CVE-2026-46120
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:35
- Zuletzt bearbeitet 24.06.2026 16:51:39
In the Linux kernel, the following vulnerability has been resolved: ip6_gre: Use cached t->net in ip6erspan_changelink(). After commit 5e72ce3e3980 ("net: ipv6: Use link netns in newlink() of rtnl_link_ops"), ip6erspan_newlink() correctly resolves ...
CVE-2026-46119
- EPSS 0.53%
- Veröffentlicht 28.05.2026 09:35:34
- Zuletzt bearbeitet 24.06.2026 16:51:46
In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in auth message processing If a (potentially corrupted) message of type CEPH_MSG_AUTH_REPLY contains a positive value in its result field, it...
CVE-2026-46116
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:30
- Zuletzt bearbeitet 07.07.2026 12:16:52
In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete KASAN reproduces a slab-use-after-free in __xfrm_state_delete()'s hlist_del_rcu calls under syzkaller load on linux...
CVE-2026-46113
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:23
- Zuletzt bearbeitet 24.06.2026 18:23:16
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp->gfn plus the SPTE index. This assumption breaks for ...
CVE-2026-46112
- EPSS 0.1%
- Veröffentlicht 28.05.2026 09:35:20
- Zuletzt bearbeitet 24.06.2026 18:25:40
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() Sashiko points out that hns_roce_qp_remove() requires the caller to hold locks. The error flow in hns_roce_create_qp_common() d...
CVE-2026-46111
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:19
- Zuletzt bearbeitet 24.06.2026 18:26:17
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in create_big_sync Add hci_conn_valid() check in create_big_sync() to detect stale connections before proceeding with BIG creation. Handle th...
CVE-2026-46110
- EPSS 0.5%
- Veröffentlicht 28.05.2026 09:35:18
- Zuletzt bearbeitet 24.06.2026 18:28:54
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Prevent NULL deref when RX memory exhausted The CPU receives frames from the MAC through conventional DMA: the CPU allocates buffers for the MAC, then the MAC fills th...
CVE-2026-46109
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:16
- Zuletzt bearbeitet 24.06.2026 18:31:16
In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: fix memory leak on ulpi_register() error paths Commit 01af542392b5 ("usb: ulpi: fix double free in ulpi_register_interface() error path") removed kfree(ulpi) from ulpi_r...
CVE-2026-46108
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:14
- Zuletzt bearbeitet 25.06.2026 21:19:26
In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to norma...
CVE-2026-46107
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:13
- Zuletzt bearbeitet 25.06.2026 21:19:11
In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalance_children. If the internal btree node has one entry, the code tries to copy all btree ent...