CVE-2026-46314
- EPSS 0.12%
- Veröffentlicht 08.06.2026 15:50:45
- Zuletzt bearbeitet 08.07.2026 14:50:58
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Reject empty multisync extension to prevent infinite loop v3d_get_extensions() walks a userspace-provided singly-linked list of ioctl extensions without any bound on the c...
CVE-2026-46313
- EPSS 0.11%
- Veröffentlicht 08.06.2026 15:50:44
- Zuletzt bearbeitet 08.07.2026 14:51:05
In the Linux kernel, the following vulnerability has been resolved: media: intel/ipu6: fix error pointer dereference In a error path isp->psys is confirmed to be an error pointer not NULL so this condition is true and the error pointer is dereferen...
CVE-2026-46312
- EPSS 0.11%
- Veröffentlicht 08.06.2026 15:50:42
- Zuletzt bearbeitet 08.07.2026 14:51:14
In the Linux kernel, the following vulnerability has been resolved: media: videobuf2: Set vma_flags in vb2_dma_sg_mmap vb2_dma_contig sets VMA flags VM_DONTEXPAND and VM_DONTDUMP and I do not see a reason why vb2_dma_sg should behave differently. T...
CVE-2026-46311
- EPSS 0.11%
- Veröffentlicht 08.06.2026 15:50:41
- Zuletzt bearbeitet 08.07.2026 14:51:25
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: fix access to stale wptr mapping Use drm_exec to take both locks i.e vm root bo and wptr_obj bo to access the mapping data properly. This fixes the security issu...
CVE-2026-46307
- EPSS 0.22%
- Veröffentlicht 08.06.2026 15:46:35
- Zuletzt bearbeitet 08.07.2026 14:47:35
In the Linux kernel, the following vulnerability has been resolved: wifi: ath5k: do not access array OOB Vincent reports: > The ath5k driver seems to do an array-index-out-of-bounds access as > shown by the UBSAN kernel message: > UBSAN: array-inde...
CVE-2026-46306
- EPSS 0.39%
- Veröffentlicht 08.06.2026 15:46:33
- Zuletzt bearbeitet 08.07.2026 14:47:47
In the Linux kernel, the following vulnerability has been resolved: flow_dissector: do not dissect PPPoE PFC frames RFC 2516 Section 7 states that Protocol Field Compression (PFC) is NOT RECOMMENDED for PPPoE. In practice, pppd does not support neg...
CVE-2026-46304
- EPSS 0.39%
- Veröffentlicht 08.06.2026 15:46:31
- Zuletzt bearbeitet 08.07.2026 14:48:12
In the Linux kernel, the following vulnerability has been resolved: nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free nvmet_tcp_release_queue_work() runs on nvmet-wq and can drop the final controller reference through nvmet_cq_put(). If that...
CVE-2026-46303
- EPSS 0.28%
- Veröffentlicht 08.06.2026 15:46:30
- Zuletzt bearbeitet 08.07.2026 14:48:22
In the Linux kernel, the following vulnerability has been resolved: isofs: validate Rock Ridge CE continuation extent against volume size rock_continue() reads rs->cont_extent verbatim from the Rock Ridge CE record and passes it to sb_bread() witho...
CVE-2026-46302
- EPSS 0.1%
- Veröffentlicht 08.06.2026 15:46:29
- Zuletzt bearbeitet 08.07.2026 14:48:36
In the Linux kernel, the following vulnerability has been resolved: selinux: allow multiple opens of /sys/fs/selinux/policy Currently there can only be a single open of /sys/fs/selinux/policy at any time. This allows any process to block any other ...
CVE-2026-46301
- EPSS 0.12%
- Veröffentlicht 08.06.2026 15:46:28
- Zuletzt bearbeitet 08.07.2026 14:48:44
In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on unbind Give the driver a chance to flush its queue before releasing the DMA buffers on driver unbind