CVE-2026-43066
- EPSS 0.12%
- Veröffentlicht 05.05.2026 16:16:15
- Zuletzt bearbeitet 29.05.2026 17:53:12
In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths During code review, Joseph found that ext4_fc_replay_inode() calls ext4_get_fc_inode_loc() to get the inode location, w...
- EPSS 0.12%
- Veröffentlicht 05.05.2026 16:16:14
- Zuletzt bearbeitet 06.05.2026 13:08:07
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix list corruption and UAF in command complete handlers Commit 302a1f674c00 ("Bluetooth: MGMT: Fix possible UAFs") introduced mgmt_pending_valid(), which not only...
CVE-2026-43058
- EPSS 0.12%
- Veröffentlicht 02.05.2026 06:11:50
- Zuletzt bearbeitet 01.06.2026 17:17:01
In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix pass-by-value structs causing MSAN warnings vidtv_ts_null_write_into() and vidtv_ts_pcr_write_into() take their argument structs by value, causing MSAN to report ...
CVE-2026-31711
- EPSS 0.54%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 01.06.2026 17:16:57
In the Linux kernel, the following vulnerability has been resolved: smb: server: fix active_num_conn leak on transport allocation failure Commit 77ffbcac4e56 ("smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection()") addressed the k...
CVE-2026-31712
- EPSS 0.32%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 17.05.2026 16:16:16
In the Linux kernel, the following vulnerability has been resolved: ksmbd: require minimum ACE size in smb_check_perm_dacl() Both ACE-walk loops in smb_check_perm_dacl() only guard against an under-sized remaining buffer, not against an ACE whose d...
CVE-2026-31714
- EPSS 0.11%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 06.05.2026 21:12:45
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fs_rename() syzbot reported a f2fs bug as below: BUG: memory leak unreferenced object 0xffff888127f70830 (size 16): comm "syz.0.23", pid 6144...
CVE-2026-31715
- EPSS 0.12%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 17.05.2026 16:16:16
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io() The xfstests case "generic/107" and syzbot have both reported a NULL pointer dereference. The concurren...
CVE-2026-31716
- EPSS 0.13%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 01.06.2026 17:16:57
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: validate rec->used in journal-replay file record check check_file_record() validates rec->total against the record size but never validates rec->used. The do_action() jo...
CVE-2026-31717
- EPSS 0.44%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 01.06.2026 17:16:57
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate owner of durable handle on reconnect Currently, ksmbd does not verify if the user attempting to reconnect to a durable handle is the same user who originally opened...
CVE-2026-31718
- EPSS 0.36%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 17.05.2026 16:16:16
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in __ksmbd_close_fd() via durable scavenger When a durable file handle survives session disconnect (TCP close without SMB2_LOGOFF), session_fd_check() set...