CVE-2026-1489
- EPSS 0.33%
- Veröffentlicht 27.01.2026 14:26:47
- Zuletzt bearbeitet 02.06.2026 14:16:45
A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation can lead to memory corruption. By processing specially crafted and extremely large Unicode strings, an attacker could trigger an undersized memo...
CVE-2026-1484
- EPSS 0.3%
- Veröffentlicht 27.01.2026 13:41:54
- Zuletzt bearbeitet 02.06.2026 14:16:45
A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to incorrect use of integer types during length calculation, the library may miscalculate buffer boundaries. This can cause memory writes outside the allo...
- EPSS 0.18%
- Veröffentlicht 12.12.2025 17:53:06
- Zuletzt bearbeitet 02.06.2026 14:16:33
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A...
- EPSS 0.19%
- Veröffentlicht 06.12.2025 21:51:05
- Zuletzt bearbeitet 02.06.2026 14:16:33
In the Linux kernel, the following vulnerability has been resolved: sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto syzbot reported a possible shift-out-of-bounds [1] Blamed commit added rto_alpha_max and rto_beta_max set t...
- EPSS 0.19%
- Veröffentlicht 06.12.2025 21:51:04
- Zuletzt bearbeitet 02.06.2026 14:16:33
In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_mon_reinit_self(). syzbot reported use-after-free of tipc_net(net)->monitors[] in tipc_mon_reinit_self(). [0] The array is protected by RTNL, but ...
- EPSS 0.19%
- Veröffentlicht 06.12.2025 21:51:01
- Zuletzt bearbeitet 02.06.2026 14:16:33
In the Linux kernel, the following vulnerability has been resolved: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak Fix a KMSAN kernel-infoleak detected by the syzbot . [net?] KMSAN: kernel-infoleak in __skb_datagram_it...
- EPSS 0.52%
- Veröffentlicht 06.12.2025 21:50:53
- Zuletzt bearbeitet 02.06.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: fs/proc: fix uaf in proc_readdir_de() Pde is erased from subdir rbtree through rb_erase(), but not set the node to EMPTY, which may result in uaf access. We should use RB_CLEAR_NO...
- EPSS 0.17%
- Veröffentlicht 04.12.2025 16:16:20
- Zuletzt bearbeitet 02.06.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: Input: cros_ec_keyb - fix an invalid memory access If cros_ec_keyb_register_matrix() isn't called (due to `buttons_switches_only`) in cros_ec_keyb_probe(), `ckdev->idev` remains NU...
- EPSS 0.19%
- Veröffentlicht 04.12.2025 16:16:20
- Zuletzt bearbeitet 02.06.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: be2net: pass wrb_params in case of OS2BMC be_insert_vlan_in_pkt() is called with the wrb_params argument being NULL at be_send_pkt_to_bmc() call site. This may lead to dereferenci...
- EPSS 0.17%
- Veröffentlicht 04.12.2025 16:16:20
- Zuletzt bearbeitet 02.06.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: Input: imx_sc_key - fix memory corruption on unload This is supposed to be "priv" but we accidentally pass "&priv" which is an address in the stack and so it will lead to memory co...