CWE-125: Out-of-bounds Read

A use-after-return vulnerability in the Linux kernel's RAID1 subsystem allows accessing stack memory after it has been freed. This can lead to kernel ...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's software node subsystem. The flaw occurs in software_node_get_reference_a...

This CVE describes an out-of-bounds memory read vulnerability in the Linux kernel's cs_dsp firmware component, specifically in a KUnit test function. ...

This CVE describes an out-of-bounds memory read vulnerability in the Linux kernel's cs_dsp firmware component, specifically in a KUnit test function. ...

This CVE describes a stack-out-of-bounds read vulnerability in the Linux kernel's arm64/ptrace component. The flaw occurs in regs_get_kernel_stack_nth...

A Linux kernel vulnerability in the AT91 pinctrl driver allows out-of-bounds memory access when accessing GPIO chips. This could lead to kernel crashe...

This CVE describes a use-after-free vulnerability in the Linux kernel's ath12k WiFi driver. An attacker could potentially exploit this memory corrupti...

This vulnerability in the Linux kernel's Kvaser PCIeFD CAN driver allows out-of-bounds memory access when handling CAN bus acknowledgments. It affects...

This CVE-2025-38221 is an out-of-bounds vulnerability in the Linux kernel's ext4 filesystem that occurs when punching holes with invalid offsets. It c...

This CVE describes an out-of-bounds read vulnerability in the JFS filesystem implementation in the Linux kernel. An attacker could potentially read ke...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's rtw88 WiFi driver. An attacker could potentially read kernel memory beyon...

A kernel memory corruption vulnerability in Linux's netfs subsystem allows attackers to trigger an out-of-bounds read via improper iterator resetting ...

A vulnerability in the Linux kernel's MDIO bus subsystem allows out-of-bounds read/write access when using clause 45 (C45) MDIO operations via ioctl. ...

This CVE-2025-38103 is an out-of-bounds read vulnerability in the Linux kernel's USB HID driver that could allow local attackers to cause denial of se...

This is a read out-of-bounds vulnerability in the ARM64 Poly1305 cryptographic implementation in the Linux kernel. It allows attackers to read kernel ...

This CVE describes an out-of-bounds memory access vulnerability in the Linux kernel's Direct Rendering Manager (DRM) fbdev deferred I/O subsystem. Att...

This is a kernel memory corruption vulnerability in the Linux md-raid10 subsystem where improper bounds checking allows reading beyond allocated memor...

This CVE-2022-50200 is a memory boundary check vulnerability in the Linux kernel's SELinux put_entry() function that could allow local attackers to ca...

A memory corruption vulnerability in the Linux kernel's imx-jpeg media driver allows out-of-bounds memory access when processing certain JPEG images. ...

This CVE describes an out-of-bounds memory access vulnerability in the Linux kernel's memory policy subsystem. When users specify more nodes than the ...

A Linux kernel vulnerability in the cpuset scheduler can cause a kernel panic when attempting to attach tasks to cgroups with empty CPU masks. This af...

This vulnerability in the Linux kernel's Intel IOMMU driver allows invalid memory access when ACPI NUMA is disabled. It can cause kernel crashes or po...

This CVE describes a memory corruption vulnerability in the Linux kernel's device mapper RAID subsystem. When reading RAID status information, the ker...

This CVE describes an out-of-bounds memory access vulnerability in the AMD display driver for Linux kernel's DCN303 architecture. An attacker with loc...

This vulnerability is a shift out-of-bounds error in the Habana Gaudi driver in the Linux kernel, which could allow local attackers to cause memory co...

This is a Linux kernel vulnerability in the BPF subsystem where improper bounds checking for array poke descriptors could lead to out-of-bounds memory...

This Linux kernel vulnerability in the BPF verifier allows privileged users with CAP_BPF capability to bypass memory bounds checking, potentially lead...

CVE-2022-49945 is an array index out-of-bounds vulnerability in the Linux kernel's gpio-fan hardware monitoring driver. It allows attackers with acces...

A Linux kernel vulnerability in the virtual terminal subsystem allows out-of-bounds memory access when changing console fonts. Attackers could potenti...

This CVE describes an out-of-bounds memory access vulnerability in the Linux kernel's SPI driver for Rockchip systems. The vulnerability occurs when u...

A memory corruption vulnerability in the Linux kernel's max20086 regulator driver allows invalid memory access when device probing fails. This affects...

A race condition vulnerability in the Linux kernel's CAN broadcast manager (BCM) allows concurrent access to shared data structures from user space an...

This CVE describes an out-of-bounds memory access vulnerability in the RISC-V module loader of the Linux kernel. An attacker could exploit this to cau...

A buffer overflow vulnerability in the Linux kernel's WiFi subsystem allows attackers to cause out-of-bounds memory access during multi-link element d...

This CVE describes an out-of-bounds memory access vulnerability in the Linux kernel's NVMe over Fabrics target subsystem. When attempting to enable a ...

This CVE describes an out-of-bounds memory access vulnerability in the Linux kernel's net_sched subsystem. The flaw occurs when the alloc_hash variabl...

This is a stack memory access vulnerability in the Linux kernel's RISC-V architecture implementation. When CONFIG_FRAME_POINTER is disabled and KASAN ...

A memory access vulnerability in the Linux kernel's AMD KFD driver allows local attackers to cause a kernel crash (denial of service) when copy_from_u...

This is a global-out-of-bounds read vulnerability in the Linux kernel's Bluetooth subsystem. It allows attackers to read kernel memory beyond allocate...

This CVE addresses an undefined behavior vulnerability in the Linux kernel's capabilities subsystem where shifting a signed 32-bit integer by 31 bits ...

A memory management vulnerability in the RISC-V Linux kernel causes a kernel panic during boot when accessing reserved memory regions. This affects sy...

This CVE-2022-49844 is an out-of-bounds read vulnerability in the Linux kernel's CAN (Controller Area Network) subsystem. It allows attackers to cause...

A double-free vulnerability in the Linux kernel's tracing subsystem allows local attackers to cause a kernel panic or potentially execute arbitrary co...

This CVE-2022-49792 is an out-of-bounds read vulnerability in the Linux kernel's mp2629 ADC driver. It could allow local attackers to read kernel memo...

A memory corruption vulnerability in the Linux kernel's ISO filesystem (isofs) export functionality allows out-of-bounds read access when processing f...

This CVE describes an out-of-bounds shift vulnerability in the Linux kernel's Xe graphics driver that occurs when invalidating TLB (Translation Lookas...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's PPP (Point-to-Point Protocol) implementation. When processing short or em...

This vulnerability in the Linux kernel's Venus media driver allows out-of-bounds memory access when parsing HFI packets. Attackers could potentially r...

This CVE describes an integer overflow vulnerability in the Linux kernel's JFS filesystem extended attribute handling. When processing specially craft...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's NVMe over Fabrics (NVMe-oF) subsystem. The vulnerability allows reading b...