Debian

Debian 14 (forky)

14640 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.14%
  • Veröffentlicht 28.05.2026 09:36:06
  • Zuletzt bearbeitet 09.06.2026 21:06:10

In the Linux kernel, the following vulnerability has been resolved: fanotify: fix false positive on permission events fsnotify_get_mark_safe() may return false for a mark on an unrelated group, which results in bypassing the permission check. Fix ...

  • EPSS 0.14%
  • Veröffentlicht 28.05.2026 09:36:05
  • Zuletzt bearbeitet 10.06.2026 21:18:31

In the Linux kernel, the following vulnerability has been resolved: scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show() target_tg_pt_gp_members_show() formats LUN paths with snprintf() into a 256-byte stack buffer, then will ...

  • EPSS 0.12%
  • Veröffentlicht 28.05.2026 09:36:04
  • Zuletzt bearbeitet 10.06.2026 21:18:13

In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: control built-in cs manually The coreQSPI IP supports only a single chip select, which is automagically operated by the hardware - set low when the transm...

  • EPSS 0.13%
  • Veröffentlicht 28.05.2026 09:36:03
  • Zuletzt bearbeitet 10.06.2026 21:18:05

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix pin leak and publication ordering in __pkvm_init_vcpu() Two bugs exist in the vCPU initialisation path: 1. If a check fails after hyp_pin_shared_mem() succeeds, th...

  • EPSS 0.13%
  • Veröffentlicht 28.05.2026 09:36:02
  • Zuletzt bearbeitet 10.06.2026 21:18:25

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() The convert_chmap_v3() has a loop with its increment size of cs_desc->wLength, but we forgot to validate cs_desc...

  • EPSS 0.14%
  • Veröffentlicht 28.05.2026 09:36:01
  • Zuletzt bearbeitet 30.06.2026 03:20:09

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memo...

  • EPSS 0.13%
  • Veröffentlicht 28.05.2026 09:36:00
  • Zuletzt bearbeitet 10.06.2026 21:17:48

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() Sashiko points out that mana_ib_cfg_vport_steering() is leaked, the normal destroy path cleans it up.

  • EPSS 0.13%
  • Veröffentlicht 28.05.2026 09:35:59
  • Zuletzt bearbeitet 24.06.2026 17:03:51

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens As prepare can be called mulitple times, this can result in multiple graph opens for playback path. This will result in a mem...

  • EPSS 0.13%
  • Veröffentlicht 28.05.2026 09:35:57
  • Zuletzt bearbeitet 24.06.2026 17:07:50

In the Linux kernel, the following vulnerability has been resolved: net: libwx: fix VF illegal register access Register WX_CFG_PORT_ST is a PF restricted register. When a VF is initialized, attempting to read this register triggers an illegal regis...

  • EPSS 0.13%
  • Veröffentlicht 28.05.2026 09:35:56
  • Zuletzt bearbeitet 04.07.2026 12:16:56

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btmtk: validate WMT event SKB length before struct access btmtk_usb_hci_wmt_sync() casts the WMT event response SKB data to struct btmtk_hci_wmt_evt (7 bytes) and struct...