CVE-2026-31644
- EPSS 0.13%
- Veröffentlicht 24.04.2026 14:44:58
- Zuletzt bearbeitet 27.04.2026 20:19:21
In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix use-after-free and leak in lan966x_fdma_reload() When lan966x_fdma_reload() fails to allocate new RX buffers, the restore path restarts DMA using old descriptors ...
CVE-2026-31645
- EPSS 0.12%
- Veröffentlicht 24.04.2026 14:44:58
- Zuletzt bearbeitet 27.04.2026 20:19:07
In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966x_fdma_rx_alloc() creates a page pool but does not destroy it if the subsequent fdma_alloc_coherent() call fails, leaking the ...
CVE-2026-31642
- EPSS 0.12%
- Veröffentlicht 24.04.2026 14:44:56
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call removal to use RCU safe deletion Fix rxrpc call removal from the rxnet->calls list to use list_del_rcu() rather than list_del_init() to prevent stuffing up reading ...
CVE-2026-31638
- EPSS 0.44%
- Veröffentlicht 24.04.2026 14:44:52
- Zuletzt bearbeitet 27.04.2026 20:20:36
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Only put the call ref if one was acquired rxrpc_input_packet_on_conn() can process a to-client packet after the current client call on the channel has already been torn down...
CVE-2026-31639
- EPSS 0.12%
- Veröffentlicht 24.04.2026 14:44:52
- Zuletzt bearbeitet 27.04.2026 20:20:27
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key reference count leak from call->key When creating a client call in rxrpc_alloc_client_call(), the code obtains a reference to the key. This is never cleaned up and ...
CVE-2026-31637
- EPSS 0.51%
- Veröffentlicht 24.04.2026 14:44:51
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response tickets rxkad_decrypt_ticket() decrypts the RXKAD response ticket and then parses the buffer as plaintext without checking whether crypto...
CVE-2026-31634
- EPSS 0.12%
- Veröffentlicht 24.04.2026 14:44:49
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix reference count leak in rxrpc_server_keyring() This patch fixes a reference count leak in rxrpc_server_keyring() by checking if rx->securities is already set.
CVE-2026-31630
- EPSS 0.13%
- Veröffentlicht 24.04.2026 14:44:46
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AF_RXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with "%pISpc". That is to...
CVE-2026-31628
- EPSS 0.13%
- Veröffentlicht 24.04.2026 14:42:49
- Zuletzt bearbeitet 27.04.2026 20:40:46
In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results from previous operations. Those results can be leaked by another, attack...
CVE-2026-31629
- EPSS 0.22%
- Veröffentlicht 24.04.2026 14:42:49
- Zuletzt bearbeitet 01.06.2026 17:16:53
In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCP_CLOSED checks In nfc_llcp_recv_hdlc() and nfc_llcp_recv_disc(), when the socket state is LLCP_CLOSED, the code correctly calls release_sock...