] Linux kernel (IBM) vulnerabilities Title: Linux kernel (IBM) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manual

Ubuntu

Linux kernel vulnerabilities

vendor_ubuntu·2025-07-03·CVSS 4.7

CVE-2025-37932 [MEDIUM] Linux kernel vulnerabilities Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all thi

Ubuntu

Linux kernel vulnerabilities

vendor_ubuntu·2025-07-02·CVSS 7.8

CVE-2025-37932 [HIGH] Linux kernel vulnerabilities Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-

Ubuntu

Linux kernel (Real-time) vulnerabilities

vendor_ubuntu·2025-07-01·CVSS 7.8

CVE-2025-37798 [HIGH] Linux kernel (Real-time) vulnerabilities Title: Linux kernel (Real-time) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you

Ubuntu

Linux kernel vulnerabilities

vendor_ubuntu·2025-07-01·CVSS 4.7

CVE-2025-37798 [MEDIUM] Linux kernel vulnerabilities Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all thi

Ubuntu

Linux kernel (Real-time) vulnerabilities

vendor_ubuntu·2025-07-01·CVSS 4.7

CVE-2025-37798 [MEDIUM] Linux kernel (Real-time) vulnerabilities Title: Linux kernel (Real-time) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reins

Ubuntu

Linux kernel (FIPS) vulnerabilities

vendor_ubuntu·2025-07-01·CVSS 4.7

CVE-2025-37932 [MEDIUM] Linux kernel (FIPS) vulnerabilities Title: Linux kernel (FIPS) vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047, CVE-2024-53051) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall

Ubuntu

Linux kernel vulnerabilities

vendor_ubuntu·2025-07-01·CVSS 7.8

CVE-2025-37798 [HIGH] Linux kernel vulnerabilities Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37798, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-22088, CVE-2025-37890) Instructions: After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uni

Microsoft

net_sched: hfsc: Address reentrant enqueue adding class to eltree twice

vendor_msrc·2025-06-10·CVSS 5.5

CVE-2025-38001 [MEDIUM] CWE-835 net_sched: hfsc: Address reentrant enqueue adding class to eltree twice net_sched: hfsc: Address reentrant enqueue adding class to eltree twice FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this. Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Referenc

Red Hat

kernel: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice

vendor_redhat·2025-06-06·CVSS 5.5

CVE-2025-38001 [MEDIUM] CWE-416 kernel: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice kernel: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino says: "We are writing to report that this recent patch (141d34391abbb315d68556b7c67ad97885407547) [1] can be bypassed, and a UAF can still occur when HFSC is utilized with NETEM. The patch only checks the cl->cl_nactive field to determine whether it is the first insertion or not [2], but this field is only incremented by init_vf [3]. By using HFSC_RSC (which uses init_ed) [4], it is possible to bypass the check and insert the class twice in the eltree. Under normal conditions, this would lead to an infinite loop in hfsc_dequeue for the reasons we already explained i

Debian

CVE-2025-38001: linux - In the Linux kernel, the following vulnerability has been resolved: net_sched: ...

vendor_debian·2025·CVSS 5.5

CVE-2025-38001 [MEDIUM] CVE-2025-38001: linux - In the Linux kernel, the following vulnerability has been resolved: net_sched: ... In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino says: "We are writing to report that this recent patch (141d34391abbb315d68556b7c67ad97885407547) [1] can be bypassed, and a UAF can still occur when HFSC is utilized with NETEM. The patch only checks the cl->cl_nactive field to determine whether it is the first insertion or not [2], but this field is only incremented by init_vf [3]. By using HFSC_RSC (which uses init_ed) [4], it is possible to bypass the check and insert the class twice in the eltree. Under normal conditions, this would lead to an infinite loop in hfsc_dequeue for the reasons we already explained in this report [5]. However, if TBF is added as root qdisc and it is configured wi

CVE-2025-38001: In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice Savino says: "We…

Affected

CVSS provenance