CVE-2026-46172
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:26
- Zuletzt bearbeitet 10.06.2026 21:12:54
In the Linux kernel, the following vulnerability has been resolved: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() xfrm6_rcv_encap() performs an IPv6 route lookup when the skb does not already have a dst attached. ip6_route_input_lookup() r...
CVE-2026-46170
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:25
- Zuletzt bearbeitet 11.06.2026 12:19:56
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: free sk if last When an ADD_ADDR is retransmitted, the sk is held in sk_reset_timer(), and released at the end. If at that moment, it was the last referen...
CVE-2026-46169
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:24
- Zuletzt bearbeitet 11.06.2026 12:56:33
In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplus_strcasecmp(). The root cause is that hfs_brec_read() doesn't valid...
CVE-2026-46167
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:22
- Zuletzt bearbeitet 10.06.2026 21:14:35
In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl Just like in a previous problem in this driver, usblp_ctrl_msg() will collapse the usb_control_msg() return value to 0...
CVE-2026-46163
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:18
- Zuletzt bearbeitet 10.06.2026 21:13:41
In the Linux kernel, the following vulnerability has been resolved: wifi: b43legacy: enforce bounds check on firmware key index in RX path Same fix as b43: the firmware-controlled key index in b43legacy_rx() can exceed dev->max_nr_keys. The existin...
CVE-2026-46161
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:16
- Zuletzt bearbeitet 09.06.2026 21:06:33
In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix divide-by-zero in setup_geo() with zero far_copies setup_geo() extracts near_copies (nc) and far_copies (fc) from the user-provided layout parameter without checking...
CVE-2026-46160
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:15
- Zuletzt bearbeitet 09.06.2026 21:06:29
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix missing last_unlink_trans update when removing a directory When removing a directory we are not updating its last_unlink_trans field, which can result in incorrect fsync...
CVE-2026-46159
- EPSS 0.09%
- Veröffentlicht 28.05.2026 09:36:14
- Zuletzt bearbeitet 09.06.2026 21:06:24
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak btrfs_ioctl_space_info() has a TOCTOU race between two passes over the block group RAID type lists...
CVE-2026-46158
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:13
- Zuletzt bearbeitet 09.06.2026 21:02:30
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: always decrease sk refcount When an ADD_ADDR is retransmitted, the sk is held in sk_reset_timer(). It should then be released in all cases at the end. Som...
CVE-2026-46157
- EPSS 0.1%
- Veröffentlicht 28.05.2026 09:36:12
- Zuletzt bearbeitet 09.06.2026 21:02:12
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger Currently the runtime.oss.trigger field may be accessed concurrently without protection, which may lead to the data r...