In 2024, 4,382 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 20 were rated Critical, 1,166 High severity , and 6 were confirmed as actively exploited in the wild (CISA KEV) . Compared to 2023's 293 CVEs, 2024 represented an increase of 1396% year-on-year. May was the most active month, with 1,076 CVEs published.
Monthly CVE Breakdown — 2024
CVEs published per month with severity breakdown
May (1,076) was the most active month in 2024. Together the top months account for a significant share of 2024's 4,382 total CVEs. January (42) had the lowest volume.
Severity Distribution — 2024
Breakdown across 4,382 CVEs
72% Medium · 27% High · 0% Critical.
Monthly Counts — 2024
CVE counts by month and severity
May was the most active month with 1,076 CVEs — 25% of 2024's total. January (42) had the lowest volume.
| Month | Total | Critical | High | Medium | Low | Share of year |
|---|---|---|---|---|---|---|
| January | 42 | 0 | 23 | 19 | 0 |
1%
|
| February | 277 | 0 | 82 | 192 | 3 |
6%
|
| March | 263 | 0 | 75 | 183 | 5 |
6%
|
| April | 359 | 0 | 70 | 285 | 4 |
8%
|
| May | 1,076 | 13 | 292 | 764 | 7 |
25%
|
| June | 287 | 5 | 90 | 191 | 1 |
7%
|
| July | 440 | 0 | 114 | 322 | 4 |
10%
|
| August | 311 | 1 | 58 | 246 | 6 |
7%
|
| September | 277 | 0 | 71 | 204 | 2 |
6%
|
| October | 415 | 1 | 119 | 292 | 3 |
9%
|
| November | 279 | 0 | 74 | 203 | 2 |
6%
|
| December | 356 | 0 | 98 | 258 | 0 |
8%
|
| Total | 4,382 | 20 | 1,166 | 3,159 | 37 |
Actively exploited CVEs — 2024
6 CVEs confirmed in CISA KEV catalog
All CVEs — 2024
4382 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2024-42256 | linux | Critical | 9.8 | 2024-08-08 | In the Linux kernel, the following vulnerability has been resolved: cifs: Fix server re-repick on subrequest retry When… | |
| CVE-2024-39462 | linux | Critical | 9.8 | 2024-06-25 | In the Linux kernel, the following vulnerability has been resolved: clk: bcm: dvp: Assign ->num before accessing ->hws … | |
| CVE-2024-38623 | linux | Critical | 9.8 | 2024-06-21 | In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable length array instead of fixe… | |
| CVE-2022-48716 | linux | Critical | 9.8 | 2024-06-20 | In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix incorrect used of portid… | |
| CVE-2024-38541 | linux | Critical | 9.8 | 2024-06-19 | In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer overflow check in of_modalia… | |
| CVE-2024-38612 | linux | Critical | 9.8 | 2024-06-19 | In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix invalid unregister error path The err… | |
| CVE-2024-36031 | linux | Critical | 9.8 | 2024-05-30 | In the Linux kernel, the following vulnerability has been resolved: keys: Fix overwrite of key expiration on instantiat… | |
| CVE-2021-47548 | linux | Critical | 9.8 | 2024-05-24 | In the Linux kernel, the following vulnerability has been resolved: ethernet: hisilicon: hns: hns_dsaf_misc: fix a poss… | |
| CVE-2021-47274 | linux | Critical | 9.8 | 2024-05-21 | In the Linux kernel, the following vulnerability has been resolved: tracing: Correct the length check which causes memo… | |
| CVE-2021-47378 | linux | Critical | 9.8 | 2024-05-21 | In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: destroy cm id before destroy qp to avoid… |
2024 Linux Kernel CVE Highlights
-
Monthly variation
CVE publication in 2024 was uneven across months. May was the most active with 1,076 CVEs. January (42) had the lowest volume. Monthly spikes typically correspond to coordinated batches of backfilled CVEs being processed at once.