Linux Kernel CVE Statistics
1,056 Linux Kernel CVEs in December 2025
Full month · Source: NIST NVD
In December 2025, 1,056 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 1 was rated Critical, 3 were rated High severity and 12 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. December's 1,056 CVEs represent 19% of all 2025 Linux kernel CVEs , up from November's 104 (a 915% month-over-month increase) .
1056
Total CVEs
1
Critical
3
High
12
Medium
0
Low
0
KEV Exploited
All CVEs — December 2025
1056 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2022-50817 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid possible NULL deref in skb_clone() … | |
| CVE-2022-50830 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: auxdisplay: hd44780: Fix potential memory leak in h… | |
| CVE-2022-50811 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: erofs: fix missing unmap if z_erofs_get_extent_comp… | |
| CVE-2022-50815 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: ext2: Add sanity checks for group and filesystem si… | |
| CVE-2022-50822 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete The … | |
| CVE-2022-50828 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: clk: zynqmp: Fix stack-out-of-bounds in strncpy` "B… | |
| CVE-2023-54162 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix possible memory leak in smb2_lock() argv… | |
| CVE-2022-50810 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: rapidio: devices: fix missing put_device in mport_c… | |
| CVE-2022-50812 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: security: Restrict CONFIG_ZERO_CALL_USED_REGS to gc… | |
| CVE-2022-50814 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/zip - fix mismatch in get/set sgl… | |
| CVE-2022-50818 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix running_req for internal abort co… | |
| CVE-2022-50821 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Don't leak netobj memory when gss_read_prox… | |
| CVE-2022-50824 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_tis: Add the missed acpi_put_table() to fi… | |
| CVE-2022-50827 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix memory leak in lpfc_create_port() C… | |
| CVE-2022-50835 | linux | Awaiting NVD | — | 2025-12-30 | In the Linux kernel, the following vulnerability has been resolved: jbd2: add miss release buffer head in fc_do_one_pas… |