CVE-2026-23238
- EPSS 0.19%
- Veröffentlicht 04.03.2026 14:38:42
- Zuletzt bearbeitet 02.06.2026 14:16:48
In the Linux kernel, the following vulnerability has been resolved: romfs: check sb_set_blocksize() return value romfs_fill_super() ignores the return value of sb_set_blocksize(), which can fail if the requested block size is incompatible with the ...
CVE-2026-23237
- EPSS 0.19%
- Veröffentlicht 04.03.2026 14:38:41
- Zuletzt bearbeitet 17.03.2026 21:16:04
In the Linux kernel, the following vulnerability has been resolved: platform/x86: classmate-laptop: Add missing NULL pointer checks In a few places in the Classmate laptop driver, code using the accel object may run before that object's address is ...
CVE-2026-23236
- EPSS 0.21%
- Veröffentlicht 04.03.2026 14:36:40
- Zuletzt bearbeitet 02.06.2026 14:16:48
In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFX_IOCTL_REPORT_DAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly referenc...
CVE-2026-23235
- EPSS 0.16%
- Veröffentlicht 04.03.2026 14:36:39
- Zuletzt bearbeitet 17.03.2026 21:20:33
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs attribute read/write Some f2fs sysfs attributes suffer from out-of-bounds memory access and incorrect handling of integer values whose size ...
CVE-2026-23234
- EPSS 0.12%
- Veröffentlicht 04.03.2026 14:36:38
- Zuletzt bearbeitet 17.03.2026 21:21:25
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_io() As syzbot reported an use-after-free issue in f2fs_write_end_io(). It is caused by below race condition: loop device umount - wor...
CVE-2025-71238
- EPSS 0.19%
- Veröffentlicht 04.03.2026 14:36:36
- Zuletzt bearbeitet 17.03.2026 21:21:58
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing double free Kernel panic observed on system, [5353358.825191] BUG: unable to handle page fault for address: ff5f5e897b024000 [5353358.825194]...
CVE-2026-23231
- EPSS 0.81%
- Veröffentlicht 04.03.2026 13:15:58
- Zuletzt bearbeitet 02.06.2026 14:16:48
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix use-after-free in nf_tables_addchain() nf_tables_addchain() publishes the chain to table->chains via list_add_tail_rcu() (in nft_chain_add()) before regis...
CVE-2026-23229
- EPSS 0.12%
- Veröffentlicht 18.02.2026 14:53:33
- Zuletzt bearbeitet 02.06.2026 14:16:47
In the Linux kernel, the following vulnerability has been resolved: crypto: virtio - Add spinlock protection with virtqueue notification When VM boots with one virtio-crypto PCI device and builtin backend, run openssl benchmark command with multipl...
CVE-2026-23227
- EPSS 0.15%
- Veröffentlicht 18.02.2026 14:53:30
- Zuletzt bearbeitet 18.04.2026 09:16:14
In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: use ctx->lock to protect struct vidi_context member variables related to memory alloc/free Exynos Virtual Display driver performs memory alloc/free operations wit...
CVE-2026-23225
- EPSS 0.11%
- Veröffentlicht 18.02.2026 14:53:28
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Don't assume CID is CPU owned on mode switch Shinichiro reported a KASAN UAF, which is actually an out of bounds access in the MMCID management code. CPU0 CPU...