CVE-2025-71305
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:14:55
- Zuletzt bearbeitet 25.06.2026 21:04:37
In the Linux kernel, the following vulnerability has been resolved: drm/display/dp_mst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayed_destro...
CVE-2025-71304
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:14:53
- Zuletzt bearbeitet 25.06.2026 21:04:41
In the Linux kernel, the following vulnerability has been resolved: smack: /smack/doi: accept previously used values Writing to /smack/doi a value that has ever been written there in the past disables networking for non-ambient labels. E.g. # ...
CVE-2026-45846
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:52
- Zuletzt bearbeitet 25.06.2026 21:04:57
In the Linux kernel, the following vulnerability has been resolved: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst() bareudp_fill_metadata_dst() passes bareudp->sock to udp_tunnel6_dst_lookup() in the IPv6 path without a NULL ch...
CVE-2026-45844
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:47
- Zuletzt bearbeitet 26.06.2026 18:42:59
In the Linux kernel, the following vulnerability has been resolved: netfilter: arp_tables: fix IEEE1394 ARP payload parsing Weiming Shi says: "arp_packet_match() unconditionally parses the ARP payload assuming two hardware addresses are present (s...
CVE-2026-45843
- EPSS 0.28%
- Veröffentlicht 27.05.2026 09:24:45
- Zuletzt bearbeitet 26.06.2026 18:49:23
In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length slhc_uncompress() parses a VJ-compressed TCP header by advancing a pointer through the packet via decode() and pull1...
CVE-2026-45842
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:42
- Zuletzt bearbeitet 26.06.2026 18:51:05
In the Linux kernel, the following vulnerability has been resolved: slip: reject VJ receive packets on instances with no rstate array slhc_init() accepts rslots == 0 as a valid configuration, with the documented meaning of 'no receive compression'....
CVE-2026-45841
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:40
- Zuletzt bearbeitet 26.06.2026 18:52:56
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO nf_osf_match_one() computes ctx->window % f->wss.val in the OSF_WSS_MODULO branch with no guard for f->wss.val == 0. ...
CVE-2026-45840
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:39
- Zuletzt bearbeitet 26.06.2026 18:56:58
In the Linux kernel, the following vulnerability has been resolved: openvswitch: cap upcall PID array size and pre-size vport replies The vport netlink reply helpers allocate a fixed-size skb with nlmsg_new(NLMSG_DEFAULT_SIZE, ...) but serialize th...
CVE-2026-45839
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:37
- Zuletzt bearbeitet 26.06.2026 19:08:05
In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpf_core_parse_spec() CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field,...
CVE-2026-45838
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:36
- Zuletzt bearbeitet 26.06.2026 19:09:03
In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroup_storage_get_next_key() list_next_entry() never returns NULL -- when the current element is the last entry it wraps to the list head via con...