kernel stability

Microsoft’s advisory for CVE-2026-23286 points to a null-pointer dereference in the ATM LEC code path, specifically in lec_arp_clear_vccs, which is the kind of bug that can turn an otherwise routine networking cleanup path into a kernel crash. The short description implies a defensive fix rather...

A stability bug in the Linux kernel’s Mellanox mlx5e Ethernet driver — tracked as CVE-2026-22996 — has been fixed upstream; the defect could cause a kernel oops (NULL-pointer dereference) during devlink/devlink eswitch/profile operations, and operators running mlx5-based NICs should plan to...

Linux networking's mesh module batman-adv has a subtle but important wrinkle in its initialization code that was cataloged as CVE-2021-47482: a set of incorrect error-handling paths in batman-adv initialization routines that can be triggered to cause kernel instability and a denial-of-service...

A recently assigned CVE identifier, CVE-2025-68311, documents a Linux kernel issue in the tty serial stack involving the ip22zilog driver that can trigger a kernel oops when the driver does not populate the uart_port.dev field after internal serial core changes. The root cause was introduced by...

A small, surgical change to the Linux kernel’s ARM SPE perf driver closed CVE-2025-40081 — a numeric overflow in the PERF_IDX2OFF macro that could miscompute buffer offsets for large AUX buffers (>= 2 GiB) and lead to kernel instability. The fix casts the buffer pages count to an unsigned long...