CVE-2026-53016
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:26
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsize AF_ALG rfc3686-ctr-aes-ccp requests pass an 8-byte IV to the driver. ccp_aes_complete() restores AES_BLOCK_SIZE bytes into the caller's...
- EPSS 0.17%
- Veröffentlicht 24.06.2026 16:29:25
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported [1], `lcn` was typed as `unsigned long` (or `unsigned int` sometimes), which is only 32 bits wide on 32-bit platfor...
CVE-2026-53011
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:22
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix use-after-free in advance_sched() on schedule switch In advance_sched(), when should_change_schedules() returns true, switch_schedules() is called to promote...
- EPSS 0.19%
- Veröffentlicht 24.06.2026 16:29:22
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: nexthop: fix IPv6 route referencing IPv4 nexthop syzbot reported a panic [1] [2]. When an IPv6 nexthop is replaced with an IPv4 nexthop, the has_v4 flag of all groups containing t...
CVE-2026-53009
- EPSS 0.12%
- Veröffentlicht 24.06.2026 16:29:20
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_tso() or ice_tx_csum() fail, the error path in ice_xmit_frame_ring() frees the skb, but the 'first' tx_buf still points to it and is marke...
CVE-2026-53006
- EPSS 0.38%
- Veröffentlicht 24.06.2026 16:29:17
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Caching saddr and daddr before pskb_pull() is problematic since skb->head can change. Remove these temporary variables: - We only access &i...
- EPSS 0.18%
- Veröffentlicht 24.06.2026 16:29:16
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: sctp: fix OOB write to userspace in sctp_getsockopt_peer_auth_chunks sctp_getsockopt_peer_auth_chunks() checks that the caller's optval buffer is large enough for the peer AUTH chu...
CVE-2026-53005
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:16
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: af_unix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AF_UNIX GC. When a socket in SOCKMAP receives skb with inflight fd, sk_psock_verdict_data_ready() l...
CVE-2026-53003
- EPSS 0.51%
- Veröffentlicht 24.06.2026 16:29:15
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: pppoe: drop PFC frames RFC 2516 Section 7 states that Protocol Field Compression (PFC) is NOT RECOMMENDED for PPPoE. In practice, pppd does not support negotiating PFC for PPPoE se...
CVE-2026-53002
- EPSS 0.35%
- Veröffentlicht 24.06.2026 16:29:14
- Zuletzt bearbeitet 10.07.2026 19:24:19
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage Replace it with scnprintf, the buffer sizes are expected to be large enough to hold the result, no need for snprintf+overflow check. Inc...