CVE-2026-43405
- EPSS 0.49%
- Veröffentlicht 08.05.2026 14:21:45
- Zuletzt bearbeitet 21.05.2026 19:16:09
In the Linux kernel, the following vulnerability has been resolved: libceph: Use u32 for non-negative values in ceph_monmap_decode() This patch fixes unnecessary implicit conversions that change signedness of blob_len and num_mon in ceph_monmap_dec...
CVE-2026-43403
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:21:44
- Zuletzt bearbeitet 21.05.2026 19:23:20
In the Linux kernel, the following vulnerability has been resolved: nsfs: tighten permission checks for ns iteration ioctls Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak info...
CVE-2026-43400
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:21:42
- Zuletzt bearbeitet 21.05.2026 19:27:02
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add upper bound check on user inputs in signal ioctl Huge input values in amdgpu_userq_signal_ioctl can lead to a OOM and could be exploited. So check these input valu...
CVE-2026-43397
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:40
- Zuletzt bearbeitet 21.05.2026 19:30:31
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: samsung-dsim: Fix memory leak in error path In samsung_dsim_host_attach(), drm_bridge_add() is called to add the bridge. However, if samsung_dsim_register_te_irq() or p...
CVE-2026-43398
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:21:40
- Zuletzt bearbeitet 21.05.2026 19:29:27
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add upper bound check on user inputs in wait ioctl Huge input values in amdgpu_userq_wait_ioctl can lead to a OOM and could be exploited. So check these input value ag...
CVE-2026-43394
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:38
- Zuletzt bearbeitet 26.05.2026 14:50:08
In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix cred ref leak in nfsd_nl_listener_set_doit(). nfsd_nl_listener_set_doit() uses get_current_cred() without put_cred(). As we can see from other callers, svc_xprt_create_f...
CVE-2026-43395
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:38
- Zuletzt bearbeitet 21.05.2026 19:34:15
In the Linux kernel, the following vulnerability has been resolved: drm/xe/sync: Cleanup partially initialized sync on parse failure xe_sync_entry_parse() can allocate references (syncobj, fence, chain fence, or user fence) before hitting a later f...
CVE-2026-43393
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:37
- Zuletzt bearbeitet 26.05.2026 14:53:09
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix chunk map leak in btrfs_map_block() after btrfs_chunk_map_num_copies() Fix a chunk map leak in btrfs_map_block(): if we return early with -EINVAL, we're not freeing the ...
CVE-2026-43392
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:21:36
- Zuletzt bearbeitet 26.05.2026 14:55:03
In the Linux kernel, the following vulnerability has been resolved: sched_ext: Fix starvation of scx_enable() under fair-class saturation During scx_enable(), the READY -> ENABLED task switching loop changes the calling thread's sched_class from fa...
CVE-2026-43387
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:33
- Zuletzt bearbeitet 26.05.2026 16:00:40
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser"), we don't t...