CVE-2026-53209
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:14
- Zuletzt bearbeitet 02.07.2026 20:54:10
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broadcast Announcement prepend Existing advertising instances can already hold the maximum extended advertising payload. When hci_adv_bcast_an...
CVE-2026-53208
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:39:14
- Zuletzt bearbeitet 02.07.2026 20:55:04
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2cap_core.c:l2cap_sig_channel() accepts BR/EDR signaling packets up to the channel MTU and dispatches e...
CVE-2026-53207
- EPSS 0.1%
- Veröffentlicht 25.06.2026 08:39:13
- Zuletzt bearbeitet 02.07.2026 20:55:07
In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix hugetlb_lock AA deadlock in get_huge_page_for_hwpoison Two concurrent madvise(MADV_HWPOISON) calls on the same hugetlb page can trigger a recursive spinlock ...
CVE-2026-53205
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:12
- Zuletzt bearbeitet 02.07.2026 20:55:24
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware log indices Add validation that read and write indices in the firmware log buffer are within valid bounds (< data_size) before using them...
CVE-2026-53203
- EPSS 0.15%
- Veröffentlicht 25.06.2026 08:39:10
- Zuletzt bearbeitet 02.07.2026 20:56:31
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in MS get_info_ioctl Add validation that the info size returned from the metric stream info query is not exceeded when checked against the all...
CVE-2026-53202
- EPSS 0.15%
- Veröffentlicht 25.06.2026 08:39:10
- Zuletzt bearbeitet 03.07.2026 13:17:28
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation in IPC receive Fix potential buffer overflow where firmware-supplied data_size is cast to signed int before being used in min_t(). Large u...
CVE-2026-53199
- EPSS 0.53%
- Veröffentlicht 25.06.2026 08:39:08
- Zuletzt bearbeitet 06.07.2026 12:32:29
In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: use kmap_local_page in netvsc_copy_to_send_buf netvsc_copy_to_send_buf() copies page buffer entries into the VMBus send buffer using phys_to_virt() on the entry PFN. Ent...
CVE-2026-53198
- EPSS 0.47%
- Veröffentlicht 25.06.2026 08:39:07
- Zuletzt bearbeitet 06.07.2026 12:32:35
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of a deferred file_lock on double SMB2_CANCEL A deferred byte-range lock (an SMB2_LOCK that blocks) registers an async work on conn->async_requests via se...
CVE-2026-53196
- EPSS 0.28%
- Veröffentlicht 25.06.2026 08:39:06
- Zuletzt bearbeitet 06.07.2026 12:35:18
In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_ti: fix heap overflow in get_manuf_info() get_manuf_info() reads le16_to_cpu(rom_desc->Size) bytes from the device I2C EEPROM into a buffer allocated with kmalloc_o...
CVE-2026-53195
- EPSS 0.15%
- Veröffentlicht 25.06.2026 08:39:05
- Zuletzt bearbeitet 06.07.2026 12:36:28
In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() build_i2c_fw_hdr() allocates a fixed-size buffer of (16*1024 - 512) + sizeof(struct ti_i2c_firmware_rec) bytes, then cop...