Vulnerability-Lookup

CVE-2025-71237 (GCVE-0-2025-71237)

Vulnerability from cvelistv5 – Published: 2026-02-18 14:53 – Updated: 2026-05-11 21:56

Title

nilfs2: Fix potential block overflow that cause system hang

Summary

In the Linux kernel, the following vulnerability has been resolved: nilfs2: Fix potential block overflow that cause system hang When a user executes the FITRIM command, an underflow can occur when calculating nblocks if end_block is too small. Since nblocks is of type sector_t, which is u64, a negative nblocks value will become a very large positive integer. This ultimately leads to the block layer function __blkdev_issue_discard() taking an excessively long time to process the bio chain, and the ns_segctor_sem lock remains held for a long period. This prevents other tasks from acquiring the ns_segctor_sem lock, resulting in the hang reported by syzbot in [1]. If the ending block is too small, typically if it is smaller than 4KiB range, depending on the usage of the segment 0, it may be possible to attempt a discard request beyond the device size causing the hang. Exiting successfully and assign the discarded size (0 in this case) to range->len. Although the start and len values in the user input range are too small, a conservative strategy is adopted here to safely ignore them, which is equivalent to a no-op; it will not perform any trimming and will not throw an error. [1] task:segctord state:D stack:28968 pid:6093 tgid:6093 ppid:2 task_flags:0x200040 flags:0x00080000 Call Trace: rwbase_write_lock+0x3dd/0x750 kernel/locking/rwbase_rt.c:272 nilfs_transaction_lock+0x253/0x4c0 fs/nilfs2/segment.c:357 nilfs_segctor_thread_construct fs/nilfs2/segment.c:2569 [inline] nilfs_segctor_thread+0x6ec/0xe00 fs/nilfs2/segment.c:2684 [ryusuke: corrected part of the commit message about the consequences]

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Assigner

Linux

References

8 references

URL	Tags
https://git.kernel.org/stable/c/6457d3ee41a4c1508…
https://git.kernel.org/stable/c/ba18e5f22f26aa4ef…
https://git.kernel.org/stable/c/2438982f635e6cc20…
https://git.kernel.org/stable/c/df1e20796c9f3d541…
https://git.kernel.org/stable/c/ea2278657ad0d6259…
https://git.kernel.org/stable/c/4aa45f841413cca81…
https://git.kernel.org/stable/c/b8c5ee234bd54f144…
https://git.kernel.org/stable/c/ed527ef0c264e4bed…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < 6457d3ee41a4c15082ac49c5aa7fb933b4a043f3 (git) Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < ba18e5f22f26aa4ef78bc3e81f639d1d4f3845e6 (git) Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < 2438982f635e6cc2009be68ba2efb2998727d8d4 (git) Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < df1e20796c9f3d541cca47fb72e4369ea135642d (git) Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < ea2278657ad0d62596589fbe2caf995e189e65e7 (git) Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < 4aa45f841413cca81882602b4042c53502f34cad (git) Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < b8c5ee234bd54f1447c846101fdaef2cf70c2149 (git) Affected: 82e11e857be3ffd2a0a952c9db8aa2379e2b9e44 , < ed527ef0c264e4bed6c7b2a158ddf516b17f5f66 (git)
Linux	Linux	Affected: 3.15 Unaffected: 0 , < 3.15 (semver) Unaffected: 5.10.251 , ≤ 5.10.* (semver) Unaffected: 5.15.201 , ≤ 5.15.* (semver) Unaffected: 6.1.164 , ≤ 6.1.* (semver) Unaffected: 6.6.125 , ≤ 6.6.* (semver) Unaffected: 6.12.72 , ≤ 6.12.* (semver) Unaffected: 6.18.11 , ≤ 6.18.* (semver) Unaffected: 6.19.1 , ≤ 6.19.* (semver) Unaffected: 7.0 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/sufile.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "6457d3ee41a4c15082ac49c5aa7fb933b4a043f3",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            },
            {
              "lessThan": "ba18e5f22f26aa4ef78bc3e81f639d1d4f3845e6",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            },
            {
              "lessThan": "2438982f635e6cc2009be68ba2efb2998727d8d4",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            },
            {
              "lessThan": "df1e20796c9f3d541cca47fb72e4369ea135642d",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            },
            {
              "lessThan": "ea2278657ad0d62596589fbe2caf995e189e65e7",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            },
            {
              "lessThan": "4aa45f841413cca81882602b4042c53502f34cad",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            },
            {
              "lessThan": "b8c5ee234bd54f1447c846101fdaef2cf70c2149",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            },
            {
              "lessThan": "ed527ef0c264e4bed6c7b2a158ddf516b17f5f66",
              "status": "affected",
              "version": "82e11e857be3ffd2a0a952c9db8aa2379e2b9e44",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/sufile.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.15"
            },
            {
              "lessThan": "3.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.251",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.201",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.164",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.125",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.72",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.19.*",
              "status": "unaffected",
              "version": "6.19.1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.251",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.201",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.164",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.125",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.72",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.11",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.19.1",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0",
                  "versionStartIncluding": "3.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: Fix potential block overflow that cause system hang\n\nWhen a user executes the FITRIM command, an underflow can occur when\ncalculating nblocks if end_block is too small. Since nblocks is of\ntype sector_t, which is u64, a negative nblocks value will become a\nvery large positive integer. This ultimately leads to the block layer\nfunction __blkdev_issue_discard() taking an excessively long time to\nprocess the bio chain, and the ns_segctor_sem lock remains held for a\nlong period. This prevents other tasks from acquiring the ns_segctor_sem\nlock, resulting in the hang reported by syzbot in [1].\n\nIf the ending block is too small, typically if it is smaller than 4KiB\nrange, depending on the usage of the segment 0, it may be possible to\nattempt a discard request beyond the device size causing the hang.\n\nExiting successfully and assign the discarded size (0 in this case)\nto range-\u003elen.\n\nAlthough the start and len values in the user input range are too small,\na conservative strategy is adopted here to safely ignore them, which is\nequivalent to a no-op; it will not perform any trimming and will not\nthrow an error.\n\n[1]\ntask:segctord state:D stack:28968 pid:6093 tgid:6093  ppid:2 task_flags:0x200040 flags:0x00080000\nCall Trace:\n rwbase_write_lock+0x3dd/0x750 kernel/locking/rwbase_rt.c:272\n nilfs_transaction_lock+0x253/0x4c0 fs/nilfs2/segment.c:357\n nilfs_segctor_thread_construct fs/nilfs2/segment.c:2569 [inline]\n nilfs_segctor_thread+0x6ec/0xe00 fs/nilfs2/segment.c:2684\n\n[ryusuke: corrected part of the commit message about the consequences]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:56:59.574Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/6457d3ee41a4c15082ac49c5aa7fb933b4a043f3"
        },
        {
          "url": "https://git.kernel.org/stable/c/ba18e5f22f26aa4ef78bc3e81f639d1d4f3845e6"
        },
        {
          "url": "https://git.kernel.org/stable/c/2438982f635e6cc2009be68ba2efb2998727d8d4"
        },
        {
          "url": "https://git.kernel.org/stable/c/df1e20796c9f3d541cca47fb72e4369ea135642d"
        },
        {
          "url": "https://git.kernel.org/stable/c/ea2278657ad0d62596589fbe2caf995e189e65e7"
        },
        {
          "url": "https://git.kernel.org/stable/c/4aa45f841413cca81882602b4042c53502f34cad"
        },
        {
          "url": "https://git.kernel.org/stable/c/b8c5ee234bd54f1447c846101fdaef2cf70c2149"
        },
        {
          "url": "https://git.kernel.org/stable/c/ed527ef0c264e4bed6c7b2a158ddf516b17f5f66"
        }
      ],
      "title": "nilfs2: Fix potential block overflow that cause system hang",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-71237",
    "datePublished": "2026-02-18T14:53:22.436Z",
    "dateReserved": "2026-02-18T14:25:13.845Z",
    "dateUpdated": "2026-05-11T21:56:59.574Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-71237",
      "date": "2026-06-06",
      "epss": "0.00031",
      "percentile": "0.09487"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-71237\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-02-18T16:22:30.517\",\"lastModified\":\"2026-03-18T14:58:45.933\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nnilfs2: Fix potential block overflow that cause system hang\\n\\nWhen a user executes the FITRIM command, an underflow can occur when\\ncalculating nblocks if end_block is too small. Since nblocks is of\\ntype sector_t, which is u64, a negative nblocks value will become a\\nvery large positive integer. This ultimately leads to the block layer\\nfunction __blkdev_issue_discard() taking an excessively long time to\\nprocess the bio chain, and the ns_segctor_sem lock remains held for a\\nlong period. This prevents other tasks from acquiring the ns_segctor_sem\\nlock, resulting in the hang reported by syzbot in [1].\\n\\nIf the ending block is too small, typically if it is smaller than 4KiB\\nrange, depending on the usage of the segment 0, it may be possible to\\nattempt a discard request beyond the device size causing the hang.\\n\\nExiting successfully and assign the discarded size (0 in this case)\\nto range-\u003elen.\\n\\nAlthough the start and len values in the user input range are too small,\\na conservative strategy is adopted here to safely ignore them, which is\\nequivalent to a no-op; it will not perform any trimming and will not\\nthrow an error.\\n\\n[1]\\ntask:segctord state:D stack:28968 pid:6093 tgid:6093  ppid:2 task_flags:0x200040 flags:0x00080000\\nCall Trace:\\n rwbase_write_lock+0x3dd/0x750 kernel/locking/rwbase_rt.c:272\\n nilfs_transaction_lock+0x253/0x4c0 fs/nilfs2/segment.c:357\\n nilfs_segctor_thread_construct fs/nilfs2/segment.c:2569 [inline]\\n nilfs_segctor_thread+0x6ec/0xe00 fs/nilfs2/segment.c:2684\\n\\n[ryusuke: corrected part of the commit message about the consequences]\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\\n\\nnilfs2: Corrige un posible desbordamiento de bloque que causa un cuelgue del sistema\\n\\nCuando un usuario ejecuta el comando FITRIM, puede ocurrir un subdesbordamiento al calcular nblocks si end_block es demasiado peque\u00f1o. Dado que nblocks es de tipo sector_t, que es u64, un valor negativo de nblocks se convertir\u00e1 en un entero positivo muy grande. Esto finalmente lleva a que la funci\u00f3n de la capa de bloques __blkdev_issue_discard() tarde un tiempo excesivamente largo en procesar la cadena bio, y el bloqueo ns_segctor_sem permanezca retenido durante un largo per\u00edodo. Esto impide que otras tareas adquieran el bloqueo ns_segctor_sem, lo que resulta en el cuelgue reportado por syzbot en [1].\\n\\nSi el bloque final es demasiado peque\u00f1o, t\u00edpicamente si es menor que el rango de 4KiB, dependiendo del uso del segmento 0, puede ser posible intentar una solicitud de descarte m\u00e1s all\u00e1 del tama\u00f1o del dispositivo, causando el cuelgue.\\n\\nSaliendo con \u00e9xito y asignando el tama\u00f1o descartado (0 en este caso) a range-\u0026gt;len.\\n\\nAunque los valores de inicio y longitud en el rango de entrada del usuario son demasiado peque\u00f1os, se adopta aqu\u00ed una estrategia conservadora para ignorarlos de forma segura, lo cual es equivalente a una no-op; no realizar\u00e1 ning\u00fan recorte y no lanzar\u00e1 un error.\\n\\n[1]\\ntarea:segctord estado:D pila:28968 pid:6093 tgid:6093 ppid:2 flags_de_tarea:0x200040 flags:0x00080000\\nTraza de Llamada:\\n rwbase_write_lock+0x3dd/0x750 kernel/locking/rwbase_rt.c:272\\n nilfs_transaction_lock+0x253/0x4c0 fs/nilfs2/segment.c:357\\n nilfs_segctor_thread_construct fs/nilfs2/segment.c:2569 [inline]\\n nilfs_segctor_thread+0x6ec/0xe00 fs/nilfs2/segment.c:2684\\n\\n[ryusuke: corregida parte del mensaje de commit sobre las consecuencias]\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.15\",\"versionEndExcluding\":\"5.10.251\",\"matchCriteriaId\":\"7BF232A2-85DC-4F39-B61B-5D73152A23C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.11\",\"versionEndExcluding\":\"5.15.201\",\"matchCriteriaId\":\"600A89ED-86F2-48D8-BB7C-5EE7A8832FC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16\",\"versionEndExcluding\":\"6.1.164\",\"matchCriteriaId\":\"6892F74B-3F14-4500-9652-24A2ECB04144\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.6.125\",\"matchCriteriaId\":\"74B70CDE-7B74-4280-BBCC-8889B8F28466\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.12.72\",\"matchCriteriaId\":\"F1A7E514-FB3C-4B6B-8046-07D5A8F04644\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.13\",\"versionEndExcluding\":\"6.18.11\",\"matchCriteriaId\":\"7099A9EC-3D54-4424-BF01-7224EF88C79C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.19\",\"versionEndExcluding\":\"6.19.1\",\"matchCriteriaId\":\"EE543C0D-A06B-414F-A403-CB1E088F261E\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/2438982f635e6cc2009be68ba2efb2998727d8d4\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/4aa45f841413cca81882602b4042c53502f34cad\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6457d3ee41a4c15082ac49c5aa7fb933b4a043f3\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b8c5ee234bd54f1447c846101fdaef2cf70c2149\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/ba18e5f22f26aa4ef78bc3e81f639d1d4f3845e6\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/df1e20796c9f3d541cca47fb72e4369ea135642d\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/ea2278657ad0d62596589fbe2caf995e189e65e7\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/ed527ef0c264e4bed6c7b2a158ddf516b17f5f66\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}"
  }
}

WID-SEC-W-2026-0462

Vulnerability from csaf_certbund - Published: 2026-02-18 23:00 - Updated: 2026-05-20 22:00

Summary

Linux Kernel: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff: Ein Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um nicht näher spezifizierte Angriffe durchzuführen, die möglicherweise zu einer Denial-of-Service- Bedingung führen oder eine Speicherbeschädigung verursachen können.

Betroffene Betriebssysteme: - Linux

CVE-2025-71225

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71226

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71227

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71228

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71229

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71230

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71231

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71232

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71233

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71234

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71235

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71236

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2025-71237

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23211

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23212

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23213

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23214

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23215

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23216

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23217

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23218

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23219

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23220

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23221

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23222

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23223

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23224

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23225

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23226

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23227

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23228

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23229

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

CVE-2026-23230

Affected products

Known affected 8 products

Product	Identifier	Version
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—

References

82 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://lore.kernel.org/linux-cve-announce/	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lore.kernel.org/linux-cve-announce/202602…	external
https://lists.debian.org/debian-security-announce…	external
https://lists.debian.org/debian-security-announce…	external
https://lists.debian.org/debian-lts-announce/2026…	external
https://lists.debian.org/debian-lts-announce/2026…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.15-…	external
https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.10-…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2026-50160.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2026-50232.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2026:9870	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2026:10756	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.debian.org/debian-lts-announce/2026…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.debian.org/debian-security-announce…	external
https://lists.debian.org/debian-security-announce…	external
https://ubuntu.com/security/notices/USN-8278-1	external
https://ubuntu.com/security/notices/USN-8289-1	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren, die m\u00f6glicherweise zu einer Denial-of-Service- Bedingung f\u00fchren oder eine Speicherbesch\u00e4digung verursachen k\u00f6nnen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-0462 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0462.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-0462 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0462"
      },
      {
        "category": "external",
        "summary": "Kernel CVE Announce Mailingliste",
        "url": "https://lore.kernel.org/linux-cve-announce/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71225",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021859-CVE-2025-71225-44de@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71226",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021859-CVE-2025-71226-5662@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71227",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021859-CVE-2025-71227-949c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71228",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021859-CVE-2025-71228-d43d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71229",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021802-CVE-2025-71229-81bd@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71230",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021804-CVE-2025-71230-8e25@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71231",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021805-CVE-2025-71231-5cc3@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71232",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021805-CVE-2025-71232-8ee0@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71233",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021805-CVE-2025-71233-0c35@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71234",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021805-CVE-2025-71234-3bb7@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71235",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021805-CVE-2025-71235-b233@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71236",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021806-CVE-2025-71236-26df@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71237",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021806-CVE-2025-71237-545a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23211",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021830-CVE-2026-23211-10d0@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23212",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021832-CVE-2026-23212-adae@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23213",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021800-CVE-2026-23213-c699@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23214",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021800-CVE-2026-23214-c822@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23215",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021800-CVE-2026-23215-3294@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23216",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021800-CVE-2026-23216-6c63@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23217",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021800-CVE-2026-23217-f399@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23218",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021801-CVE-2026-23218-4114@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23219",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021801-CVE-2026-23219-3569@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23220",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021806-CVE-2026-23220-efda@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23221",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021806-CVE-2026-23221-43ae@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23222",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021806-CVE-2026-23222-3958@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23223",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021806-CVE-2026-23223-e3d3@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23224",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021807-CVE-2026-23224-b534@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23225",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021807-CVE-2026-23225-2a27@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23226",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021807-CVE-2026-23226-438c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23227",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021807-CVE-2026-23227-6986@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23228",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021807-CVE-2026-23228-647c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23229",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021808-CVE-2026-23229-9dfe@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2026-23230",
        "url": "https://lore.kernel.org/linux-cve-announce/2026021808-CVE-2026-23230-8d0e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6163 vom 2026-03-13",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00071.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6162 vom 2026-03-13",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00072.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4499 vom 2026-03-13",
        "url": "https://lists.debian.org/debian-lts-announce/2026/03/msg00003.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4498 vom 2026-03-13",
        "url": "https://lists.debian.org/debian-lts-announce/2026/03/msg00002.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20667-1 vom 2026-03-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024746.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20711-1 vom 2026-03-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024715.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20713-1 vom 2026-03-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024771.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.15-2026-099 vom 2026-03-19",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.15-2026-099.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.10-2026-114 vom 2026-03-19",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.10-2026-114.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20720-1 vom 2026-03-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024766.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0962-1 vom 2026-03-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024803.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-50160 vom 2026-03-24",
        "url": "https://linux.oracle.com/errata/ELSA-2026-50160.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20772-1 vom 2026-03-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024862.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20819-1 vom 2026-03-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024871.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20794-1 vom 2026-03-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024895.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1041-1 vom 2026-03-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024928.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1078-1 vom 2026-03-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024954.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1081-1 vom 2026-03-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024953.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20838-1 vom 2026-03-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024999.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20873-1 vom 2026-03-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024968.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20872-1 vom 2026-03-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024969.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20845-1 vom 2026-03-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024994.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20876-1 vom 2026-03-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/025054.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20931-1 vom 2026-04-01",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025086.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-50232 vom 2026-04-17",
        "url": "https://linux.oracle.com/errata/ELSA-2026-50232.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21114-1 vom 2026-04-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025429.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21129-1 vom 2026-04-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025416.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21131-1 vom 2026-04-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025414.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21123-1 vom 2026-04-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025421.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:20572-1 vom 2026-04-21",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/STWYWECAV6YINBQYRNTOUWNIHBOUY3YT/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21237-1 vom 2026-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025557.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21230-1 vom 2026-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025560.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:9870 vom 2026-04-22",
        "url": "https://access.redhat.com/errata/RHSA-2026:9870"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1573-1 vom 2026-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025596.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21255-1 vom 2026-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025583.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21241-1 vom 2026-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025595.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21284-1 vom 2026-04-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025706.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10756 vom 2026-04-27",
        "url": "https://access.redhat.com/errata/RHSA-2026:10756"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21352-1 vom 2026-04-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025751.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21361-1 vom 2026-04-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025743.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4561 vom 2026-05-02",
        "url": "https://lists.debian.org/debian-lts-announce/2026/05/msg00005.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1661-1 vom 2026-04-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025787.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6243 vom 2026-05-04",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00154.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6238 vom 2026-05-04",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00148.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8278-1 vom 2026-05-20",
        "url": "https://ubuntu.com/security/notices/USN-8278-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8289-1 vom 2026-05-21",
        "url": "https://ubuntu.com/security/notices/USN-8289-1"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-05-20T22:00:00.000+00:00",
      "generator": {
        "date": "2026-05-21T08:01:04.182+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-0462",
      "initial_release_date": "2026-02-18T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-02-18T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-03-12T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2026-03-15T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2026-03-18T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-19T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE und Amazon aufgenommen"
        },
        {
          "date": "2026-03-23T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-24T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-25T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-26T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-29T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-30T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-01T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-16T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2026-04-19T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-21T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von openSUSE aufgenommen"
        },
        {
          "date": "2026-04-22T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von SUSE und Red Hat aufgenommen"
        },
        {
          "date": "2026-04-23T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-26T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-28T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-05-03T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Debian und SUSE aufgenommen"
        },
        {
          "date": "2026-05-19T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-05-20T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "22"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T051031",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-71225",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71225"
    },
    {
      "cve": "CVE-2025-71226",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71226"
    },
    {
      "cve": "CVE-2025-71227",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71227"
    },
    {
      "cve": "CVE-2025-71228",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71228"
    },
    {
      "cve": "CVE-2025-71229",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71229"
    },
    {
      "cve": "CVE-2025-71230",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71230"
    },
    {
      "cve": "CVE-2025-71231",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71231"
    },
    {
      "cve": "CVE-2025-71232",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71232"
    },
    {
      "cve": "CVE-2025-71233",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71233"
    },
    {
      "cve": "CVE-2025-71234",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71234"
    },
    {
      "cve": "CVE-2025-71235",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71235"
    },
    {
      "cve": "CVE-2025-71236",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71236"
    },
    {
      "cve": "CVE-2025-71237",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2025-71237"
    },
    {
      "cve": "CVE-2026-23211",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23211"
    },
    {
      "cve": "CVE-2026-23212",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23212"
    },
    {
      "cve": "CVE-2026-23213",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23213"
    },
    {
      "cve": "CVE-2026-23214",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23214"
    },
    {
      "cve": "CVE-2026-23215",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23215"
    },
    {
      "cve": "CVE-2026-23216",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23216"
    },
    {
      "cve": "CVE-2026-23217",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23217"
    },
    {
      "cve": "CVE-2026-23218",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23218"
    },
    {
      "cve": "CVE-2026-23219",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23219"
    },
    {
      "cve": "CVE-2026-23220",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23220"
    },
    {
      "cve": "CVE-2026-23221",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23221"
    },
    {
      "cve": "CVE-2026-23222",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23222"
    },
    {
      "cve": "CVE-2026-23223",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23223"
    },
    {
      "cve": "CVE-2026-23224",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23224"
    },
    {
      "cve": "CVE-2026-23225",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23225"
    },
    {
      "cve": "CVE-2026-23226",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23226"
    },
    {
      "cve": "CVE-2026-23227",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23227"
    },
    {
      "cve": "CVE-2026-23228",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23228"
    },
    {
      "cve": "CVE-2026-23229",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23229"
    },
    {
      "cve": "CVE-2026-23230",
      "product_status": {
        "known_affected": [
          "T051031",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914"
        ]
      },
      "release_date": "2026-02-18T23:00:00.000+00:00",
      "title": "CVE-2026-23230"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-71237 (GCVE-0-2025-71237)

WID-SEC-W-2026-0462

Tags

Sightings

Nomenclature