CVE-2026-53245
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:39
- Zuletzt bearbeitet 07.07.2026 22:17:38
In the Linux kernel, the following vulnerability has been resolved: net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattr In mrp_pdu_parse_vecattr(), vector attribute events are encoded three per byte and valen tracks the number of eve...
CVE-2026-53242
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:37
- Zuletzt bearbeitet 07.07.2026 22:22:16
In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams snd_pcm_drain() uses init_waitqueue_entry which does not clear entry.prev/next, and add_wait_queue wi...
CVE-2026-53241
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:36
- Zuletzt bearbeitet 07.07.2026 22:22:37
In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct snd_seq_event into a stack temporary, rewriting source and des...
CVE-2026-53239
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:35
- Zuletzt bearbeitet 08.07.2026 13:06:06
In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexact bin in xfrm_policy_bysel_ctx() Fix the race by pruning the bin while still holding xfrm_policy_lock, before dropping it. Use __xfrm_poli...
CVE-2026-53238
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:34
- Zuletzt bearbeitet 08.07.2026 13:12:15
In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlbl_unlabel_addrinfo_get() used the address attribute length to determine whether the attribute data could be rea...
CVE-2026-53237
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:33
- Zuletzt bearbeitet 08.07.2026 13:13:22
In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix NULL pointer dereference in suspend/resume mvebu_pwm_suspend() and mvebu_pwm_resume() are called for all GPIO banks during suspend/resume, but not all banks have P...
CVE-2026-53236
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:33
- Zuletzt bearbeitet 08.07.2026 13:20:37
In the Linux kernel, the following vulnerability has been resolved: tcp: restrict SO_ATTACH_FILTER to priv users This patch restricts the use of SO_ATTACH_FILTER (cBPF) on TCP sockets to users with CAP_NET_ADMIN capability. This blocks potential s...
CVE-2026-53235
- EPSS 0.47%
- Veröffentlicht 25.06.2026 08:39:32
- Zuletzt bearbeitet 08.07.2026 19:00:57
In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receive_list() skb_gro_receive_list() calls skb_pull(skb, skb_gro_offset(skb)) without first ensuring the data is in the linear area via pskb_ma...
CVE-2026-53234
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:31
- Zuletzt bearbeitet 08.07.2026 19:02:06
In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during device removal The driver was using devm_register_netdev() which causes unregister_netdev() to be deferred until the devres cleanup phase,...
CVE-2026-53233
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:31
- Zuletzt bearbeitet 07.07.2026 23:46:31
In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_rx_doit() Sashiko flags that genlmsg_reply() always consumes the skb. The error path calls nlmsg_free(rsp) so we can't jump directly to it...