CVE-2026-46153
- EPSS 0.11%
- Veröffentlicht 28.05.2026 09:36:09
- Zuletzt bearbeitet 09.06.2026 21:01:01
In the Linux kernel, the following vulnerability has been resolved: 8021q: delete cleared egress QoS mappings vlan_dev_set_egress_priority() currently keeps cleared egress priority mappings in the hash as tombstones. Repeated set/clear cycles with ...
CVE-2026-46151
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:36:07
- Zuletzt bearbeitet 09.06.2026 21:06:37
In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix heap leak in IEEE 1284 device ID via short response usblp_ctrl_msg() collapses the usb_control_msg() return value to 0/-errno, discarding the actual number of bytes...
CVE-2026-46150
- EPSS 0.14%
- Veröffentlicht 28.05.2026 09:36:06
- Zuletzt bearbeitet 09.06.2026 21:06:10
In the Linux kernel, the following vulnerability has been resolved: fanotify: fix false positive on permission events fsnotify_get_mark_safe() may return false for a mark on an unrelated group, which results in bypassing the permission check. Fix ...
CVE-2026-46149
- EPSS 0.14%
- Veröffentlicht 28.05.2026 09:36:05
- Zuletzt bearbeitet 10.06.2026 21:18:31
In the Linux kernel, the following vulnerability has been resolved: scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show() target_tg_pt_gp_members_show() formats LUN paths with snprintf() into a 256-byte stack buffer, then will ...
CVE-2026-46147
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:03
- Zuletzt bearbeitet 10.06.2026 21:18:05
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix pin leak and publication ordering in __pkvm_init_vcpu() Two bugs exist in the vCPU initialisation path: 1. If a check fails after hyp_pin_shared_mem() succeeds, th...
CVE-2026-46146
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:02
- Zuletzt bearbeitet 10.06.2026 21:18:25
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() The convert_chmap_v3() has a loop with its increment size of cs_desc->wLength, but we forgot to validate cs_desc...
CVE-2026-46137
- EPSS 0.43%
- Veröffentlicht 28.05.2026 09:35:53
- Zuletzt bearbeitet 24.06.2026 17:32:53
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: fix potential data-race This mptcp_pm_add_timer() helper is executed as a timer callback in softirq context. To avoid any data races, the socket lock needs...
CVE-2026-46135
- EPSS 0.35%
- Veröffentlicht 28.05.2026 09:35:49
- Zuletzt bearbeitet 04.07.2026 12:16:56
In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling and queue teardown nvmet_tcp_handle_icreq() updates queue->state after sending an Initialization Connection Response (ICResp), but it doe...
CVE-2026-46132
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:47
- Zuletzt bearbeitet 24.06.2026 17:51:37
In the Linux kernel, the following vulnerability has been resolved: net: rtnetlink: zero ifla_vf_broadcast to avoid stack infoleak in rtnl_fill_vfinfo rtnl_fill_vfinfo() declares struct ifla_vf_broadcast on the stack without initialisation: struc...
CVE-2026-46133
- EPSS 0.57%
- Veröffentlicht 28.05.2026 09:35:47
- Zuletzt bearbeitet 24.06.2026 17:50:36
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject unknown opcodes before ICRC processing Even after applying commit 7244491dab34 ("RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv"), a single unaut...