CVE-2026-43495
- EPSS 0.27%
- Veröffentlicht 21.05.2026 12:12:45
- Zuletzt bearbeitet 26.06.2026 17:29:15
In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate port_count against message length in t7xx_port_enum_msg_handler t7xx_port_enum_msg_handler() uses the modem-supplied port_count field as a loop bound over...
CVE-2026-43494
- EPSS 0.27%
- Veröffentlicht 21.05.2026 10:49:21
- Zuletzt bearbeitet 30.06.2026 03:19:46
In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page pin fails When iov_iter_get_pages2() fails in rds_message_zcopy_from_user(), the pinned pages are released with put_page(), and rm->data....
CVE-2026-43493
- EPSS 0.55%
- Veröffentlicht 19.05.2026 10:44:25
- Zuletzt bearbeitet 26.06.2026 17:30:15
In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKLOG requests MAY_BACKLOG requests can return EBUSY. Handle them by checking for that value and filtering out EINPROGRESS notifications.
CVE-2026-43492
- EPSS 0.15%
- Veröffentlicht 19.05.2026 10:44:24
- Zuletzt bearbeitet 26.06.2026 17:30:39
In the Linux kernel, the following vulnerability has been resolved: lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl() Yiming reports an integer underflow in mpi_read_raw_from_sgl() when subtracting "lzeros" from the unsigned "nbytes...
CVE-2026-43491
- EPSS 0.14%
- Veröffentlicht 19.05.2026 10:44:23
- Zuletzt bearbeitet 26.06.2026 19:14:15
In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the maximum server registration per node Current code does no bound checking on the number of servers added per node. A malicious client can flood NEW_SERVER m...
CVE-2026-46333
- EPSS 1.38%
- Veröffentlicht 15.05.2026 12:58:44
- Zuletzt bearbeitet 01.07.2026 13:17:36
In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' logic The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it can core dump or n...
CVE-2026-43490
- EPSS 0.41%
- Veröffentlicht 15.05.2026 05:15:37
- Zuletzt bearbeitet 26.06.2026 19:16:00
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate inherited ACE SID length smb_inherit_dacl() walks the parent directory DACL loaded from the security descriptor xattr. It verifies that each ACE contains the fixed ...
CVE-2026-43488
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:33
- Zuletzt bearbeitet 26.06.2026 19:23:22
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Prevent interrupt storm on host controller error (HCE) The xHCI controller reports a Host Controller Error (HCE) in UAS Storage Device plug/unplug scenarios on Android d...
CVE-2026-43486
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:32
- Zuletzt bearbeitet 26.06.2026 19:23:45
In the Linux kernel, the following vulnerability has been resolved: arm64: contpte: fix set_access_flags() no-op check for SMMU/ATS faults contpte_ptep_set_access_flags() compared the gathered ptep_get() value against the requested entry to detect ...
CVE-2026-43487
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:32
- Zuletzt bearbeitet 26.06.2026 19:23:33
In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. The drive belongs to th...