CVE-2026-31512
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:50
- Zuletzt bearbeitet 28.04.2026 15:08:37
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() l2cap_ecred_data_rcv() reads the SDU length field from skb->data using get_unaligned_le16(...
CVE-2026-31515
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:50
- Zuletzt bearbeitet 28.04.2026 16:20:43
In the Linux kernel, the following vulnerability has been resolved: af_key: validate families in pfkey_send_migrate() syzbot was able to trigger a crash in skb_put() [1] Issue is that pfkey_send_migrate() does not check old/new families, and that ...
CVE-2026-31504
- EPSS 0.13%
- Veröffentlicht 22.04.2026 14:16:49
- Zuletzt bearbeitet 28.04.2026 15:07:06
In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() via NETDEV_UP race `packet_release()` has a race window where `NETDEV_UP` can re-register a socket into a fanout group's `arr[]` array. The ...
CVE-2026-31507
- EPSS 0.13%
- Veröffentlicht 22.04.2026 14:16:49
- Zuletzt bearbeitet 28.04.2026 15:05:10
In the Linux kernel, the following vulnerability has been resolved: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer smc_rx_splice() allocates one smc_spd_priv per pipe_buffer and stores the pointer in pipe_buffer.p...
CVE-2026-31508
- EPSS 0.13%
- Veröffentlicht 22.04.2026 14:16:49
- Zuletzt bearbeitet 28.04.2026 15:04:04
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Avoid releasing netdev before teardown completes The patch cited in the Fixes tag below changed the teardown code for OVS ports to no longer unconditionally take ...
CVE-2026-31509
- EPSS 0.1%
- Veröffentlicht 22.04.2026 14:16:49
- Zuletzt bearbeitet 28.04.2026 15:02:57
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix circular locking dependency in nci_close_device nci_close_device() flushes rx_wq and tx_wq while holding req_lock. This causes a circular locking dependency because n...
CVE-2026-31498
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:48
- Zuletzt bearbeitet 28.04.2026 14:41:39
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix ERTM re-init and zero pdu_len infinite loop l2cap_config_req() processes CONFIG_REQ for channels in BT_CONNECTED state to support L2CAP reconfiguration (e.g. ...
CVE-2026-31500
- EPSS 0.13%
- Veröffentlicht 22.04.2026 14:16:48
- Zuletzt bearbeitet 01.06.2026 17:16:47
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock btintel_hw_error() issues two __hci_cmd_sync() calls (HCI_OP_RESET and Intel exception-info retrieval) witho...
CVE-2026-31502
- EPSS 0.13%
- Veröffentlicht 22.04.2026 14:16:48
- Zuletzt bearbeitet 28.04.2026 14:47:01
In the Linux kernel, the following vulnerability has been resolved: team: fix header_ops type confusion with non-Ethernet ports Similar to commit 950803f72547 ("bonding: fix type confusion in bond_setup_by_slave()") team has the same class of heade...
CVE-2026-31503
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:48
- Zuletzt bearbeitet 28.04.2026 15:07:47
In the Linux kernel, the following vulnerability has been resolved: udp: Fix wildcard bind conflict check when using hash2 When binding a udp_sock to a local address and port, UDP uses two hashes (udptable->hash and udptable->hash2) for collision d...