CVE-2026-52918
- EPSS 0.27%
- Veröffentlicht 24.06.2026 07:14:14
- Zuletzt bearbeitet 08.07.2026 15:12:36
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: serialize accept_q access bt_sock_poll() walks the accept queue without synchronization, while child teardown can unlink the same socket and drop its last reference. The...
CVE-2026-52916
- EPSS 0.12%
- Veröffentlicht 24.06.2026 07:14:13
- Zuletzt bearbeitet 08.07.2026 15:12:46
In the Linux kernel, the following vulnerability has been resolved: batman-adv: frag: disallow unicast fragment in fragment batadv_frag_skb_buffer() is called by batadv_batman_skb_recv() when a BATADV_UNICAST_FRAG packet is received. Once all fragm...
CVE-2026-52917
- EPSS 0.13%
- Veröffentlicht 24.06.2026 07:14:13
- Zuletzt bearbeitet 08.07.2026 15:12:41
In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dump_one path The SCTP exact sock_diag lookup can hold a transport reference, block on lock_sock(sk), and then resume after sctp_associatio...
CVE-2026-52915
- EPSS 0.13%
- Veröffentlicht 24.06.2026 07:14:12
- Zuletzt bearbeitet 08.07.2026 15:12:50
In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_hbh: reject oversized option lists struct ip6t_opts stores at most IP6T_OPTS_OPTSNR option descriptors, but hbh_mt6_check() does not reject larger optsnr values sup...
CVE-2026-52913
- EPSS 0.12%
- Veröffentlicht 24.06.2026 07:14:11
- Zuletzt bearbeitet 08.07.2026 15:13:03
In the Linux kernel, the following vulnerability has been resolved: batman-adv: v: stop OGMv2 on disabled interface When a batadv_hard_iface is disabled, its mesh_iface pointer is set to NULL. However, batadv_v_ogm_send_meshif() may still dispatch ...
CVE-2026-52914
- EPSS 0.52%
- Veröffentlicht 24.06.2026 07:14:11
- Zuletzt bearbeitet 08.07.2026 15:12:54
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it to validate a fragment chain before reassembly. Th...
CVE-2026-52912
- EPSS 0.14%
- Veröffentlicht 24.06.2026 07:14:10
- Zuletzt bearbeitet 08.07.2026 15:13:08
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: hold bridge skb->dev while queued br_pass_frame_up() rewrites skb->dev from the ingress port to the bridge master before queueing bridge LOCAL_IN packets. NFQU...
CVE-2026-52911
- EPSS 0.36%
- Veröffentlicht 21.06.2026 06:18:49
- Zuletzt bearbeitet 08.07.2026 15:13:12
In the Linux kernel, the following vulnerability has been resolved: ksmbd: scope conn->binding slowpath to bound sessions only When the binding SESSION_SETUP sets conn->binding = true, the flag stays set after the call so that the global session lo...
CVE-2026-52909
- EPSS 0.12%
- Veröffentlicht 19.06.2026 14:43:33
- Zuletzt bearbeitet 08.07.2026 15:24:17
In the Linux kernel, the following vulnerability has been resolved: ip6_vti: set netns_immutable on the fallback device. john1988 and Noam Rathaus reported that vti6_init_net() does not set the netns_immutable flag on the per-netns fallback tunnel ...
CVE-2026-52910
- EPSS 0.1%
- Veröffentlicht 19.06.2026 14:43:33
- Zuletzt bearbeitet 08.07.2026 15:20:05
In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU grace period. Eulgyu Kim reported the splat below with a repro. [0] The repro sets up a UDP reuseport group with a cBPF prog and replaces i...