CVE-2026-43282
- EPSS 0.11%
- Veröffentlicht 06.05.2026 11:29:03
- Zuletzt bearbeitet 08.05.2026 19:09:00
In the Linux kernel, the following vulnerability has been resolved: RDMA/ionic: Fix potential NULL pointer dereference in ionic_query_port The function ionic_query_port() calls ib_device_get_netdev() without checking the return value which could le...
CVE-2026-43283
- EPSS 0.12%
- Veröffentlicht 06.05.2026 11:29:03
- Zuletzt bearbeitet 08.05.2026 19:08:43
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle dma_free_coherent() in error path takes priv->rx_buf.alloc_len as the dma handle. This would lead to improper unmapping of...
CVE-2026-43281
- EPSS 0.12%
- Veröffentlicht 06.05.2026 11:29:02
- Zuletzt bearbeitet 01.06.2026 17:17:04
In the Linux kernel, the following vulnerability has been resolved: mailbox: Prevent out-of-bounds access in fw_mbox_index_xlate() Although it is guided that `#mbox-cells` must be at least 1, there are many instances of `#mbox-cells = <0>;` in the ...
CVE-2026-43280
- EPSS 0.12%
- Veröffentlicht 06.05.2026 11:29:01
- Zuletzt bearbeitet 08.05.2026 19:04:39
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Add bounds check on pat_index to prevent OOB kernel read in madvise When user provides a bogus pat_index value through the madvise IOCTL, the xe_pat_index_get_coh_mode() fu...
CVE-2026-43278
- EPSS 0.12%
- Veröffentlicht 06.05.2026 11:29:00
- Zuletzt bearbeitet 08.05.2026 19:38:24
In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when last clone bio completes Stale rq->bio values have been observed to cause double-initialization of cloned bios in request-based device-map...
CVE-2026-43279
- EPSS 0.12%
- Veröffentlicht 06.05.2026 11:29:00
- Zuletzt bearbeitet 08.05.2026 19:02:38
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB writes at silencing At silencing the playback URB packets in the implicit fb mode before the actual playback, we blindly assume that the r...
CVE-2026-43277
- EPSS 0.11%
- Veröffentlicht 06.05.2026 11:28:59
- Zuletzt bearbeitet 08.05.2026 19:34:27
In the Linux kernel, the following vulnerability has been resolved: APEI/GHES: ensure that won't go past CPER allocated record The logic at ghes_new() prevents allocating too large records, by checking if they're bigger than GHES_ESTATUS_MAX_SIZE (...
CVE-2026-43275
- EPSS 0.09%
- Veröffentlicht 06.05.2026 11:28:58
- Zuletzt bearbeitet 08.05.2026 19:30:22
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Flush exception handling work when RPM level is zero Ensure that the exception event handling work is explicitly flushed during suspend when the runtime power mana...
CVE-2026-43276
- EPSS 0.12%
- Veröffentlicht 06.05.2026 11:28:58
- Zuletzt bearbeitet 08.05.2026 19:32:12
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix double destroy_workqueue on service rescan PCI path While testing corner cases in the driver, a use-after-free crash was found on the service rescan PCI path. When ...
CVE-2026-43274
- EPSS 0.13%
- Veröffentlicht 06.05.2026 11:28:57
- Zuletzt bearbeitet 08.05.2026 19:31:52
In the Linux kernel, the following vulnerability has been resolved: mailbox: mchp-ipc-sbi: fix out-of-bounds access in mchp_ipc_get_cluster_aggr_irq() The cluster_cfg array is dynamically allocated to hold per-CPU configuration structures, with its...