CVE-2026-53249
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:41
- Zuletzt bearbeitet 07.07.2026 22:06:51
In the Linux kernel, the following vulnerability has been resolved: ipv4: restrict IPOPT_SSRR and IPOPT_LSRR options This patch restricts setting Loose Source and Record Route (LSRR) and Strict Source and Record Route (SSRR) IP options to users wit...
CVE-2026-53246
- EPSS 0.48%
- Veröffentlicht 25.06.2026 08:39:39
- Zuletzt bearbeitet 07.07.2026 22:16:52
In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk length in COOKIE_ECHO processing When a listening SCTP server processes a COOKIE_ECHO chunk, the cached peer INIT chunk embedded after the coo...
CVE-2026-53245
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:39
- Zuletzt bearbeitet 07.07.2026 22:17:38
In the Linux kernel, the following vulnerability has been resolved: net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattr In mrp_pdu_parse_vecattr(), vector attribute events are encoded three per byte and valen tracks the number of eve...
CVE-2026-53242
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:37
- Zuletzt bearbeitet 07.07.2026 22:22:16
In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams snd_pcm_drain() uses init_waitqueue_entry which does not clear entry.prev/next, and add_wait_queue wi...
CVE-2026-53239
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:35
- Zuletzt bearbeitet 08.07.2026 13:06:06
In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexact bin in xfrm_policy_bysel_ctx() Fix the race by pruning the bin while still holding xfrm_policy_lock, before dropping it. Use __xfrm_poli...
CVE-2026-53238
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:34
- Zuletzt bearbeitet 08.07.2026 13:12:15
In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlbl_unlabel_addrinfo_get() used the address attribute length to determine whether the attribute data could be rea...
CVE-2026-53237
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:33
- Zuletzt bearbeitet 08.07.2026 13:13:22
In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix NULL pointer dereference in suspend/resume mvebu_pwm_suspend() and mvebu_pwm_resume() are called for all GPIO banks during suspend/resume, but not all banks have P...
CVE-2026-53236
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:33
- Zuletzt bearbeitet 08.07.2026 13:20:37
In the Linux kernel, the following vulnerability has been resolved: tcp: restrict SO_ATTACH_FILTER to priv users This patch restricts the use of SO_ATTACH_FILTER (cBPF) on TCP sockets to users with CAP_NET_ADMIN capability. This blocks potential s...
CVE-2026-53232
- EPSS 0.22%
- Veröffentlicht 25.06.2026 08:39:30
- Zuletzt bearbeitet 07.07.2026 18:07:58
In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy probing fails Sashiko reported that we don't call sfp_bus_del_upstream() in the probe failure path, so let's add it, otherwise the sfp-bus i...
CVE-2026-53230
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:29
- Zuletzt bearbeitet 02.07.2026 20:44:28
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list mlx5_query_nic_vport_mac_list() sizes its firmware command buffer using the PF's log_max_current_uc/mc_list capabi...