CVE-2026-23390
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:29:02
- Zuletzt bearbeitet 24.04.2026 18:32:24
In the Linux kernel, the following vulnerability has been resolved: tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow The dma_map_sg tracepoint can trigger a perf buffer overflow when tracing large scatter-gather lists. With ...
CVE-2026-23388
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:28:06
- Zuletzt bearbeitet 24.04.2026 18:45:22
In the Linux kernel, the following vulnerability has been resolved: Squashfs: check metadata block offset is within range Syzkaller reports a "general protection fault in squashfs_copy_data" This is ultimately caused by a corrupted index look-up t...
CVE-2026-23389
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:28:06
- Zuletzt bearbeitet 01.06.2026 17:16:45
In the Linux kernel, the following vulnerability has been resolved: ice: Fix memory leak in ice_set_ringparam() In ice_set_ringparam, tx_rings and xdp_rings are allocated before rx_rings. If the allocation of rx_rings fails, the code jumps to the d...
CVE-2026-23387
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:28:05
- Zuletzt bearbeitet 24.04.2026 18:45:08
In the Linux kernel, the following vulnerability has been resolved: pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe() devm_add_action_or_reset() already invokes the action on failure, so the explicit put causes a double-put.
CVE-2026-23386
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:28:04
- Zuletzt bearbeitet 24.04.2026 18:44:53
In the Linux kernel, the following vulnerability has been resolved: gve: fix incorrect buffer cleanup in gve_tx_clean_pending_packets for QPL In DQ-QPL mode, gve_tx_clean_pending_packets() incorrectly uses the RDA buffer cleanup path. It iterates n...
CVE-2026-23385
- EPSS 0.14%
- Veröffentlicht 25.03.2026 10:28:03
- Zuletzt bearbeitet 24.04.2026 18:44:10
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: clone set on flush only Syzbot with fault injection triggered a failing memory allocation with GFP_KERNEL which results in a WARN splat: iter.err WARNING: ne...
CVE-2026-23383
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:28:02
- Zuletzt bearbeitet 24.04.2026 18:42:21
In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing struct bpf_plt contains a u64 target field. Currently, the BPF JIT allocator requests an alignment of 4 ...
CVE-2026-23382
- EPSS 0.11%
- Veröffentlicht 25.03.2026 10:28:01
- Zuletzt bearbeitet 24.04.2026 18:42:01
In the Linux kernel, the following vulnerability has been resolved: HID: Add HID_CLAIMED_INPUT guards in raw_event callbacks missing them In commit 2ff5baa9b527 ("HID: appleir: Fix potential NULL dereference at raw event handle"), we handle the fac...
CVE-2026-23381
- EPSS 0.11%
- Veröffentlicht 25.03.2026 10:28:00
- Zuletzt bearbeitet 24.04.2026 18:41:47
In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix nd_tbl NULL dereference when IPv6 is disabled When booting with the 'ipv6.disable=1' parameter, the nd_tbl is never initialized because inet6_init() exits before n...
CVE-2026-23380
- EPSS 0.11%
- Veröffentlicht 25.03.2026 10:27:59
- Zuletzt bearbeitet 24.04.2026 16:28:47
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix WARN_ON in tracing_buffers_mmap_close When a process forks, the child process copies the parent's VMAs but the user_mapped reference count is not incremented. As a res...