CVE-2026-23302
- EPSS 0.09%
- Veröffentlicht 25.03.2026 10:26:57
- Zuletzt bearbeitet 04.07.2026 12:16:54
In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk->sk_{data_ready,write_space} skmsg (and probably other layers) are changing these pointers while other cpus might read them concurrently. Add co...
CVE-2026-23300
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:56
- Zuletzt bearbeitet 28.05.2026 14:46:05
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop When a standalone IPv6 nexthop object is created with a loopback device (e.g., "ip -6 nexthop add id 100 dev l...
CVE-2026-23298
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:54
- Zuletzt bearbeitet 29.05.2026 14:27:13
In the Linux kernel, the following vulnerability has been resolved: can: ucan: Fix infinite loop from zero-length messages If a broken ucan device gets a message with the message length field set to 0, then the driver will loop for forever in ucan_...
CVE-2026-23296
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:53
- Zuletzt bearbeitet 26.05.2026 15:06:09
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix refcount leak for tagset_refcnt This leak will cause a hang when tearing down the SCSI host. For example, iscsid hangs with the following call trace: [130120.65271...
CVE-2026-23293
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:51
- Zuletzt bearbeitet 29.05.2026 15:04:45
In the Linux kernel, the following vulnerability has been resolved: net: vxlan: fix nd_tbl NULL dereference when IPv6 is disabled When booting with the 'ipv6.disable=1' parameter, the nd_tbl is never initialized because inet6_init() exits before nd...
CVE-2026-23292
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:50
- Zuletzt bearbeitet 27.05.2026 13:43:27
In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix recursive locking in __configfs_open_file() In flush_write_buffer, &p->frag_sem is acquired and then the loaded store function is called, which, here, is target_c...
CVE-2026-23291
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:49
- Zuletzt bearbeitet 29.05.2026 15:07:47
In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: properly drop the usb interface reference on disconnect When the device is disconnected from the driver, there is a "dangling" reference count on the usb interface that...
CVE-2026-23289
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:48
- Zuletzt bearbeitet 29.05.2026 15:22:35
In the Linux kernel, the following vulnerability has been resolved: IB/mthca: Add missed mthca_unmap_user_db() for mthca_create_srq() Fix a user triggerable leak on the system call failure path.
CVE-2026-23290
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:48
- Zuletzt bearbeitet 29.05.2026 15:10:41
In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: validate USB endpoints The pegasus driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before i...
CVE-2026-23287
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:46
- Zuletzt bearbeitet 29.05.2026 16:32:22
In the Linux kernel, the following vulnerability has been resolved: irqchip/sifive-plic: Fix frozen interrupt due to affinity setting PLIC ignores interrupt completion message for disabled interrupt, explained by the specification: The PLIC si...