CVE-2026-43029
- EPSS 0.33%
- Veröffentlicht 01.05.2026 14:15:29
- Zuletzt bearbeitet 08.05.2026 18:33:39
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix soft lockup in mptcp_recvmsg() syzbot reported a soft lockup in mptcp_recvmsg() [0]. When receiving data with MSG_PEEK | MSG_WAITALL flags, the skb is not removed from ...
CVE-2026-43027
- EPSS 0.13%
- Veröffentlicht 01.05.2026 14:15:28
- Zuletzt bearbeitet 08.05.2026 18:29:08
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_helper: pass helper to expect cleanup nf_conntrack_helper_unregister() calls nf_ct_expect_iterate_destroy() to remove expectations belonging to the helper b...
CVE-2026-43025
- EPSS 0.13%
- Veröffentlicht 01.05.2026 14:15:27
- Zuletzt bearbeitet 08.05.2026 18:17:47
In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ignore explicit helper on new expectations Use the existing master conntrack helper, anything else is not really supported and it just makes validation more c...
CVE-2026-43026
- EPSS 0.12%
- Veröffentlicht 01.05.2026 14:15:27
- Zuletzt bearbeitet 08.05.2026 18:21:45
In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent ctnetlink_alloc_expect() allocates expectations from a non-zeroing slab cache via nf_ct_expect_alloc(). Whe...
CVE-2026-43024
- EPSS 0.12%
- Veröffentlicht 01.05.2026 14:15:26
- Zuletzt bearbeitet 08.05.2026 18:15:22
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject immediate NF_QUEUE verdict nft_queue is always used from userspace nftables to deliver the NF_QUEUE verdict. Immediately emitting an NF_QUEUE verdict i...
CVE-2026-43022
- EPSS 0.11%
- Veröffentlicht 01.05.2026 14:15:25
- Zuletzt bearbeitet 08.05.2026 14:53:58
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists hci_cmd_sync_queue_once() needs to indicate whether a queue item was added, so caller can know if callbacks ...
CVE-2026-43023
- EPSS 0.1%
- Veröffentlicht 01.05.2026 14:15:25
- Zuletzt bearbeitet 08.05.2026 14:56:44
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: fix race conditions in sco_sock_connect() sco_sock_connect() checks sk_state and sk_type without holding the socket lock. Two concurrent connect() syscalls on the s...
CVE-2026-43019
- EPSS 0.13%
- Veröffentlicht 01.05.2026 14:15:23
- Zuletzt bearbeitet 08.05.2026 14:35:10
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in set_cig_params_sync hci_conn lookup and field access must be covered by hdev lock in set_cig_params_sync, otherwise it's possible it is fr...
CVE-2026-43020
- EPSS 0.13%
- Veröffentlicht 01.05.2026 14:15:23
- Zuletzt bearbeitet 08.05.2026 14:41:09
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate LTK enc_size on load Load Long Term Keys stores the user-provided enc_size and later uses it to size fixed-size stack operations when replying to LE LTK r...
CVE-2026-43018
- EPSS 0.26%
- Veröffentlicht 01.05.2026 14:15:22
- Zuletzt bearbeitet 08.05.2026 14:15:26
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: fix potential UAF in hci_le_remote_conn_param_req_evt hci_conn lookup and field access must be covered by hdev lock in hci_le_remote_conn_param_req_evt, other...