CVE-2026-31435
- EPSS 0.34%
- Veröffentlicht 22.04.2026 14:16:36
- Zuletzt bearbeitet 19.05.2026 22:12:35
In the Linux kernel, the following vulnerability has been resolved: netfs: Fix read abandonment during retry Under certain circumstances, all the remaining subrequests from a read request will get abandoned during retry. The abandonment process ex...
CVE-2026-31436
- EPSS 0.46%
- Veröffentlicht 22.04.2026 14:16:36
- Zuletzt bearbeitet 19.05.2026 22:10:37
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() At the end of this function, d is the traversal cursor of flist, but the code completes found instea...
CVE-2026-31437
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:36
- Zuletzt bearbeitet 19.05.2026 22:09:14
In the Linux kernel, the following vulnerability has been resolved: netfs: Fix NULL pointer dereference in netfs_unbuffered_write() on retry When a write subrequest is marked NETFS_SREQ_NEED_RETRY, the retry path in netfs_unbuffered_write() uncondi...
CVE-2026-31433
- EPSS 0.6%
- Veröffentlicht 22.04.2026 08:15:11
- Zuletzt bearbeitet 27.04.2026 14:16:38
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in get_file_all_info() for compound requests When a compound request consists of QUERY_DIRECTORY + QUERY_INFO (FILE_ALL_INFORMATION) and the first command ...
- EPSS 96.27%
- Veröffentlicht 22.04.2026 08:15:10
- Zuletzt bearbeitet 01.07.2026 17:30:58
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-pl...
CVE-2026-31432
- EPSS 0.51%
- Veröffentlicht 22.04.2026 08:15:10
- Zuletzt bearbeitet 21.05.2026 17:28:57
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERY_INFO for compound requests When a compound request such as READ + QUERY_INFO(Security) is received, and the first command (READ) consumes most of the ...
CVE-2026-31429
- EPSS 0.26%
- Veröffentlicht 20.04.2026 09:43:03
- Zuletzt bearbeitet 20.05.2026 19:23:01
In the Linux kernel, the following vulnerability has been resolved: net: skb: fix cross-cache free of KFENCE-allocated skb head SKB_SMALL_HEAD_CACHE_SIZE is intentionally set to a non-power-of-2 value (e.g. 704 on x86_64) to avoid collisions with g...
CVE-2026-31430
- EPSS 0.08%
- Veröffentlicht 20.04.2026 09:43:03
- Zuletzt bearbeitet 21.05.2026 15:28:28
In the Linux kernel, the following vulnerability has been resolved: X.509: Fix out-of-bounds access when parsing extensions Leo reports an out-of-bounds access when parsing a certificate with empty Basic Constraints or Key Usage extension because t...
CVE-2026-31427
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:27:17
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp process_sdp() declares union nf_inet_addr rtp_addr on the stack and passes it to the nf_nat_sip sdp_se...
CVE-2026-31428
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:24:58
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD __build_packet_message() manually constructs the NFULA_PAYLOAD netlink attribute using skb_put() and skb_c...