CVE-2026-46199
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:40:16
- Zuletzt bearbeitet 10.06.2026 17:11:00
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.
CVE-2026-46200
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:40:16
- Zuletzt bearbeitet 10.06.2026 17:14:37
In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix controller deregistration Make sure to deregister the controller before disabling and releasing underlying resources like interrupts and gpios during driver unbin...
CVE-2026-46198
- EPSS 0.28%
- Veröffentlicht 28.05.2026 09:40:14
- Zuletzt bearbeitet 10.06.2026 17:09:27
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix integer overflow on buff_pos Fixing an integer overflow present in batadv_iv_ogm_send_to_if. The size check is done using the int type in batadv_iv_ogm_aggr_packet ...
CVE-2026-46197
- EPSS 0.14%
- Veröffentlicht 28.05.2026 09:40:13
- Zuletzt bearbeitet 10.06.2026 16:59:29
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: validate SVM ioctl nattr against buffer size Validate nattr field against the buffer size, preventing out-of-bounds buffer access via user-controlled attribute count. ...
CVE-2026-46196
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:49
- Zuletzt bearbeitet 10.06.2026 19:18:27
In the Linux kernel, the following vulnerability has been resolved: tracepoint: balance regfunc() on func_add() failure in tracepoint_add_func() When a tracepoint goes through the 0 -> 1 transition, tracepoint_add_func() invokes the subsystem's ext...
CVE-2026-46195
- EPSS 0.68%
- Veröffentlicht 28.05.2026 09:36:48
- Zuletzt bearbeitet 30.06.2026 03:20:17
In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parse_sec_desc(), build_sec_desc(), and the chown path in id_mode_to_cifs_acl() all add the server-supplied dacloffse...
CVE-2026-46194
- EPSS 0.09%
- Veröffentlicht 28.05.2026 09:36:47
- Zuletzt bearbeitet 10.06.2026 19:19:50
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix node_cnt race between extent node destroy and writeback f2fs_destroy_extent_node() does not set FI_NO_EXTENT before clearing extent nodes. When called from f2fs_drop_inod...
CVE-2026-46193
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:46
- Zuletzt bearbeitet 10.06.2026 19:20:04
In the Linux kernel, the following vulnerability has been resolved: xfrm: ah: account for ESN high bits in async callbacks AH allocates its temporary auth/ICV layout differently when ESN is enabled: the async ahash setup appends a 4-byte seqhi slot...
CVE-2026-46192
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:36:45
- Zuletzt bearbeitet 11.06.2026 03:11:02
In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: don't attempt to transmit during emulated read-only dual/quad operations The core will deal with reads by creating clock cycles itself, there's no need to...
CVE-2026-46190
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:44
- Zuletzt bearbeitet 11.06.2026 03:10:46
In the Linux kernel, the following vulnerability has been resolved: mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show() Sashiko noticed an out-of-bounds read [1]. In spi_nor_params_show(), the snor_f_names array is passed to spi...