CVE-2026-31449
- EPSS 0.14%
- Veröffentlicht 22.04.2026 14:16:38
- Zuletzt bearbeitet 01.06.2026 17:16:47
In the Linux kernel, the following vulnerability has been resolved: ext4: validate p_idx bounds in ext4_ext_correct_indexes ext4_ext_correct_indexes() walks up the extent tree correcting index entries when the first extent in a leaf is modified. Be...
CVE-2026-31441
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:37
- Zuletzt bearbeitet 07.05.2026 19:30:23
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxd_wq_disable_cleanup() which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts o...
CVE-2026-31434
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:36
- Zuletzt bearbeitet 20.05.2026 15:11:33
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix leak of kobject name for sub-group space_info When create_space_info_sub_group() allocates elements of space_info->sub_group[], kobject_init_and_add() is called for each...
CVE-2026-31433
- EPSS 0.6%
- Veröffentlicht 22.04.2026 08:15:11
- Zuletzt bearbeitet 27.04.2026 14:16:38
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in get_file_all_info() for compound requests When a compound request consists of QUERY_DIRECTORY + QUERY_INFO (FILE_ALL_INFORMATION) and the first command ...
- EPSS 96.27%
- Veröffentlicht 22.04.2026 08:15:10
- Zuletzt bearbeitet 01.07.2026 17:30:58
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-pl...
CVE-2026-31432
- EPSS 0.51%
- Veröffentlicht 22.04.2026 08:15:10
- Zuletzt bearbeitet 21.05.2026 17:28:57
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERY_INFO for compound requests When a compound request such as READ + QUERY_INFO(Security) is received, and the first command (READ) consumes most of the ...
CVE-2026-31427
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:27:17
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp process_sdp() declares union nf_inet_addr rtp_addr on the stack and passes it to the nf_nat_sip sdp_se...
CVE-2026-31428
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:24:58
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD __build_packet_message() manually constructs the NFULA_PAYLOAD netlink attribute using skb_put() and skb_c...
- EPSS 0.11%
- Veröffentlicht 13.04.2026 13:40:29
- Zuletzt bearbeitet 20.05.2026 17:55:22
In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() When ec_install_handlers() returns -EPROBE_DEFER on reduced-hardware platforms, it has already started the EC and in...
CVE-2026-31425
- EPSS 0.11%
- Veröffentlicht 13.04.2026 13:40:28
- Zuletzt bearbeitet 20.05.2026 17:56:52
In the Linux kernel, the following vulnerability has been resolved: rds: ib: reject FRMR registration before IB connection is established rds_ib_get_mr() extracts the rds_ib_connection from conn->c_transport_data and passes it to rds_ib_reg_frmr() ...