CVE-2026-31412
- EPSS 0.17%
- Veröffentlicht 10.04.2026 10:35:05
- Zuletzt bearbeitet 20.05.2026 15:54:46
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_mass_storage: Fix potential integer overflow in check_command_size_in_blocks() The `check_command_size_in_blocks()` function calculates the data size in bytes by lef...
CVE-2026-31411
- EPSS 0.13%
- Veröffentlicht 08.04.2026 13:06:17
- Zuletzt bearbeitet 20.05.2026 16:03:38
In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() Reproducer available at [1]. The ATM send path (sendmsg -> vcc_sendmsg -> sigd_send) reads the vcc pointer from m...
CVE-2026-31405
- EPSS 0.55%
- Veröffentlicht 06.04.2026 08:16:38
- Zuletzt bearbeitet 20.05.2026 12:01:54
In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The ule_mandatory_ext_handlers[] and ule_optional_ext_handlers[] tables in handle_one_ule_extension() are declared wit...
CVE-2026-31407
- EPSS 0.17%
- Veröffentlicht 06.04.2026 08:16:38
- Zuletzt bearbeitet 01.06.2026 17:16:46
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: add missing netlink policy validations Hyunwoo Kim reports out-of-bounds access in sctp and ctnetlink. These attributes are used by the kernel without any va...
CVE-2026-31408
- EPSS 0.3%
- Veröffentlicht 06.04.2026 08:16:38
- Zuletzt bearbeitet 20.05.2026 16:18:27
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold sco_recv_frame() reads conn->sk under sco_conn_lock() but immediately releases the lock without hold...
CVE-2026-31403
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:16:06
- Zuletzt bearbeitet 20.05.2026 12:15:36
In the Linux kernel, the following vulnerability has been resolved: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd The /proc/fs/nfs/exports proc entry is created at module init and persists for the module's lifetime. exports_p...
CVE-2026-31402
- EPSS 0.49%
- Veröffentlicht 03.04.2026 15:16:05
- Zuletzt bearbeitet 08.07.2026 13:16:34
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache The NFSv4.0 replay cache uses a fixed 112-byte inline buffer (rp_ibuf[NFSD4_REPLAY_ISIZE]) to store encoded operation responses...
CVE-2026-31399
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:16:03
- Zuletzt bearbeitet 20.05.2026 12:54:51
In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if device_add() fails in nd_async_device_register(). Commit b...
CVE-2026-31400
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:16:03
- Zuletzt bearbeitet 20.05.2026 12:31:31
In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix cache_request leak in cache_release When a reader's file descriptor is closed while in the middle of reading a cache_request (rp->offset != 0), cache_release() decremen...
CVE-2026-31396
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:16:00
- Zuletzt bearbeitet 20.05.2026 13:08:34
In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via get_ts_i...