CVE-2026-23286
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:26:45
- Zuletzt bearbeitet 29.05.2026 16:33:45
In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix null-ptr-deref in lec_arp_clear_vccs syzkaller reported a null-ptr-deref in lec_arp_clear_vccs(). This issue can be easily reproduced using the syzkaller reproducer. ...
CVE-2026-23281
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:26:41
- Zuletzt bearbeitet 22.05.2026 00:31:53
In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix use-after-free in lbs_free_adapter() The lbs_free_adapter() function uses timer_delete() (non-synchronous) for both command_timer and tx_lockup_timer before the...
CVE-2026-23279
- EPSS 0.14%
- Veröffentlicht 25.03.2026 10:26:39
- Zuletzt bearbeitet 22.05.2026 00:37:25
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() In mesh_rx_csa_frame(), elems->mesh_chansw_params_ie is dereferenced at lines 1638 and 1642 without a prior NULL...
CVE-2026-31788
- EPSS 0.15%
- Veröffentlicht 25.03.2026 10:25:05
- Zuletzt bearbeitet 24.04.2026 15:19:57
In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: restrict usage in unprivileged domU The Xen privcmd driver allows to issue arbitrary hypercalls from user space processes. This is normally no problem, as access is us...
CVE-2026-23278
- EPSS 0.17%
- Veröffentlicht 20.03.2026 08:08:58
- Zuletzt bearbeitet 04.07.2026 12:16:54
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pending catchall elements During transaction processing we might have more than one catchall element: 1 live catchall element and 1 pending el...
- EPSS 0.12%
- Veröffentlicht 20.03.2026 08:08:57
- Zuletzt bearbeitet 18.04.2026 09:16:15
In the Linux kernel, the following vulnerability has been resolved: net/sched: teql: fix NULL pointer dereference in iptunnel_xmit on TEQL slave xmit teql_master_xmit() calls netdev_start_xmit(skb, slave) to transmit through slave devices, but does...
- EPSS 0.13%
- Veröffentlicht 20.03.2026 08:08:56
- Zuletzt bearbeitet 25.03.2026 11:16:21
In the Linux kernel, the following vulnerability has been resolved: net: add xmit recursion limit to tunnel xmit functions Tunnel xmit functions (iptunnel_xmit, ip6tunnel_xmit) lack their own recursion limit. When a bond device in broadcast mode ha...
CVE-2026-23273
- EPSS 0.12%
- Veröffentlicht 20.03.2026 08:08:54
- Zuletzt bearbeitet 02.04.2026 15:16:29
In the Linux kernel, the following vulnerability has been resolved: macvlan: observe an RCU grace period in macvlan_common_newlink() error path valis reported that a race condition still happens after my prior patch. macvlan_common_newlink() might...
CVE-2026-23274
- EPSS 0.12%
- Veröffentlicht 20.03.2026 08:08:54
- Zuletzt bearbeitet 18.04.2026 09:16:15
In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels IDLETIMER revision 0 rules reuse existing timers by label and always call mod_timer() on timer->timer. If the labe...
CVE-2026-23272
- EPSS 0.12%
- Veröffentlicht 20.03.2026 08:08:52
- Zuletzt bearbeitet 04.07.2026 12:16:54
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump set->nelems before insertion In case that the set is full, a new element gets published then removed without waiting for the RCU grace pe...