CVE-2026-43109
- EPSS 0.11%
- Veröffentlicht 06.05.2026 07:40:36
- Zuletzt bearbeitet 17.05.2026 16:16:16
In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_read_lock_killable(), which is a silly oversight, a...
CVE-2026-43107
- EPSS 0.11%
- Veröffentlicht 06.05.2026 07:40:35
- Zuletzt bearbeitet 11.05.2026 17:30:05
In the Linux kernel, the following vulnerability has been resolved: xfrm: account XFRMA_IF_ID in aevent size calculation xfrm_get_ae() allocates the reply skb with xfrm_aevent_msgsize(), then build_aevent() appends attributes including XFRMA_IF_ID ...
CVE-2026-43104
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:33
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4_save_hang_state() encounters an early return condition, it returns without freeing the previously allocated `kernel_sta...
CVE-2026-43105
- EPSS 0.11%
- Veröffentlicht 06.05.2026 07:40:33
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix memory leak of BO array in hang state The hang state's BO array is allocated separately with kzalloc() in vc4_save_hang_state() but never freed in vc4_free_hang_state(...
CVE-2026-43103
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:32
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: net: lapbether: handle NETDEV_PRE_TYPE_CHANGE lapbeth_data_transmit() expects the underlying device type to be ARPHRD_ETHER. Returning NOTIFY_BAD from lapbeth_device_event() makes...
CVE-2026-43093
- EPSS 0.13%
- Veröffentlicht 06.05.2026 07:40:25
- Zuletzt bearbeitet 01.06.2026 17:17:02
In the Linux kernel, the following vulnerability has been resolved: xsk: tighten UMEM headroom validation to account for tailroom and min frame The current headroom validation in xdp_umem_reg() could leave us with insufficient space dedicated to ev...
CVE-2026-43091
- EPSS 0.13%
- Veröffentlicht 06.05.2026 07:40:23
- Zuletzt bearbeitet 19.05.2026 20:42:35
In the Linux kernel, the following vulnerability has been resolved: xfrm: Wait for RCU readers during policy netns exit xfrm_policy_fini() frees the policy_bydst hash tables after flushing the policy work items and deleting all policies, but it doe...
CVE-2026-43089
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:22
- Zuletzt bearbeitet 01.06.2026 17:17:02
In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_mapping() struct xfrm_usersa_id has a one-byte padding hole after the proto field, which ends up never getting set to zero before copying out to u...
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:21
- Zuletzt bearbeitet 14.05.2026 15:16:47
In the Linux kernel, the following vulnerability has been resolved: net: af_key: zero aligned sockaddr tail in PF_KEY exports PF_KEY export paths use `pfkey_sockaddr_size()` when reserving sockaddr payload space, so IPv6 addresses occupy 32 bytes o...
CVE-2026-43085
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:19
- Zuletzt bearbeitet 01.06.2026 18:14:48
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator When batching multiple NFLOG messages (inst->qlen > 1), __nfulnl_send() appends an NLMSG_DONE terminator with...