CVE-2026-52921
- EPSS 0.11%
- Veröffentlicht 24.06.2026 07:14:16
- Zuletzt bearbeitet 08.07.2026 17:52:39
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: stop hash:* range iteration at end The following hash set variants: hash:ip,mark hash:ip,port hash:ip,port,ip hash:ip,port,net iterate IPv4 ranges with a 32-bit...
CVE-2026-52919
- EPSS 0.12%
- Veröffentlicht 24.06.2026 07:14:15
- Zuletzt bearbeitet 08.07.2026 18:02:43
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix tp_meter counter underflow during shutdown batadv_tp_sender_shutdown() unconditionally decrements the "sending" atomic counter. If multiple paths (e.g. timeout, use...
CVE-2026-52920
- EPSS 0.3%
- Veröffentlicht 24.06.2026 07:14:15
- Zuletzt bearbeitet 08.07.2026 17:58:21
In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_policy: fix strict mode inbound policy matching match_policy_in() walks sec_path entries from the last transform to the first one, but strict policy matching needs to...
CVE-2026-52918
- EPSS 0.27%
- Veröffentlicht 24.06.2026 07:14:14
- Zuletzt bearbeitet 08.07.2026 15:12:36
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: serialize accept_q access bt_sock_poll() walks the accept queue without synchronization, while child teardown can unlink the same socket and drop its last reference. The...
CVE-2026-52916
- EPSS 0.12%
- Veröffentlicht 24.06.2026 07:14:13
- Zuletzt bearbeitet 08.07.2026 15:12:46
In the Linux kernel, the following vulnerability has been resolved: batman-adv: frag: disallow unicast fragment in fragment batadv_frag_skb_buffer() is called by batadv_batman_skb_recv() when a BATADV_UNICAST_FRAG packet is received. Once all fragm...
CVE-2026-52917
- EPSS 0.13%
- Veröffentlicht 24.06.2026 07:14:13
- Zuletzt bearbeitet 08.07.2026 15:12:41
In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dump_one path The SCTP exact sock_diag lookup can hold a transport reference, block on lock_sock(sk), and then resume after sctp_associatio...
CVE-2026-52915
- EPSS 0.13%
- Veröffentlicht 24.06.2026 07:14:12
- Zuletzt bearbeitet 08.07.2026 15:12:50
In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_hbh: reject oversized option lists struct ip6t_opts stores at most IP6T_OPTS_OPTSNR option descriptors, but hbh_mt6_check() does not reject larger optsnr values sup...
CVE-2026-52913
- EPSS 0.12%
- Veröffentlicht 24.06.2026 07:14:11
- Zuletzt bearbeitet 08.07.2026 15:13:03
In the Linux kernel, the following vulnerability has been resolved: batman-adv: v: stop OGMv2 on disabled interface When a batadv_hard_iface is disabled, its mesh_iface pointer is set to NULL. However, batadv_v_ogm_send_meshif() may still dispatch ...
CVE-2026-52914
- EPSS 0.52%
- Veröffentlicht 24.06.2026 07:14:11
- Zuletzt bearbeitet 08.07.2026 15:12:54
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it to validate a fragment chain before reassembly. Th...
CVE-2026-52912
- EPSS 0.14%
- Veröffentlicht 24.06.2026 07:14:10
- Zuletzt bearbeitet 08.07.2026 15:13:08
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: hold bridge skb->dev while queued br_pass_frame_up() rewrites skb->dev from the ingress port to the bridge master before queueing bridge LOCAL_IN packets. NFQU...