CVE-2025-71238
- EPSS 0.19%
- Veröffentlicht 04.03.2026 14:36:36
- Zuletzt bearbeitet 17.03.2026 21:21:58
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing double free Kernel panic observed on system, [5353358.825191] BUG: unable to handle page fault for address: ff5f5e897b024000 [5353358.825194]...
CVE-2026-23231
- EPSS 0.81%
- Veröffentlicht 04.03.2026 13:15:58
- Zuletzt bearbeitet 02.06.2026 14:16:48
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix use-after-free in nf_tables_addchain() nf_tables_addchain() publishes the chain to table->chains via list_add_tail_rcu() (in nft_chain_add()) before regis...
CVE-2026-23230
- EPSS 0.22%
- Veröffentlicht 18.02.2026 14:53:34
- Zuletzt bearbeitet 02.06.2026 14:16:48
In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to avoid shared-byte RMW races is_open, has_lease and on_list are stored in the same bitfield byte in struct cached_fid but are updated in d...
CVE-2026-23229
- EPSS 0.12%
- Veröffentlicht 18.02.2026 14:53:33
- Zuletzt bearbeitet 02.06.2026 14:16:47
In the Linux kernel, the following vulnerability has been resolved: crypto: virtio - Add spinlock protection with virtqueue notification When VM boots with one virtio-crypto PCI device and builtin backend, run openssl benchmark command with multipl...
CVE-2026-23228
- EPSS 0.12%
- Veröffentlicht 18.02.2026 14:53:31
- Zuletzt bearbeitet 02.06.2026 14:16:47
In the Linux kernel, the following vulnerability has been resolved: smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection() On kthread_run() failure in ksmbd_tcp_new_connection(), the transport is freed via free_transport(), which do...
CVE-2026-23227
- EPSS 0.15%
- Veröffentlicht 18.02.2026 14:53:30
- Zuletzt bearbeitet 18.04.2026 09:16:14
In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: use ctx->lock to protect struct vidi_context member variables related to memory alloc/free Exynos Virtual Display driver performs memory alloc/free operations wit...
CVE-2026-23226
- EPSS 0.42%
- Veröffentlicht 18.02.2026 14:53:29
- Zuletzt bearbeitet 02.04.2026 15:16:23
In the Linux kernel, the following vulnerability has been resolved: ksmbd: add chann_lock to protect ksmbd_chann_list xarray ksmbd_chann_list xarray lacks synchronization, allowing use-after-free in multi-channel sessions (between lookup_chann_list...
CVE-2026-23225
- EPSS 0.11%
- Veröffentlicht 18.02.2026 14:53:28
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Don't assume CID is CPU owned on mode switch Shinichiro reported a KASAN UAF, which is actually an out of bounds access in the MMCID management code. CPU0 CPU...
CVE-2026-23224
- EPSS 0.12%
- Veröffentlicht 18.02.2026 14:53:27
- Zuletzt bearbeitet 02.04.2026 15:16:23
In the Linux kernel, the following vulnerability has been resolved: erofs: fix UAF issue for file-backed mounts w/ directio option [ 9.269940][ T3222] Call trace: [ 9.269948][ T3222] ext4_file_read_iter+0xac/0x108 [ 9.269979][ T3222] vfs...
CVE-2026-23223
- EPSS 0.12%
- Veröffentlicht 18.02.2026 14:53:26
- Zuletzt bearbeitet 18.03.2026 14:46:29
In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_check_block_owner We cannot dereference bs->cur when trying to determine if bs->cur aliases bs->sc->sa.{bno,rmap}_cur after the latter has been freed. Fi...