CVE-2026-53003
- EPSS 0.51%
- Veröffentlicht 24.06.2026 16:29:15
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: pppoe: drop PFC frames RFC 2516 Section 7 states that Protocol Field Compression (PFC) is NOT RECOMMENDED for PPPoE. In practice, pppd does not support negotiating PFC for PPPoE se...
CVE-2026-53002
- EPSS 0.35%
- Veröffentlicht 24.06.2026 16:29:14
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage Replace it with scnprintf, the buffer sizes are expected to be large enough to hold the result, no need for snprintf+overflow check. Inc...
- EPSS 0.18%
- Veröffentlicht 24.06.2026 16:29:13
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict several matches to inet family This is a partial revert of: commit ab4f21e6fb1c ("netfilter: xtables: use NFPROTO_UNSPEC in more extensions") to al...
CVE-2026-53000
- EPSS 0.12%
- Veröffentlicht 24.06.2026 16:29:12
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nf_hook_...
CVE-2026-52999
- EPSS 0.52%
- Veröffentlicht 24.06.2026 16:29:11
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix out-of-bounds read on option matching In nf_osf_match(), the nf_osf_hdr_ctx structure is initialized once and passed by reference to nf_osf_match_one(...
CVE-2026-52998
- EPSS 0.51%
- Veröffentlicht 24.06.2026 16:29:10
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix potential NULL dereference in ttl check The nf_osf_ttl() function accessed skb->dev to perform a local interface address lookup without verifying that...
- EPSS 0.19%
- Veröffentlicht 24.06.2026 16:29:09
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix durable fd leak on ClientGUID mismatch in durable v2 open ksmbd_lookup_fd_cguid() returns a ksmbd_file with its refcount incremented via ksmbd_fp_get(). parse_durable_ha...
- EPSS 0.17%
- Veröffentlicht 24.06.2026 16:29:09
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_dualpi2: drain both C-queue and L-queue in dualpi2_change() Fix dualpi2_change() to correctly enforce updated limit and memlimit values after a configuration change ...
- EPSS 0.18%
- Veröffentlicht 24.06.2026 16:29:08
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: net/rds: zero per-item info buffer before handing it to visitors rds_for_each_conn_info() and rds_walk_conn_path_info() both hand a caller-allocated on-stack u64 buffer to a per-co...
- EPSS 0.17%
- Veröffentlicht 24.06.2026 16:29:07
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix MSG_ZEROCOPY pinned-pages accounting virtio_transport_init_zcopy_skb() uses iter->count as the size argument for msg_zerocopy_realloc(), which in turn passes it t...