CVE-2026-43378
- EPSS 0.31%
- Veröffentlicht 08.05.2026 14:21:27
- Zuletzt bearbeitet 20.05.2026 17:16:22
In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_open() The opinfo pointer obtained via rcu_dereference(fp->f_opinfo) is dereferenced after rcu_read_unlock(), creating a use-after-free wind...
CVE-2026-43377
- EPSS 0.25%
- Veröffentlicht 08.05.2026 14:21:26
- Zuletzt bearbeitet 15.05.2026 15:14:24
In the Linux kernel, the following vulnerability has been resolved: ksmbd: Don't log keys in SMB3 signing and encryption key generation When KSMBD_DEBUG_AUTH logging is enabled, generate_smb3signingkey() and generate_smb3encryptionkey() log the ses...
CVE-2026-43375
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:25
- Zuletzt bearbeitet 15.05.2026 15:16:08
In the Linux kernel, the following vulnerability has been resolved: net: mctp: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while the interface is bound to a driver and there is no ne...
CVE-2026-43376
- EPSS 0.44%
- Veröffentlicht 08.05.2026 14:21:25
- Zuletzt bearbeitet 15.05.2026 15:15:48
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free by using call_rcu() for oplock_info ksmbd currently frees oplock_info immediately using kfree(), even though it is accessed under RCU read-side critical s...
CVE-2026-43374
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:21:24
- Zuletzt bearbeitet 15.05.2026 15:16:31
In the Linux kernel, the following vulnerability has been resolved: net: nexthop: fix percpu use-after-free in remove_nh_grp_entry When removing a nexthop from a group, remove_nh_grp_entry() publishes the new group via rcu_assign_pointer() then imm...
CVE-2026-43372
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:23
- Zuletzt bearbeitet 15.05.2026 15:17:06
In the Linux kernel, the following vulnerability has been resolved: net: dsa: microchip: Fix error path in PTP IRQ setup If request_threaded_irq() fails during the PTP message IRQ setup, the newly created IRQ mapping is never disposed. Indeed, the ...
CVE-2026-43373
- EPSS 0.5%
- Veröffentlicht 08.05.2026 14:21:23
- Zuletzt bearbeitet 15.05.2026 15:16:52
In the Linux kernel, the following vulnerability has been resolved: net: ncsi: fix skb leak in error paths Early return paths in NCSI RX and AEN handlers fail to release the received skb, resulting in a memory leak. Specifically, ncsi_aen_handler(...
CVE-2026-43371
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:22
- Zuletzt bearbeitet 15.05.2026 15:17:45
In the Linux kernel, the following vulnerability has been resolved: net: macb: Shuffle the tx ring before enabling tx Quanyang observed that when using an NFS rootfs on an AMD ZynqMp board, the rootfs may take an extended time to recover after a su...
CVE-2026-43369
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:21
- Zuletzt bearbeitet 15.05.2026 15:18:29
In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix NULL pointer dereference in device cleanup When GPU initialization fails due to an unsupported HW block IP blocks may have a NULL version pointer. During cleanup in am...
CVE-2026-43370
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:21:21
- Zuletzt bearbeitet 15.05.2026 15:18:18
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix use-after-free race in VM acquire Replace non-atomic vm->process_info assignment with cmpxchg() to prevent race when parent/child processes sharing a drm_file both ...