CVE-2026-53163
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:38:44
- Zuletzt bearbeitet 07.07.2026 18:18:53
In the Linux kernel, the following vulnerability has been resolved: locking/rtmutex: Skip remove_waiter() when waiter is not enqueued syzbot triggered the following splat in remove_waiter() via FUTEX_CMP_REQUEUE_PI: KASAN: null-ptr-deref in rang...
CVE-2026-53161
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:38:42
- Zuletzt bearbeitet 06.07.2026 16:42:02
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context There is a race between fastrpc_device_release() and the workqueue that processes DSP responses. When the use...
CVE-2026-53160
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:38:42
- Zuletzt bearbeitet 06.07.2026 16:41:56
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in fastrpc_map_create fastrpc_map_lookup returns a raw pointer after releasing fl->lock. The caller fastrpc_map_create then calls fastrpc_map...
CVE-2026-53159
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:38:41
- Zuletzt bearbeitet 07.07.2026 18:28:37
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix DMA address corruption due to find_vma misuse fastrpc_get_args() uses find_vma() to look up the VMA for a user-provided pointer and compute a DMA address offset....
CVE-2026-53158
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:38:40
- Zuletzt bearbeitet 07.07.2026 18:51:08
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix NULL pointer dereference in rpmsg callback A NULL pointer dereference was observed on Hawi at boot when the DSP sends a glink message before fastrpc_rpmsg_probe(...
CVE-2026-53157
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:38:40
- Zuletzt bearbeitet 07.07.2026 18:54:28
In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU grace period phonet_device_destroy() removes a phonet_device from the per-net device list with list_del_rcu(), but frees it immediately. R...
CVE-2026-53156
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:38:39
- Zuletzt bearbeitet 06.07.2026 16:41:14
In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after-free bugs in error paths Fix several instances of error paths in which we call __nvmem_device_put() - which may end up freeing the underlying memory and ...
CVE-2026-53154
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:38:38
- Zuletzt bearbeitet 07.07.2026 20:12:41
In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: restore reservation on error in hugetlb folio copy paths Two sites in mm/hugetlb.c allocate a hugetlb folio via alloc_hugetlb_folio() (consuming a VMA reservation) and ...
CVE-2026-53152
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:38:36
- Zuletzt bearbeitet 06.07.2026 17:39:19
In the Linux kernel, the following vulnerability has been resolved: mmc: dw_mmc-rockchip: Add missing private data for very old controllers The really old controllers (rk2928, rk3066, rk3188) do not support UHS speeds at all, and thus never handled...
CVE-2026-53151
- EPSS 0.5%
- Veröffentlicht 25.06.2026 08:38:36
- Zuletzt bearbeitet 06.07.2026 17:43:04
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the SACK table for parsing Fix modification of the received skbuff in rxrpc_input_soft_acks() and a potential incorrect access of the buffer in...