CVE-2026-23244
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:06
- Zuletzt bearbeitet 21.05.2026 15:55:29
In the Linux kernel, the following vulnerability has been resolved: nvme: fix memory allocation in nvme_pr_read_keys() nvme_pr_read_keys() takes num_keys from userspace and uses it to calculate the allocation size for rse via struct_size(). The upp...
CVE-2026-23242
- EPSS 0.39%
- Veröffentlicht 18.03.2026 10:05:05
- Zuletzt bearbeitet 21.05.2026 15:43:26
In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer dereference in header processing If siw_get_hdr() returns -EINVAL before set_rx_fpdu_context(), qp->rx_fpdu can be NULL. The error path in siw_...
CVE-2026-23243
- EPSS 0.13%
- Veröffentlicht 18.03.2026 10:05:05
- Zuletzt bearbeitet 21.05.2026 15:52:23
In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_umad_write ib_umad_write computes data_len from user-controlled count and the MAD header sizes. With a mismatched user MAD header size and...
CVE-2025-71267
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:04
- Zuletzt bearbeitet 21.05.2026 18:28:40
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop triggered by zero-sized ATTR_LIST We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service (DoS) condition. A malfo...
CVE-2025-71266
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:02
- Zuletzt bearbeitet 21.05.2026 15:39:12
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: check return value of indx_find to avoid infinite loop We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service (DoS) condition. A ma...
CVE-2025-71265
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:01
- Zuletzt bearbeitet 20.05.2026 19:43:23
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop in attr_load_runs_range on inconsistent metadata We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service (DoS) cond...
CVE-2026-23241
- EPSS 0.13%
- Veröffentlicht 17.03.2026 09:11:04
- Zuletzt bearbeitet 20.05.2026 19:45:27
In the Linux kernel, the following vulnerability has been resolved: audit: add missing syscalls to read class The "at" variant of getxattr() and listxattr() are missing from the audit read class. Calling getxattrat() or listxattrat() on a file to r...
CVE-2025-71239
- EPSS 0.12%
- Veröffentlicht 17.03.2026 09:11:03
- Zuletzt bearbeitet 20.05.2026 19:47:56
In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2() to change attributes class fchmodat2(), introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2() to change a fi...
CVE-2026-23240
- EPSS 0.49%
- Veröffentlicht 10.03.2026 17:28:27
- Zuletzt bearbeitet 20.05.2026 19:30:38
In the Linux kernel, the following vulnerability has been resolved: tls: Fix race condition in tls_sw_cancel_work_tx() This issue was discovered during a code audit. After cancel_delayed_work_sync() is called from tls_sk_proto_close(), tx_work_han...
CVE-2026-23239
- EPSS 0.1%
- Veröffentlicht 10.03.2026 17:28:26
- Zuletzt bearbeitet 20.05.2026 19:27:54
In the Linux kernel, the following vulnerability has been resolved: espintcp: Fix race condition in espintcp_close() This issue was discovered during a code audit. After cancel_work_sync() is called from espintcp_close(), espintcp_tx_work() can st...