CVE-2026-43060
- EPSS 0.12%
- Veröffentlicht 05.05.2026 16:16:15
- Zuletzt bearbeitet 08.05.2026 13:16:37
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: drop pending enqueued packets on removal Packets sitting in nfqueue might hold a reference to: - templates that specify the conntrack zone, because a percpu are...
CVE-2026-43061
- EPSS 0.09%
- Veröffentlicht 05.05.2026 16:16:15
- Zuletzt bearbeitet 29.05.2026 18:24:52
In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix TX deadlock when using DMA `dmaengine_terminate_async` does not guarantee that the `__dma_tx_complete` callback will run. The callback is currently the only place...
CVE-2026-43062
- EPSS 0.22%
- Veröffentlicht 05.05.2026 16:16:15
- Zuletzt bearbeitet 29.05.2026 18:23:08
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix type confusion in l2cap_ecred_reconf_rsp() l2cap_ecred_reconf_rsp() casts the incoming data to struct l2cap_ecred_conn_rsp (the ECRED *connection* response, 8...
CVE-2026-43066
- EPSS 0.12%
- Veröffentlicht 05.05.2026 16:16:15
- Zuletzt bearbeitet 29.05.2026 17:53:12
In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths During code review, Joseph found that ext4_fc_replay_inode() calls ext4_get_fc_inode_loc() to get the inode location, w...
CVE-2026-43058
- EPSS 0.12%
- Veröffentlicht 02.05.2026 06:11:50
- Zuletzt bearbeitet 01.06.2026 17:17:01
In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix pass-by-value structs causing MSAN warnings vidtv_ts_null_write_into() and vidtv_ts_pcr_write_into() take their argument structs by value, causing MSAN to report ...
CVE-2026-31715
- EPSS 0.12%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 17.05.2026 16:16:16
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io() The xfstests case "generic/107" and syzbot have both reported a NULL pointer dereference. The concurren...
CVE-2026-31701
- EPSS 0.12%
- Veröffentlicht 01.05.2026 14:16:20
- Zuletzt bearbeitet 01.06.2026 17:16:56
In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in create_card() The caiaq driver stores a pointer to the parent USB device in cdev->chip.dev but never takes a reference on it. The...
CVE-2026-31702
- EPSS 0.12%
- Veröffentlicht 01.05.2026 14:16:20
- Zuletzt bearbeitet 01.06.2026 17:16:56
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix use-after-free of sbi in f2fs_compress_write_end_io() In f2fs_compress_write_end_io(), dec_page_count(sbi, type) can bring the F2FS_WB_CP_DATA counter to zero, unblocking...
CVE-2026-31708
- EPSS 0.31%
- Veröffentlicht 01.05.2026 14:16:20
- Zuletzt bearbeitet 01.06.2026 17:16:57
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB read in smb2_ioctl_query_info QUERY_INFO path smb2_ioctl_query_info() has two response-copy branches: PASSTHRU_FSCTL and the default QUERY_INFO path. The QUER...
CVE-2026-31694
- EPSS 0.13%
- Veröffentlicht 01.05.2026 14:16:19
- Zuletzt bearbeitet 02.07.2026 15:16:59
In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuse_add_dirent_to_cache() computes a serialized dirent size from the server-controlled namelen field and copies the dirent into a sing...