CVE-2026-43359
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:14
- Zuletzt bearbeitet 15.05.2026 13:32:58
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort on set received ioctl due to item overflow If the set received ioctl fails due to an item overflow when attempting to add the BTRFS_UUID_KEY_RECEIVED_S...
CVE-2026-43357
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:13
- Zuletzt bearbeitet 15.05.2026 16:03:01
In the Linux kernel, the following vulnerability has been resolved: iio: gyro: mpu3050-core: fix pm_runtime error handling The return value of pm_runtime_get_sync() is not checked, allowing the driver to access hardware that may fail to resume. The...
CVE-2026-43355
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:11
- Zuletzt bearbeitet 04.07.2026 12:16:56
In the Linux kernel, the following vulnerability has been resolved: iio: light: bh1780: fix PM runtime leak on error path Move pm_runtime_put_autosuspend() before the error check to ensure the PM runtime reference count is always decremented after ...
CVE-2026-43350
- EPSS 0.22%
- Veröffentlicht 08.05.2026 13:41:53
- Zuletzt bearbeitet 01.06.2026 17:17:05
In the Linux kernel, the following vulnerability has been resolved: smb: client: require a full NFS mode SID before reading mode bits parse_dacl() treats an ACE SID matching sid_unix_NFS_mode as an NFS mode SID and reads sid.sub_auth[2] to recover ...
CVE-2026-43343
- EPSS 0.11%
- Veröffentlicht 08.05.2026 13:37:20
- Zuletzt bearbeitet 18.05.2026 12:33:32
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_subset: Fix unbalanced refcnt in geth_free geth_alloc() increments the reference count, but geth_free() fails to decrement it. This prevents the configuration of att...
CVE-2026-43342
- EPSS 0.09%
- Veröffentlicht 08.05.2026 13:37:19
- Zuletzt bearbeitet 18.05.2026 12:36:32
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis: Protect RNDIS options with mutex The class/subclass/protocol options are suspectible to race conditions as they can be accessed concurrently through configfs....
CVE-2026-43340
- EPSS 0.11%
- Veröffentlicht 08.05.2026 13:37:18
- Zuletzt bearbeitet 15.05.2026 19:46:42
In the Linux kernel, the following vulnerability has been resolved: comedi: Reinit dev->spinlock between attachments to low-level drivers `struct comedi_device` is the main controlling structure for a COMEDI device created by the COMEDI subsystem. ...
CVE-2026-43339
- EPSS 0.12%
- Veröffentlicht 08.05.2026 13:31:24
- Zuletzt bearbeitet 15.05.2026 19:50:34
In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible UaF in addrconf_permanent_addr() The mentioned helper try to warn the user about an exceptional condition, but the message is delivered too late, accessing t...
CVE-2026-43338
- EPSS 0.11%
- Veröffentlicht 08.05.2026 13:31:23
- Zuletzt bearbeitet 15.05.2026 19:52:36
In the Linux kernel, the following vulnerability has been resolved: btrfs: reserve enough transaction items for qgroup ioctls Currently our qgroup ioctls don't reserve any space, they just do a transaction join, which does not reserve any space, ne...
CVE-2026-43336
- EPSS 0.43%
- Veröffentlicht 08.05.2026 13:31:22
- Zuletzt bearbeitet 15.05.2026 19:57:38
In the Linux kernel, the following vulnerability has been resolved: lib/crypto: chacha: Zeroize permuted_state before it leaves scope Since the ChaCha permutation is invertible, the local variable 'permuted_state' is sufficient to compute the origi...