CVE-2026-45843
- EPSS 0.28%
- Veröffentlicht 27.05.2026 09:24:45
- Zuletzt bearbeitet 26.06.2026 18:49:23
In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length slhc_uncompress() parses a VJ-compressed TCP header by advancing a pointer through the packet via decode() and pull1...
CVE-2026-45842
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:42
- Zuletzt bearbeitet 26.06.2026 18:51:05
In the Linux kernel, the following vulnerability has been resolved: slip: reject VJ receive packets on instances with no rstate array slhc_init() accepts rslots == 0 as a valid configuration, with the documented meaning of 'no receive compression'....
CVE-2026-45841
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:40
- Zuletzt bearbeitet 26.06.2026 18:52:56
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO nf_osf_match_one() computes ctx->window % f->wss.val in the OSF_WSS_MODULO branch with no guard for f->wss.val == 0. ...
CVE-2026-45840
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:39
- Zuletzt bearbeitet 26.06.2026 18:56:58
In the Linux kernel, the following vulnerability has been resolved: openvswitch: cap upcall PID array size and pre-size vport replies The vport netlink reply helpers allocate a fixed-size skb with nlmsg_new(NLMSG_DEFAULT_SIZE, ...) but serialize th...
CVE-2026-45839
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:37
- Zuletzt bearbeitet 26.06.2026 19:08:05
In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpf_core_parse_spec() CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field,...
CVE-2026-45838
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:36
- Zuletzt bearbeitet 26.06.2026 19:09:03
In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroup_storage_get_next_key() list_next_entry() never returns NULL -- when the current element is the last entry it wraps to the list head via con...
CVE-2026-45836
- EPSS 0.12%
- Veröffentlicht 26.05.2026 16:14:13
- Zuletzt bearbeitet 26.06.2026 19:01:35
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_get_sndtimeo_cb() Add the same NULL guard already present in l2cap_sock_resume_cb() and l2cap_sock_ready_cb().
CVE-2026-45835
- EPSS 0.12%
- Veröffentlicht 26.05.2026 16:14:12
- Zuletzt bearbeitet 26.06.2026 19:01:20
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() Add the same NULL guard already present in l2cap_sock_resume_cb() and l2cap_sock_ready_cb().
CVE-2026-45834
- EPSS 0.12%
- Veröffentlicht 26.05.2026 16:14:11
- Zuletzt bearbeitet 26.06.2026 18:57:39
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() Add the same NULL guard already present in l2cap_sock_resume_cb() and l2cap_sock_ready_cb().
CVE-2026-46300
- EPSS 3.66%
- Veröffentlicht 23.05.2026 11:44:02
- Zuletzt bearbeitet 10.07.2026 12:17:03
In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker during coalescing skb_try_coalesce() can attach paged frags from @from to @to. If @from has SKBFL_SHARED_FRAG set, the resulting @to skb c...