- EPSS 0.27%
- Veröffentlicht 25.06.2026 08:39:46
- Zuletzt bearbeitet 08.07.2026 16:42:18
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: hold listener socket in rfcomm_connect_ind() rfcomm_get_sock_by_channel() scans rfcomm_sk_list under the list lock, but returns the selected listener after dropp...
CVE-2026-53255
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:39:45
- Zuletzt bearbeitet 08.07.2026 16:44:20
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate advertising TLV before type checks tlv_data_is_valid() reads each advertising data field length from data[i], then inspects data[i + 1] for managed EIR ty...
CVE-2026-53254
- EPSS 0.28%
- Veröffentlicht 25.06.2026 08:39:45
- Zuletzt bearbeitet 08.07.2026 16:45:33
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: validate skb length in MCC handlers The RFCOMM MCC handlers cast skb->data to protocol-specific structs without validating skb->len first. A malicious remote dev...
CVE-2026-53253
- EPSS 0.27%
- Veröffentlicht 25.06.2026 08:39:44
- Zuletzt bearbeitet 08.07.2026 16:46:13
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: reject short frames before parsing A BNEP peer can send a short BNEP SDU. bnep_rx_frame() reads the packet type byte immediately and, for control packets, reads th...
CVE-2026-53249
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:41
- Zuletzt bearbeitet 07.07.2026 22:06:51
In the Linux kernel, the following vulnerability has been resolved: ipv4: restrict IPOPT_SSRR and IPOPT_LSRR options This patch restricts setting Loose Source and Record Route (LSRR) and Strict Source and Record Route (SSRR) IP options to users wit...
CVE-2026-53246
- EPSS 0.48%
- Veröffentlicht 25.06.2026 08:39:39
- Zuletzt bearbeitet 07.07.2026 22:16:52
In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk length in COOKIE_ECHO processing When a listening SCTP server processes a COOKIE_ECHO chunk, the cached peer INIT chunk embedded after the coo...
CVE-2026-53245
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:39
- Zuletzt bearbeitet 07.07.2026 22:17:38
In the Linux kernel, the following vulnerability has been resolved: net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattr In mrp_pdu_parse_vecattr(), vector attribute events are encoded three per byte and valen tracks the number of eve...
CVE-2026-53242
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:37
- Zuletzt bearbeitet 07.07.2026 22:22:16
In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams snd_pcm_drain() uses init_waitqueue_entry which does not clear entry.prev/next, and add_wait_queue wi...
CVE-2026-53239
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:35
- Zuletzt bearbeitet 08.07.2026 13:06:06
In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexact bin in xfrm_policy_bysel_ctx() Fix the race by pruning the bin while still holding xfrm_policy_lock, before dropping it. Use __xfrm_poli...
CVE-2026-53238
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:34
- Zuletzt bearbeitet 08.07.2026 13:12:15
In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlbl_unlabel_addrinfo_get() used the address attribute length to determine whether the attribute data could be rea...