CVE-2026-52974
- EPSS 0.51%
- Veröffentlicht 24.06.2026 16:28:51
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: net: tls: fix strparser anchor skb leak on offload RX setup failure When tls_set_device_offload_rx() fails at tls_dev_add(), the error path calls tls_sw_free_resources_rx() to clea...
- EPSS 0.14%
- Veröffentlicht 24.06.2026 16:28:50
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000.
CVE-2026-52971
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:28:49
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in get_timestamp Move the phc->active check and resp pointer assignment to after acquiring the spinlock. Previously, phc->active was che...
- EPSS 0.15%
- Veröffentlicht 24.06.2026 16:28:48
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() kvm_reset_dirty_gfn() guards the gfn range with if (!memslot || (offset + __fls(mask)) >= memslot->npages) return; but offs...
- EPSS 0.18%
- Veröffentlicht 24.06.2026 16:28:48
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: fix missing expect put in obj eval nft_ct_expect_obj_eval() allocates an expectation and may call nf_ct_expect_related(), but never drops its local reference. A...
- EPSS 0.18%
- Veröffentlicht 24.06.2026 16:28:47
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: KVM: s390: pci: fix GAIT table indexing due to double-scaling pointer arithmetic kvm_s390_pci_aif_enable(), kvm_s390_pci_aif_disable(), and aen_host_forward() index the GAIT by man...
CVE-2026-52967
- EPSS 0.4%
- Veröffentlicht 24.06.2026 16:28:46
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlink_data() On 32-bit architectures, the infinite loop is as follows: len = p->ErrorDataLength == 0xfffffff8 u8 *next...
- EPSS 0.17%
- Veröffentlicht 24.06.2026 16:28:45
- Zuletzt bearbeitet 10.07.2026 19:23:34
In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttm_bo_swapout() infinite LRU walk on swapout failure When ttm_tt_swapout() fails, the current code calls ttm_resource_add_bulk_move() followed by ttm_resource_move_to...
- EPSS 0.19%
- Veröffentlicht 24.06.2026 16:28:45
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: drm: Replace old pointer to new idr Commit 5e28b7b94408 introduced a logical error by failing to replace the newly generated IDR pointer to old id's pointer at the correct location...
- EPSS 0.18%
- Veröffentlicht 24.06.2026 16:28:44
- Zuletzt bearbeitet 10.07.2026 19:23:34
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans The USB MIDI 2.0 endpoint parser has the same descriptor walking pattern as the legacy MIDI parser. It validates bLength a...