Vulnerability-Lookup

CVE-2025-68809 (GCVE-0-2025-68809)

Vulnerability from cvelistv5 – Published: 2026-01-13 15:29 – Updated: 2026-02-09 08:33

Title

ksmbd: vfs: fix race on m_flags in vfs_cache

Summary

In the Linux kernel, the following vulnerability has been resolved: ksmbd: vfs: fix race on m_flags in vfs_cache ksmbd maintains delete-on-close and pending-delete state in ksmbd_inode->m_flags. In vfs_cache.c this field is accessed under inconsistent locking: some paths read and modify m_flags under ci->m_lock while others do so without taking the lock at all. Examples: - ksmbd_query_inode_status() and __ksmbd_inode_close() use ci->m_lock when checking or updating m_flags. - ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(), ksmbd_clear_inode_pending_delete() and ksmbd_fd_set_delete_on_close() used to read and modify m_flags without ci->m_lock. This creates a potential data race on m_flags when multiple threads open, close and delete the same file concurrently. In the worst case delete-on-close and pending-delete bits can be lost or observed in an inconsistent state, leading to confusing delete semantics (files that stay on disk after delete-on-close, or files that disappear while still in use). Fix it by: - Making ksmbd_query_inode_status() look at m_flags under ci->m_lock after dropping inode_hash_lock. - Adding ci->m_lock protection to all helpers that read or modify m_flags (ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(), ksmbd_clear_inode_pending_delete(), ksmbd_fd_set_delete_on_close()). - Keeping the existing ci->m_lock protection in __ksmbd_inode_close(), and moving the actual unlink/xattr removal outside the lock. This unifies the locking around m_flags and removes the data race while preserving the existing delete-on-close behaviour.

Severity ?

No CVSS data available.

Assigner

Linux

References

URL

WID-SEC-W-2026-0086

Vulnerability from csaf_certbund - Published: 2026-01-13 23:00 - Updated: 2026-02-23 23:00

Summary

Linux Kernel: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff

Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen um nicht näher spezifizierte Angriffe durchzuführen, die möglicherweise zu einer Denial-of-Service- Bedingung führen oder eine Speicherbeschädigung verursachen können.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen um nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren, die m\u00f6glicherweise zu einer Denial-of-Service- Bedingung f\u00fchren oder eine Speicherbesch\u00e4digung verursachen k\u00f6nnen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-0086 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0086.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-0086 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0086"
      },
      {
        "category": "external",
        "summary": "Kernel CVE Announce Mailingliste",
        "url": "https://lore.kernel.org/linux-cve-announce/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68767",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011353-CVE-2025-68767-cd16@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68768",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011356-CVE-2025-68768-d458@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68769",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011357-CVE-2025-68769-e471@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68770",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011357-CVE-2025-68770-6464@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68771",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011357-CVE-2025-68771-cf0d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68772",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011358-CVE-2025-68772-9d70@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68773",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011358-CVE-2025-68773-bd5d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68774",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011358-CVE-2025-68774-f2fd@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68775",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011359-CVE-2025-68775-6e68@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68776",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011359-CVE-2025-68776-5aed@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68777",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011359-CVE-2025-68777-2073@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68778",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011300-CVE-2025-68778-c392@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68779",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011300-CVE-2025-68779-726e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68780",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011300-CVE-2025-68780-f5c8@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68781",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011301-CVE-2025-68781-f30f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68782",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011301-CVE-2025-68782-a72f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68783",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011302-CVE-2025-68783-e807@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68784",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011302-CVE-2025-68784-b1e0@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68785",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011302-CVE-2025-68785-c96c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68786",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011303-CVE-2025-68786-d145@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68787",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011303-CVE-2025-68787-af6d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68788",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011303-CVE-2025-68788-05bd@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68789",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011304-CVE-2025-68789-cca8@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68790",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011304-CVE-2025-68790-6166@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68791",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011304-CVE-2025-68791-e739@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68792",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011305-CVE-2025-68792-9a3f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68793",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011305-CVE-2025-68793-bb5f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68794",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011305-CVE-2025-68794-32db@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68795",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011306-CVE-2025-68795-4e3e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68796",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011306-CVE-2025-68796-9eee@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68797",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011306-CVE-2025-68797-b45e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68798",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011307-CVE-2025-68798-ea9c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68799",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011307-CVE-2025-68799-b0dd@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68800",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011307-CVE-2025-68800-39d2@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68801",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011308-CVE-2025-68801-d3d5@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68802",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011308-CVE-2025-68802-a7f9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68803",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011309-CVE-2025-68803-d897@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68804",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011309-CVE-2025-68804-f10e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68805",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011309-CVE-2025-68805-3284@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68806",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011310-CVE-2025-68806-a2fb@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68807",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011310-CVE-2025-68807-0fd6@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68808",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011310-CVE-2025-68808-4cb9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68809",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011311-CVE-2025-68809-e875@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68810",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011311-CVE-2025-68810-308a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68811",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011311-CVE-2025-68811-7e46@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68812",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011312-CVE-2025-68812-4098@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68813",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011312-CVE-2025-68813-13a5@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68814",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011312-CVE-2025-68814-146a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68815",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011313-CVE-2025-68815-2112@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68816",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011313-CVE-2025-68816-e773@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68817",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011313-CVE-2025-68817-03ab@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68818",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011314-CVE-2025-68818-08ea@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68819",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011314-CVE-2025-68819-64a3@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68820",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011315-CVE-2025-68820-7a4f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68821",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011315-CVE-2025-68821-b515@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68822",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011315-CVE-2025-68822-a75d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-68823",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011316-CVE-2025-68823-8bf1@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71064",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011322-CVE-2025-71064-94ea@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71065",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011322-CVE-2025-71065-6818@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71066",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011323-CVE-2025-71066-f1fa@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71067",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011323-CVE-2025-71067-9c81@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71068",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011323-CVE-2025-71068-f1a9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71069",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011324-CVE-2025-71069-33d4@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71070",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011324-CVE-2025-71070-b6c2@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71071",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011325-CVE-2025-71071-67e9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71072",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011325-CVE-2025-71072-b52b@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71073",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011325-CVE-2025-71073-b002@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71074",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011326-CVE-2025-71074-f3ed@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71075",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011326-CVE-2025-71075-c85d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71076",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011326-CVE-2025-71076-19ff@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71077",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011327-CVE-2025-71077-6e08@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71078",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011337-CVE-2025-71078-9a51@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71079",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011338-CVE-2025-71079-9f24@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71080",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011338-CVE-2025-71080-f9ae@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71081",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011338-CVE-2025-71081-df43@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71082",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011339-CVE-2025-71082-ef8a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71083",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011339-CVE-2025-71083-ddb3@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71084",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011339-CVE-2025-71084-52a2@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71085",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011340-CVE-2025-71085-e6c1@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71086",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011340-CVE-2025-71086-18be@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71087",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011340-CVE-2025-71087-53c4@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71088",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011341-CVE-2025-71088-9436@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71089",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011341-CVE-2025-71089-a642@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71090",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011341-CVE-2025-71090-6e3a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71091",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011342-CVE-2025-71091-860d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71092",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011342-CVE-2025-71092-9f73@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71093",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011343-CVE-2025-71093-387f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71094",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011343-CVE-2025-71094-087b@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71095",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011343-CVE-2025-71095-6fad@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71096",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011344-CVE-2025-71096-fb73@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71097",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011344-CVE-2025-71097-7cfc@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71098",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011344-CVE-2025-71098-ef6d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71099",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011345-CVE-2025-71099-b6f8@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71100",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011345-CVE-2025-71100-537f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-71101",
        "url": "https://lore.kernel.org/linux-cve-announce/2026011345-CVE-2025-71101-1886@gregkh/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0350-1 vom 2026-01-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/024000.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:20145-1 vom 2026-02-03",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FIKVKDA42VXBWDNHA6WP345IDVA2E3XU/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0369-1 vom 2026-02-03",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024037.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20207-1 vom 2026-02-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024052.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20220-1 vom 2026-02-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024067.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20228-1 vom 2026-02-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024063.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:2282 vom 2026-02-09",
        "url": "https://access.redhat.com/errata/RHSA-2026:2282"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6127 vom 2026-02-10",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00036.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6126 vom 2026-02-09",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00035.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0411-1 vom 2026-02-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024085.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-2282 vom 2026-02-10",
        "url": "https://linux.oracle.com/errata/ELSA-2026-2282.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4476 vom 2026-02-11",
        "url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00017.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0447-1 vom 2026-02-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024124.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4475 vom 2026-02-11",
        "url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00016.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0473-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024136.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0471-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024142.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0472-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024141.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0474-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024140.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0475-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024139.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0495-1 vom 2026-02-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024159.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:2282 vom 2026-02-15",
        "url": "https://errata.build.resf.org/RLSA-2026:2282"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0496-1 vom 2026-02-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024158.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:2722 vom 2026-02-16",
        "url": "https://access.redhat.com/errata/RHSA-2026:2722"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-2722 vom 2026-02-17",
        "url": "https://linux.oracle.com/errata/ELSA-2026-2722.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-50113 vom 2026-02-17",
        "url": "https://linux.oracle.com/errata/ELSA-2026-50113.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.10-2026-113 vom 2026-02-19",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.10-2026-113.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0587-1 vom 2026-02-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024356.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-50112 vom 2026-02-23",
        "url": "https://linux.oracle.com/errata/ELSA-2026-50112.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:3110 vom 2026-02-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:3110"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:3083 vom 2026-02-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:3083"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-02-23T23:00:00.000+00:00",
      "generator": {
        "date": "2026-02-24T08:48:08.768+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2026-0086",
      "initial_release_date": "2026-01-13T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-01-13T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-02-01T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-03T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von openSUSE und SUSE aufgenommen"
        },
        {
          "date": "2026-02-04T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-05T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-09T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat und Debian aufgenommen"
        },
        {
          "date": "2026-02-11T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Debian und SUSE aufgenommen"
        },
        {
          "date": "2026-02-12T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-15T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE und Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2026-02-16T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-02-17T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2026-02-18T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2026-02-22T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-23T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "14"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T049905",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-68767",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68767"
    },
    {
      "cve": "CVE-2025-68768",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68768"
    },
    {
      "cve": "CVE-2025-68769",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68769"
    },
    {
      "cve": "CVE-2025-68770",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68770"
    },
    {
      "cve": "CVE-2025-68771",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68771"
    },
    {
      "cve": "CVE-2025-68772",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68772"
    },
    {
      "cve": "CVE-2025-68773",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68773"
    },
    {
      "cve": "CVE-2025-68774",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68774"
    },
    {
      "cve": "CVE-2025-68775",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68775"
    },
    {
      "cve": "CVE-2025-68776",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68776"
    },
    {
      "cve": "CVE-2025-68777",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68777"
    },
    {
      "cve": "CVE-2025-68778",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68778"
    },
    {
      "cve": "CVE-2025-68779",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68779"
    },
    {
      "cve": "CVE-2025-68780",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68780"
    },
    {
      "cve": "CVE-2025-68781",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68781"
    },
    {
      "cve": "CVE-2025-68782",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68782"
    },
    {
      "cve": "CVE-2025-68783",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68783"
    },
    {
      "cve": "CVE-2025-68784",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68784"
    },
    {
      "cve": "CVE-2025-68785",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68785"
    },
    {
      "cve": "CVE-2025-68786",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68786"
    },
    {
      "cve": "CVE-2025-68787",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68787"
    },
    {
      "cve": "CVE-2025-68788",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68788"
    },
    {
      "cve": "CVE-2025-68789",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68789"
    },
    {
      "cve": "CVE-2025-68790",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68790"
    },
    {
      "cve": "CVE-2025-68791",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68791"
    },
    {
      "cve": "CVE-2025-68792",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68792"
    },
    {
      "cve": "CVE-2025-68793",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68793"
    },
    {
      "cve": "CVE-2025-68794",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68794"
    },
    {
      "cve": "CVE-2025-68795",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68795"
    },
    {
      "cve": "CVE-2025-68796",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68796"
    },
    {
      "cve": "CVE-2025-68797",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68797"
    },
    {
      "cve": "CVE-2025-68798",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68798"
    },
    {
      "cve": "CVE-2025-68799",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68799"
    },
    {
      "cve": "CVE-2025-68800",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68800"
    },
    {
      "cve": "CVE-2025-68801",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68801"
    },
    {
      "cve": "CVE-2025-68802",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68802"
    },
    {
      "cve": "CVE-2025-68803",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68803"
    },
    {
      "cve": "CVE-2025-68804",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68804"
    },
    {
      "cve": "CVE-2025-68805",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68805"
    },
    {
      "cve": "CVE-2025-68806",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68806"
    },
    {
      "cve": "CVE-2025-68807",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68807"
    },
    {
      "cve": "CVE-2025-68808",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68808"
    },
    {
      "cve": "CVE-2025-68809",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68809"
    },
    {
      "cve": "CVE-2025-68810",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68810"
    },
    {
      "cve": "CVE-2025-68811",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68811"
    },
    {
      "cve": "CVE-2025-68812",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68812"
    },
    {
      "cve": "CVE-2025-68813",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68813"
    },
    {
      "cve": "CVE-2025-68814",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68814"
    },
    {
      "cve": "CVE-2025-68815",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68815"
    },
    {
      "cve": "CVE-2025-68816",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68816"
    },
    {
      "cve": "CVE-2025-68817",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68817"
    },
    {
      "cve": "CVE-2025-68818",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68818"
    },
    {
      "cve": "CVE-2025-68819",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68819"
    },
    {
      "cve": "CVE-2025-68820",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68820"
    },
    {
      "cve": "CVE-2025-68821",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68821"
    },
    {
      "cve": "CVE-2025-68822",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68822"
    },
    {
      "cve": "CVE-2025-68823",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-68823"
    },
    {
      "cve": "CVE-2025-71064",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71064"
    },
    {
      "cve": "CVE-2025-71065",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71065"
    },
    {
      "cve": "CVE-2025-71066",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71066"
    },
    {
      "cve": "CVE-2025-71067",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71067"
    },
    {
      "cve": "CVE-2025-71068",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71068"
    },
    {
      "cve": "CVE-2025-71069",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71069"
    },
    {
      "cve": "CVE-2025-71070",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71070"
    },
    {
      "cve": "CVE-2025-71071",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71071"
    },
    {
      "cve": "CVE-2025-71072",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71072"
    },
    {
      "cve": "CVE-2025-71073",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71073"
    },
    {
      "cve": "CVE-2025-71074",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71074"
    },
    {
      "cve": "CVE-2025-71075",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71075"
    },
    {
      "cve": "CVE-2025-71076",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71076"
    },
    {
      "cve": "CVE-2025-71077",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71077"
    },
    {
      "cve": "CVE-2025-71078",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71078"
    },
    {
      "cve": "CVE-2025-71079",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71079"
    },
    {
      "cve": "CVE-2025-71080",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71080"
    },
    {
      "cve": "CVE-2025-71081",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71081"
    },
    {
      "cve": "CVE-2025-71082",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71082"
    },
    {
      "cve": "CVE-2025-71083",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71083"
    },
    {
      "cve": "CVE-2025-71084",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71084"
    },
    {
      "cve": "CVE-2025-71085",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71085"
    },
    {
      "cve": "CVE-2025-71086",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71086"
    },
    {
      "cve": "CVE-2025-71087",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71087"
    },
    {
      "cve": "CVE-2025-71088",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71088"
    },
    {
      "cve": "CVE-2025-71089",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71089"
    },
    {
      "cve": "CVE-2025-71090",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71090"
    },
    {
      "cve": "CVE-2025-71091",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71091"
    },
    {
      "cve": "CVE-2025-71092",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71092"
    },
    {
      "cve": "CVE-2025-71093",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71093"
    },
    {
      "cve": "CVE-2025-71094",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71094"
    },
    {
      "cve": "CVE-2025-71095",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71095"
    },
    {
      "cve": "CVE-2025-71096",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71096"
    },
    {
      "cve": "CVE-2025-71097",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71097"
    },
    {
      "cve": "CVE-2025-71098",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71098"
    },
    {
      "cve": "CVE-2025-71099",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71099"
    },
    {
      "cve": "CVE-2025-71100",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71100"
    },
    {
      "cve": "CVE-2025-71101",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T049905",
          "T027843",
          "398363",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2026-01-13T23:00:00.000+00:00",
      "title": "CVE-2025-71101"
    }
  ]
}

CERTFR-2026-AVI-0166

Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13

De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un déni de service.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Debian	Debian	Debian trixie versions antérieures à 6.12.69-1
	Debian	Debian	Debian bookworm versions antérieures à 6.1.162-1

References

Title

Publication Time

Tags

Bulletin de sécurité Debian DSA-6127-1	2026-02-09	vendor-advisory
Bulletin de sécurité Debian DSA-6126-1	2026-02-09	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Debian trixie versions ant\u00e9rieures \u00e0 6.12.69-1",
      "product": {
        "name": "Debian",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    },
    {
      "description": "Debian bookworm versions ant\u00e9rieures \u00e0 6.1.162-1",
      "product": {
        "name": "Debian",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-71075",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71075"
    },
    {
      "name": "CVE-2025-71086",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
    },
    {
      "name": "CVE-2025-22083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22083"
    },
    {
      "name": "CVE-2025-71065",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71065"
    },
    {
      "name": "CVE-2025-22107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22107"
    },
    {
      "name": "CVE-2025-71134",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71134"
    },
    {
      "name": "CVE-2026-23098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23098"
    },
    {
      "name": "CVE-2025-68749",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68749"
    },
    {
      "name": "CVE-2025-71094",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
    },
    {
      "name": "CVE-2025-68788",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
    },
    {
      "name": "CVE-2025-68778",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
    },
    {
      "name": "CVE-2026-23054",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23054"
    },
    {
      "name": "CVE-2025-71064",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
    },
    {
      "name": "CVE-2026-23072",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23072"
    },
    {
      "name": "CVE-2025-68725",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
    },
    {
      "name": "CVE-2025-68795",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
    },
    {
      "name": "CVE-2025-68349",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
    },
    {
      "name": "CVE-2025-38104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38104"
    },
    {
      "name": "CVE-2025-68380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
    },
    {
      "name": "CVE-2026-23069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23069"
    },
    {
      "name": "CVE-2023-53421",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-53421"
    },
    {
      "name": "CVE-2026-22992",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
    },
    {
      "name": "CVE-2025-71071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71071"
    },
    {
      "name": "CVE-2025-71191",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71191"
    },
    {
      "name": "CVE-2025-68728",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
    },
    {
      "name": "CVE-2025-68364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68364"
    },
    {
      "name": "CVE-2025-71087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
    },
    {
      "name": "CVE-2025-40039",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40039"
    },
    {
      "name": "CVE-2025-71135",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
    },
    {
      "name": "CVE-2025-68746",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
    },
    {
      "name": "CVE-2025-68773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
    },
    {
      "name": "CVE-2025-71133",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
    },
    {
      "name": "CVE-2026-23020",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23020"
    },
    {
      "name": "CVE-2025-68796",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68796"
    },
    {
      "name": "CVE-2025-68804",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
    },
    {
      "name": "CVE-2025-68769",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68769"
    },
    {
      "name": "CVE-2025-68794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68794"
    },
    {
      "name": "CVE-2025-71189",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71189"
    },
    {
      "name": "CVE-2025-38408",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38408"
    },
    {
      "name": "CVE-2025-71088",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
    },
    {
      "name": "CVE-2026-23090",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23090"
    },
    {
      "name": "CVE-2026-23035",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23035"
    },
    {
      "name": "CVE-2026-23064",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23064"
    },
    {
      "name": "CVE-2025-38591",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
    },
    {
      "name": "CVE-2025-68806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68806"
    },
    {
      "name": "CVE-2025-71098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
    },
    {
      "name": "CVE-2025-71078",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
    },
    {
      "name": "CVE-2025-71083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
    },
    {
      "name": "CVE-2026-23061",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23061"
    },
    {
      "name": "CVE-2026-23059",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23059"
    },
    {
      "name": "CVE-2025-68813",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
    },
    {
      "name": "CVE-2026-23047",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23047"
    },
    {
      "name": "CVE-2025-22121",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22121"
    },
    {
      "name": "CVE-2025-68365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
    },
    {
      "name": "CVE-2025-71085",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
    },
    {
      "name": "CVE-2025-71076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71076"
    },
    {
      "name": "CVE-2025-68344",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68344"
    },
    {
      "name": "CVE-2025-71154",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
    },
    {
      "name": "CVE-2025-68257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
    },
    {
      "name": "CVE-2025-71084",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
    },
    {
      "name": "CVE-2026-23094",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23094"
    },
    {
      "name": "CVE-2026-23049",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23049"
    },
    {
      "name": "CVE-2025-68347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
    },
    {
      "name": "CVE-2025-68770",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
    },
    {
      "name": "CVE-2025-68814",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
    },
    {
      "name": "CVE-2025-68780",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68780"
    },
    {
      "name": "CVE-2025-71081",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
    },
    {
      "name": "CVE-2026-23101",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23101"
    },
    {
      "name": "CVE-2026-23099",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23099"
    },
    {
      "name": "CVE-2025-71121",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71121"
    },
    {
      "name": "CVE-2025-38022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38022"
    },
    {
      "name": "CVE-2025-71080",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71080"
    },
    {
      "name": "CVE-2026-22989",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22989"
    },
    {
      "name": "CVE-2026-23085",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23085"
    },
    {
      "name": "CVE-2025-71136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
    },
    {
      "name": "CVE-2025-68354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
    },
    {
      "name": "CVE-2025-68801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
    },
    {
      "name": "CVE-2025-71073",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71073"
    },
    {
      "name": "CVE-2025-22090",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22090"
    },
    {
      "name": "CVE-2025-68258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
    },
    {
      "name": "CVE-2025-39871",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39871"
    },
    {
      "name": "CVE-2026-23057",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23057"
    },
    {
      "name": "CVE-2025-37926",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37926"
    },
    {
      "name": "CVE-2025-71138",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
    },
    {
      "name": "CVE-2025-68291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68291"
    },
    {
      "name": "CVE-2025-71122",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71122"
    },
    {
      "name": "CVE-2026-22991",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
    },
    {
      "name": "CVE-2025-71144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71144"
    },
    {
      "name": "CVE-2025-68822",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68822"
    },
    {
      "name": "CVE-2025-38234",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38234"
    },
    {
      "name": "CVE-2025-21946",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21946"
    },
    {
      "name": "CVE-2025-68255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
    },
    {
      "name": "CVE-2026-22980",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22980"
    },
    {
      "name": "CVE-2025-71093",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
    },
    {
      "name": "CVE-2025-71102",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71102"
    },
    {
      "name": "CVE-2026-23032",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23032"
    },
    {
      "name": "CVE-2025-68759",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
    },
    {
      "name": "CVE-2026-23019",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23019"
    },
    {
      "name": "CVE-2026-23055",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23055"
    },
    {
      "name": "CVE-2025-68733",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
    },
    {
      "name": "CVE-2026-23005",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
    },
    {
      "name": "CVE-2025-68335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
    },
    {
      "name": "CVE-2025-71079",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
    },
    {
      "name": "CVE-2026-23030",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23030"
    },
    {
      "name": "CVE-2026-22997",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
    },
    {
      "name": "CVE-2025-71153",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71153"
    },
    {
      "name": "CVE-2025-71196",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71196"
    },
    {
      "name": "CVE-2025-68772",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68772"
    },
    {
      "name": "CVE-2026-23078",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23078"
    },
    {
      "name": "CVE-2025-71143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71143"
    },
    {
      "name": "CVE-2025-68785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68785"
    },
    {
      "name": "CVE-2025-71130",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
    },
    {
      "name": "CVE-2025-68808",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
    },
    {
      "name": "CVE-2025-68223",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68223"
    },
    {
      "name": "CVE-2025-68783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
    },
    {
      "name": "CVE-2025-71147",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
    },
    {
      "name": "CVE-2025-68724",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
    },
    {
      "name": "CVE-2026-23103",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23103"
    },
    {
      "name": "CVE-2026-23074",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
    },
    {
      "name": "CVE-2025-71126",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
    },
    {
      "name": "CVE-2025-68786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68786"
    },
    {
      "name": "CVE-2025-71199",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71199"
    },
    {
      "name": "CVE-2024-42079",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-42079"
    },
    {
      "name": "CVE-2025-68797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
    },
    {
      "name": "CVE-2024-49968",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
    },
    {
      "name": "CVE-2025-68358",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68358"
    },
    {
      "name": "CVE-2025-68259",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
    },
    {
      "name": "CVE-2025-71125",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71125"
    },
    {
      "name": "CVE-2026-23006",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
    },
    {
      "name": "CVE-2025-71108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
    },
    {
      "name": "CVE-2025-68789",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
    },
    {
      "name": "CVE-2025-71069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71069"
    },
    {
      "name": "CVE-2026-23013",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23013"
    },
    {
      "name": "CVE-2025-71195",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71195"
    },
    {
      "name": "CVE-2026-22994",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22994"
    },
    {
      "name": "CVE-2026-23083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23083"
    },
    {
      "name": "CVE-2026-23088",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23088"
    },
    {
      "name": "CVE-2025-68774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
    },
    {
      "name": "CVE-2026-23108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23108"
    },
    {
      "name": "CVE-2025-71180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71180"
    },
    {
      "name": "CVE-2025-38232",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38232"
    },
    {
      "name": "CVE-2025-71194",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71194"
    },
    {
      "name": "CVE-2025-71157",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71157"
    },
    {
      "name": "CVE-2026-23023",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23023"
    },
    {
      "name": "CVE-2026-22999",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
    },
    {
      "name": "CVE-2025-71082",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
    },
    {
      "name": "CVE-2026-23068",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23068"
    },
    {
      "name": "CVE-2025-68765",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
    },
    {
      "name": "CVE-2026-23089",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
    },
    {
      "name": "CVE-2025-71132",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
    },
    {
      "name": "CVE-2026-23071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23071"
    },
    {
      "name": "CVE-2026-23056",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23056"
    },
    {
      "name": "CVE-2025-71077",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
    },
    {
      "name": "CVE-2025-71140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71140"
    },
    {
      "name": "CVE-2025-22111",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22111"
    },
    {
      "name": "CVE-2026-23063",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23063"
    },
    {
      "name": "CVE-2026-23073",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23073"
    },
    {
      "name": "CVE-2025-71114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
    },
    {
      "name": "CVE-2026-23058",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23058"
    },
    {
      "name": "CVE-2025-71067",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71067"
    },
    {
      "name": "CVE-2025-71182",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71182"
    },
    {
      "name": "CVE-2026-23038",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23038"
    },
    {
      "name": "CVE-2025-71151",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71151"
    },
    {
      "name": "CVE-2026-22990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
    },
    {
      "name": "CVE-2026-23000",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
    },
    {
      "name": "CVE-2025-71186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71186"
    },
    {
      "name": "CVE-2025-68821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68821"
    },
    {
      "name": "CVE-2026-23026",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23026"
    },
    {
      "name": "CVE-2025-68325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
    },
    {
      "name": "CVE-2025-71190",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71190"
    },
    {
      "name": "CVE-2025-71089",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
    },
    {
      "name": "CVE-2026-23107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23107"
    },
    {
      "name": "CVE-2025-68332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
    },
    {
      "name": "CVE-2025-71104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71104"
    },
    {
      "name": "CVE-2026-22978",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
    },
    {
      "name": "CVE-2025-38129",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
    },
    {
      "name": "CVE-2026-23037",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23037"
    },
    {
      "name": "CVE-2025-71101",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71101"
    },
    {
      "name": "CVE-2026-23001",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
    },
    {
      "name": "CVE-2025-68367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
    },
    {
      "name": "CVE-2025-68820",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
    },
    {
      "name": "CVE-2025-68740",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
    },
    {
      "name": "CVE-2025-68742",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
    },
    {
      "name": "CVE-2026-23025",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23025"
    },
    {
      "name": "CVE-2024-46786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-46786"
    },
    {
      "name": "CVE-2025-68816",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
    },
    {
      "name": "CVE-2025-68357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68357"
    },
    {
      "name": "CVE-2025-68256",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
    },
    {
      "name": "CVE-2025-68777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
    },
    {
      "name": "CVE-2025-71129",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71129"
    },
    {
      "name": "CVE-2025-68254",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
    },
    {
      "name": "CVE-2025-39872",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39872"
    },
    {
      "name": "CVE-2026-22982",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
    },
    {
      "name": "CVE-2025-71109",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71109"
    },
    {
      "name": "CVE-2025-71118",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
    },
    {
      "name": "CVE-2025-71150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71150"
    },
    {
      "name": "CVE-2025-39721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39721"
    },
    {
      "name": "CVE-2026-23091",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23091"
    },
    {
      "name": "CVE-2025-38718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38718"
    },
    {
      "name": "CVE-2025-71192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71192"
    },
    {
      "name": "CVE-2025-68776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
    },
    {
      "name": "CVE-2025-71066",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
    },
    {
      "name": "CVE-2025-68799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68799"
    },
    {
      "name": "CVE-2025-68345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
    },
    {
      "name": "CVE-2025-71097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
    },
    {
      "name": "CVE-2025-71107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71107"
    },
    {
      "name": "CVE-2025-71111",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
    },
    {
      "name": "CVE-2026-23087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23087"
    },
    {
      "name": "CVE-2025-68802",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68802"
    },
    {
      "name": "CVE-2025-71185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71185"
    },
    {
      "name": "CVE-2025-68811",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68811"
    },
    {
      "name": "CVE-2026-23096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23096"
    },
    {
      "name": "CVE-2025-68337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
    },
    {
      "name": "CVE-2025-68351",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68351"
    },
    {
      "name": "CVE-2025-71131",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
    },
    {
      "name": "CVE-2025-40149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
    },
    {
      "name": "CVE-2025-40164",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
    },
    {
      "name": "CVE-2025-71116",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
    },
    {
      "name": "CVE-2023-52658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52658"
    },
    {
      "name": "CVE-2025-68362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
    },
    {
      "name": "CVE-2026-23002",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23002"
    },
    {
      "name": "CVE-2025-68333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68333"
    },
    {
      "name": "CVE-2025-71160",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71160"
    },
    {
      "name": "CVE-2024-58096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-58096"
    },
    {
      "name": "CVE-2025-71162",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
    },
    {
      "name": "CVE-2026-23075",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23075"
    },
    {
      "name": "CVE-2025-68803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
    },
    {
      "name": "CVE-2026-22996",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
    },
    {
      "name": "CVE-2026-23105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23105"
    },
    {
      "name": "CVE-2026-22976",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
    },
    {
      "name": "CVE-2026-23065",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23065"
    },
    {
      "name": "CVE-2025-68753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
    },
    {
      "name": "CVE-2025-68781",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68781"
    },
    {
      "name": "CVE-2025-68369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68369"
    },
    {
      "name": "CVE-2025-68775",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
    },
    {
      "name": "CVE-2025-71112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
    },
    {
      "name": "CVE-2023-54285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
    },
    {
      "name": "CVE-2026-23086",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23086"
    },
    {
      "name": "CVE-2025-22022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22022"
    },
    {
      "name": "CVE-2025-68818",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68818"
    },
    {
      "name": "CVE-2025-40170",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40170"
    },
    {
      "name": "CVE-2025-38125",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38125"
    },
    {
      "name": "CVE-2025-71148",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71148"
    },
    {
      "name": "CVE-2025-68366",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
    },
    {
      "name": "CVE-2025-68815",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
    },
    {
      "name": "CVE-2025-40215",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
    },
    {
      "name": "CVE-2025-71193",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71193"
    },
    {
      "name": "CVE-2026-23095",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23095"
    },
    {
      "name": "CVE-2025-68346",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
    },
    {
      "name": "CVE-2025-71163",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
    },
    {
      "name": "CVE-2026-23062",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23062"
    },
    {
      "name": "CVE-2025-71096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
    },
    {
      "name": "CVE-2025-71099",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71099"
    },
    {
      "name": "CVE-2025-71095",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
    },
    {
      "name": "CVE-2025-71105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71105"
    },
    {
      "name": "CVE-2025-68266",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68266"
    },
    {
      "name": "CVE-2025-68771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
    },
    {
      "name": "CVE-2025-68363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
    },
    {
      "name": "CVE-2026-22984",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
    },
    {
      "name": "CVE-2025-68757",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
    },
    {
      "name": "CVE-2024-58097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-58097"
    },
    {
      "name": "CVE-2025-71068",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71068"
    },
    {
      "name": "CVE-2026-23033",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23033"
    },
    {
      "name": "CVE-2025-68784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68784"
    },
    {
      "name": "CVE-2026-22977",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
    },
    {
      "name": "CVE-2026-23003",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23003"
    },
    {
      "name": "CVE-2025-68766",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
    },
    {
      "name": "CVE-2026-23076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23076"
    },
    {
      "name": "CVE-2025-68792",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68792"
    },
    {
      "name": "CVE-2025-71123",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
    },
    {
      "name": "CVE-2025-68206",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68206"
    },
    {
      "name": "CVE-2025-71100",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
    },
    {
      "name": "CVE-2025-68372",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
    },
    {
      "name": "CVE-2026-23010",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
    },
    {
      "name": "CVE-2025-71146",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71146"
    },
    {
      "name": "CVE-2025-71137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
    },
    {
      "name": "CVE-2026-23084",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23084"
    },
    {
      "name": "CVE-2026-22979",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22979"
    },
    {
      "name": "CVE-2026-23011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
    },
    {
      "name": "CVE-2025-71156",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71156"
    },
    {
      "name": "CVE-2025-40276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40276"
    },
    {
      "name": "CVE-2026-23110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23110"
    },
    {
      "name": "CVE-2025-68809",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68809"
    },
    {
      "name": "CVE-2025-71120",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
    },
    {
      "name": "CVE-2026-23060",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23060"
    },
    {
      "name": "CVE-2025-68817",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68817"
    },
    {
      "name": "CVE-2025-71119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
    },
    {
      "name": "CVE-2025-68787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68787"
    },
    {
      "name": "CVE-2025-68782",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68782"
    },
    {
      "name": "CVE-2025-71197",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71197"
    },
    {
      "name": "CVE-2025-68758",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
    },
    {
      "name": "CVE-2026-23031",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23031"
    },
    {
      "name": "CVE-2025-71113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
    },
    {
      "name": "CVE-2025-71127",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71127"
    },
    {
      "name": "CVE-2026-23102",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23102"
    },
    {
      "name": "CVE-2026-22998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22998"
    },
    {
      "name": "CVE-2026-23050",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23050"
    },
    {
      "name": "CVE-2025-68340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
    },
    {
      "name": "CVE-2025-40110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
    },
    {
      "name": "CVE-2025-40325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40325"
    },
    {
      "name": "CVE-2025-68798",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
    },
    {
      "name": "CVE-2025-68336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68336"
    },
    {
      "name": "CVE-2025-68810",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68810"
    },
    {
      "name": "CVE-2026-23097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23097"
    },
    {
      "name": "CVE-2025-71198",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71198"
    },
    {
      "name": "CVE-2025-68819",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
    },
    {
      "name": "CVE-2025-71072",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71072"
    },
    {
      "name": "CVE-2026-23021",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23021"
    },
    {
      "name": "CVE-2025-68732",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
    },
    {
      "name": "CVE-2026-23093",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23093"
    },
    {
      "name": "CVE-2025-71183",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
    },
    {
      "name": "CVE-2025-68371",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68371"
    },
    {
      "name": "CVE-2025-68211",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68211"
    },
    {
      "name": "CVE-2025-71091",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
    },
    {
      "name": "CVE-2026-23053",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23053"
    },
    {
      "name": "CVE-2025-71184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71184"
    },
    {
      "name": "CVE-2025-68263",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68263"
    },
    {
      "name": "CVE-2025-68800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
    },
    {
      "name": "CVE-2025-68261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
    },
    {
      "name": "CVE-2025-71149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
    },
    {
      "name": "CVE-2025-68767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
    },
    {
      "name": "CVE-2025-68727",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
    },
    {
      "name": "CVE-2026-23080",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23080"
    },
    {
      "name": "CVE-2025-38361",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
    },
    {
      "name": "CVE-2025-38248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38248"
    },
    {
      "name": "CVE-2025-68264",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
    },
    {
      "name": "CVE-2025-68764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
    }
  ],
  "initial_release_date": "2026-02-13T00:00:00",
  "last_revision_date": "2026-02-13T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0166",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-02-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de Debian. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un d\u00e9ni de service.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian",
  "vendor_advisories": [
    {
      "published_at": "2026-02-09",
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-6127-1",
      "url": "https://lists.debian.org/debian-security-announce/2026/msg00036.html"
    },
    {
      "published_at": "2026-02-09",
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-6126-1",
      "url": "https://lists.debian.org/debian-security-announce/2026/msg00035.html"
    }
  ]
}

GHSA-FFPF-RF35-3FHQ

Vulnerability from github – Published: 2026-01-13 18:31 – Updated: 2026-01-13 18:31

Details

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: vfs: fix race on m_flags in vfs_cache

ksmbd maintains delete-on-close and pending-delete state in ksmbd_inode->m_flags. In vfs_cache.c this field is accessed under inconsistent locking: some paths read and modify m_flags under ci->m_lock while others do so without taking the lock at all.

Examples:

ksmbd_query_inode_status() and __ksmbd_inode_close() use ci->m_lock when checking or updating m_flags.
ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(), ksmbd_clear_inode_pending_delete() and ksmbd_fd_set_delete_on_close() used to read and modify m_flags without ci->m_lock.

This creates a potential data race on m_flags when multiple threads open, close and delete the same file concurrently. In the worst case delete-on-close and pending-delete bits can be lost or observed in an inconsistent state, leading to confusing delete semantics (files that stay on disk after delete-on-close, or files that disappear while still in use).

Fix it by:

Making ksmbd_query_inode_status() look at m_flags under ci->m_lock after dropping inode_hash_lock.
Adding ci->m_lock protection to all helpers that read or modify m_flags (ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(), ksmbd_clear_inode_pending_delete(), ksmbd_fd_set_delete_on_close()).
Keeping the existing ci->m_lock protection in __ksmbd_inode_close(), and moving the actual unlink/xattr removal outside the lock.

This unifies the locking around m_flags and removes the data race while preserving the existing delete-on-close behaviour.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-68809"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-01-13T16:16:03Z",
    "severity": null
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: vfs: fix race on m_flags in vfs_cache\n\nksmbd maintains delete-on-close and pending-delete state in\nksmbd_inode-\u003em_flags. In vfs_cache.c this field is accessed under\ninconsistent locking: some paths read and modify m_flags under\nci-\u003em_lock while others do so without taking the lock at all.\n\nExamples:\n\n - ksmbd_query_inode_status() and __ksmbd_inode_close() use\n   ci-\u003em_lock when checking or updating m_flags.\n - ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(),\n   ksmbd_clear_inode_pending_delete() and ksmbd_fd_set_delete_on_close()\n   used to read and modify m_flags without ci-\u003em_lock.\n\nThis creates a potential data race on m_flags when multiple threads\nopen, close and delete the same file concurrently. In the worst case\ndelete-on-close and pending-delete bits can be lost or observed in an\ninconsistent state, leading to confusing delete semantics (files that\nstay on disk after delete-on-close, or files that disappear while still\nin use).\n\nFix it by:\n\n - Making ksmbd_query_inode_status() look at m_flags under ci-\u003em_lock\n   after dropping inode_hash_lock.\n - Adding ci-\u003em_lock protection to all helpers that read or modify\n   m_flags (ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(),\n   ksmbd_clear_inode_pending_delete(), ksmbd_fd_set_delete_on_close()).\n - Keeping the existing ci-\u003em_lock protection in __ksmbd_inode_close(),\n   and moving the actual unlink/xattr removal outside the lock.\n\nThis unifies the locking around m_flags and removes the data race while\npreserving the existing delete-on-close behaviour.",
  "id": "GHSA-ffpf-rf35-3fhq",
  "modified": "2026-01-13T18:31:04Z",
  "published": "2026-01-13T18:31:04Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68809"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/5adad9727a815c26013b0d41cfee92ffa7d4037c"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/991f8a79db99b14c48d20d2052c82d65b9186cad"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/ccc78781041589ea383e61d5d7a1e9a31b210b93"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/ee63729760f5b61a66f345c54dc4c7514e62383d"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2025-68809

Vulnerability from fkie_nvd - Published: 2026-01-13 16:16 - Updated: 2026-01-14 16:26

Severity ?

Summary

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/5adad9727a815c26013b0d41cfee92ffa7d4037c
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/991f8a79db99b14c48d20d2052c82d65b9186cad
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/ccc78781041589ea383e61d5d7a1e9a31b210b93
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/ee63729760f5b61a66f345c54dc4c7514e62383d

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: vfs: fix race on m_flags in vfs_cache\n\nksmbd maintains delete-on-close and pending-delete state in\nksmbd_inode-\u003em_flags. In vfs_cache.c this field is accessed under\ninconsistent locking: some paths read and modify m_flags under\nci-\u003em_lock while others do so without taking the lock at all.\n\nExamples:\n\n - ksmbd_query_inode_status() and __ksmbd_inode_close() use\n   ci-\u003em_lock when checking or updating m_flags.\n - ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(),\n   ksmbd_clear_inode_pending_delete() and ksmbd_fd_set_delete_on_close()\n   used to read and modify m_flags without ci-\u003em_lock.\n\nThis creates a potential data race on m_flags when multiple threads\nopen, close and delete the same file concurrently. In the worst case\ndelete-on-close and pending-delete bits can be lost or observed in an\ninconsistent state, leading to confusing delete semantics (files that\nstay on disk after delete-on-close, or files that disappear while still\nin use).\n\nFix it by:\n\n - Making ksmbd_query_inode_status() look at m_flags under ci-\u003em_lock\n   after dropping inode_hash_lock.\n - Adding ci-\u003em_lock protection to all helpers that read or modify\n   m_flags (ksmbd_inode_pending_delete(), ksmbd_set_inode_pending_delete(),\n   ksmbd_clear_inode_pending_delete(), ksmbd_fd_set_delete_on_close()).\n - Keeping the existing ci-\u003em_lock protection in __ksmbd_inode_close(),\n   and moving the actual unlink/xattr removal outside the lock.\n\nThis unifies the locking around m_flags and removes the data race while\npreserving the existing delete-on-close behaviour."
    }
  ],
  "id": "CVE-2025-68809",
  "lastModified": "2026-01-14T16:26:00.933",
  "metrics": {},
  "published": "2026-01-13T16:16:03.080",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/5adad9727a815c26013b0d41cfee92ffa7d4037c"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/991f8a79db99b14c48d20d2052c82d65b9186cad"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/ccc78781041589ea383e61d5d7a1e9a31b210b93"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/ee63729760f5b61a66f345c54dc4c7514e62383d"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Awaiting Analysis"
}

MSRC_CVE-2025-68809

Vulnerability from csaf_microsoft - Published: 2026-01-02 00:00 - Updated: 2026-02-18 14:30

Summary

ksmbd: vfs: fix race on m_flags in vfs_cache

Notes

Additional Resources

To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer

The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

JSON

To clipboard

{
  "document": {
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2025-68809 ksmbd: vfs: fix race on m_flags in vfs_cache - VEX",
        "url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2025-68809.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "ksmbd: vfs: fix race on m_flags in vfs_cache",
    "tracking": {
      "current_release_date": "2026-02-18T14:30:53.000Z",
      "generator": {
        "date": "2026-02-18T14:43:41.771Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2025-68809",
      "initial_release_date": "2026-01-02T00:00:00.000Z",
      "revision_history": [
        {
          "date": "2026-01-15T01:05:05.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        },
        {
          "date": "2026-01-20T14:36:59.000Z",
          "legacy_version": "2",
          "number": "2",
          "summary": "Information published."
        },
        {
          "date": "2026-02-18T14:30:53.000Z",
          "legacy_version": "3",
          "number": "3",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "3.0",
                "product": {
                  "name": "Azure Linux 3.0",
                  "product_id": "17084"
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Linux"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003cazl3 kernel 6.6.119.3-3",
                "product": {
                  "name": "\u003cazl3 kernel 6.6.119.3-3",
                  "product_id": "1"
                }
              },
              {
                "category": "product_version",
                "name": "azl3 kernel 6.6.119.3-3",
                "product": {
                  "name": "azl3 kernel 6.6.119.3-3",
                  "product_id": "20823"
                }
              },
              {
                "category": "product_version_range",
                "name": "azl3 kernel 6.6.119.3-1",
                "product": {
                  "name": "azl3 kernel 6.6.119.3-1",
                  "product_id": "2"
                }
              }
            ],
            "category": "product_name",
            "name": "kernel"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "\u003cazl3 kernel 6.6.119.3-3 as a component of Azure Linux 3.0",
          "product_id": "17084-1"
        },
        "product_reference": "1",
        "relates_to_product_reference": "17084"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "azl3 kernel 6.6.119.3-3 as a component of Azure Linux 3.0",
          "product_id": "20823-17084"
        },
        "product_reference": "20823",
        "relates_to_product_reference": "17084"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "azl3 kernel 6.6.119.3-1 as a component of Azure Linux 3.0",
          "product_id": "17084-2"
        },
        "product_reference": "2",
        "relates_to_product_reference": "17084"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-68809",
      "notes": [
        {
          "category": "general",
          "text": "Linux",
          "title": "Assigning CNA"
        }
      ],
      "product_status": {
        "fixed": [
          "20823-17084"
        ],
        "known_affected": [
          "17084-1",
          "17084-2"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-68809 ksmbd: vfs: fix race on m_flags in vfs_cache - VEX",
          "url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2025-68809.json"
        }
      ],
      "remediations": [
        {
          "category": "none_available",
          "date": "2026-01-15T01:05:05.000Z",
          "details": "There is no fix available for this vulnerability as of now",
          "product_ids": [
            "17084-2"
          ]
        },
        {
          "category": "vendor_fix",
          "date": "2026-01-15T01:05:05.000Z",
          "details": "6.6.121.1-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
          "product_ids": [
            "17084-1"
          ],
          "url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
        }
      ],
      "title": "ksmbd: vfs: fix race on m_flags in vfs_cache"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-68809 (GCVE-0-2025-68809)

WID-SEC-W-2026-0086

CERTFR-2026-AVI-0166

Solutions

GHSA-FFPF-RF35-3FHQ

FKIE_CVE-2025-68809

MSRC_CVE-2025-68809

Tags

Sightings

Nomenclature