CVE-2026-23444
- EPSS 0.13%
- Veröffentlicht 03.04.2026 15:15:28
- Zuletzt bearbeitet 01.06.2026 17:16:46
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure ieee80211_tx_prepare_skb() has three error paths, but only two of them free the skb. The first error path (iee...
CVE-2026-23442
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:15:26
- Zuletzt bearbeitet 01.06.2026 17:16:45
In the Linux kernel, the following vulnerability has been resolved: ipv6: add NULL checks for idev in SRv6 paths __in6_dev_get() can return NULL when the device has no IPv6 configuration (e.g. MTU < IPV6_MIN_MTU or after NETDEV_UNREGISTER). Add NU...
CVE-2026-23439
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:15:23
- Zuletzt bearbeitet 23.04.2026 20:59:18
In the Linux kernel, the following vulnerability has been resolved: udp_tunnel: fix NULL deref caused by udp_sock_create6 when CONFIG_IPV6=n When CONFIG_IPV6 is disabled, the udp_sock_create6() function returns 0 (success) without actually creating...
CVE-2026-23434
- EPSS 0.13%
- Veröffentlicht 03.04.2026 15:15:19
- Zuletzt bearbeitet 27.04.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nand_lock() and nand_unlock() call into chip->ops.lock_area/unlock_area without holding the NAND device lock. On c...
CVE-2026-23420
- EPSS 0.09%
- Veröffentlicht 03.04.2026 13:24:29
- Zuletzt bearbeitet 24.04.2026 15:21:23
In the Linux kernel, the following vulnerability has been resolved: wifi: wlcore: Fix a locking bug Make sure that wl->mutex is locked before it is unlocked. This has been detected by the Clang thread-safety analyzer.
CVE-2026-23410
- EPSS 0.14%
- Veröffentlicht 01.04.2026 08:36:39
- Zuletzt bearbeitet 24.04.2026 15:23:43
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix race on rawdata dereference There is a race condition that leads to a use-after-free situation: because the rawdata inodes are not refcounted, an attacker can start o...
CVE-2026-23411
- EPSS 0.15%
- Veröffentlicht 01.04.2026 08:36:39
- Zuletzt bearbeitet 24.04.2026 15:23:12
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix race between freeing data and fs accessing it AppArmor was putting the reference to i_private data on its end after removing the original entry from the file system. ...
CVE-2026-23409
- EPSS 0.18%
- Veröffentlicht 01.04.2026 08:36:38
- Zuletzt bearbeitet 24.04.2026 15:23:55
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix differential encoding verification Differential encoding allows loops to be created if it is abused. To prevent this the unpack should verify that a diff-encode chain...
CVE-2026-23407
- EPSS 0.18%
- Veröffentlicht 01.04.2026 08:36:37
- Zuletzt bearbeitet 24.04.2026 16:38:39
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix missing bounds check on DEFAULT table in verify_dfa() The verify_dfa() function only checks DEFAULT_TABLE bounds when the state is not differentially encoded. When t...
CVE-2026-23408
- EPSS 0.18%
- Veröffentlicht 01.04.2026 08:36:37
- Zuletzt bearbeitet 24.04.2026 15:24:02
In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix double free of ns_name in aa_replace_profiles() if ns_name is NULL after 1071 error = aa_unpack(udata, &lh, &ns_name); and if ent->ns_name contains an ns_nam...