CVE-2026-53149
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:38:34
- Zuletzt bearbeitet 06.07.2026 17:51:40
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Bound root directory content to block size __tb_property_parse_dir() does not check that content_offset + content_len fits within block_len for the root directory case...
CVE-2026-53148
- EPSS 0.15%
- Veröffentlicht 25.06.2026 08:38:34
- Zuletzt bearbeitet 08.07.2026 14:41:01
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data copy to allocation size tb_xdp_properties_request() derives the per-packet copy length from the response header without checking that it fi...
CVE-2026-53147
- EPSS 0.28%
- Veröffentlicht 25.06.2026 08:38:33
- Zuletzt bearbeitet 06.07.2026 14:13:01
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tb_xdp_handle_request() casts the received packet buffer to protocol-specific structs without verifying that the ...
CVE-2026-53146
- EPSS 0.24%
- Veröffentlicht 25.06.2026 08:38:32
- Zuletzt bearbeitet 06.07.2026 14:13:40
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Limit XDomain response copy to actual frame size tb_xdomain_copy() copies req->response_size bytes from the received packet buffer regardless of the actual frame size....
CVE-2026-53139
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:38:27
- Zuletzt bearbeitet 06.07.2026 14:56:17
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its workgroup counts in the CFG0..CFG2 registers. Kicking off a dispatch with a zero count in any ...
CVE-2026-53138
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:38:26
- Zuletzt bearbeitet 07.07.2026 16:51:06
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain walk loops [Why & How] All record-chain walk loops in bios_parser.c and bios_parser2.c use for(;;) and only terminate on a 0xFF record_typ...
CVE-2026-53137
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:38:25
- Zuletzt bearbeitet 07.07.2026 16:51:48
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp HDMI HDCP2 rx_id_list read to buffer size [Why & How] During HDCP 2.x repeater authentication over HDMI, the driver reads the sink's RxStatus register and ex...
CVE-2026-53136
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:38:25
- Zuletzt bearbeitet 07.07.2026 16:57:16
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer register count to array size [Why & How] The VBIOS integrated info tables (v1_11 and v2_1) contain HdmiRegNum and Hdmi6GRegNum fields that...
CVE-2026-53135
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:38:24
- Zuletzt bearbeitet 07.07.2026 16:57:55
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs [Why & How] dp_sdp_message_debugfs_write() dereferences connector->base.state->crtc without checking for NULL. A...
CVE-2026-53134
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:38:23
- Zuletzt bearbeitet 07.07.2026 16:59:14
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_fib: fix stale stack leak via the OIFNAME register For NFT_FIB_RESULT_OIFNAME the destination register is declared with len = IFNAMSIZ (four 32-bit registers), but o...