CVE-2026-46000
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:55:55
- Zuletzt bearbeitet 16.06.2026 13:14:03
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix conn-level packet handling to unshare RESPONSE packets The security operations that verify the RESPONSE packets decrypt bits of it in place - however, the sk_buff may be...
CVE-2026-45999
- EPSS 0.13%
- Veröffentlicht 27.05.2026 12:55:53
- Zuletzt bearbeitet 16.06.2026 13:14:55
In the Linux kernel, the following vulnerability has been resolved: erofs: fix unsigned underflow in z_erofs_lz4_handle_overlap() Some crafted images can have illegal (!partial_decoding && m_llen < m_plen) extents, and the LZ4 inplace decompression...
CVE-2026-45998
- EPSS 0.13%
- Veröffentlicht 27.05.2026 12:55:52
- Zuletzt bearbeitet 03.07.2026 13:17:21
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skb_unshare() failure If skb_unshare() fails to unshare a packet due to allocation failure in rxrpc_input_packet(), the skb pointer in the parent (rx...
CVE-2026-45997
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:55:51
- Zuletzt bearbeitet 16.06.2026 13:41:25
In the Linux kernel, the following vulnerability has been resolved: scsi: sd: fix missing put_disk() when device_add(&disk_dev) fails If device_add(&sdkp->disk_dev) fails, put_device() runs scsi_disk_release(), which frees the scsi_disk but leaves ...
CVE-2026-45996
- EPSS 0.14%
- Veröffentlicht 27.05.2026 12:55:50
- Zuletzt bearbeitet 16.06.2026 13:44:45
In the Linux kernel, the following vulnerability has been resolved: spi: imx: fix use-after-free on unbind The SPI subsystem frees the controller and any subsystem allocated driver data as part of deregistration (unless the allocation is device man...
CVE-2026-45995
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:55:48
- Zuletzt bearbeitet 16.06.2026 13:46:03
In the Linux kernel, the following vulnerability has been resolved: io_uring/zcrx: fix user_struct uaf io_free_rbuf_ring() usees a struct user_struct, which io_zcrx_ifq_free() puts it down before destroying the ring.
CVE-2026-45994
- EPSS 0.14%
- Veröffentlicht 27.05.2026 12:55:47
- Zuletzt bearbeitet 16.06.2026 13:47:38
In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix OOB reads in command_file_write due to missing size checks The command_file_write() handler allocates a kernel buffer of exactly count bytes and copies user data into i...
CVE-2026-45993
- EPSS 0.13%
- Veröffentlicht 27.05.2026 12:55:46
- Zuletzt bearbeitet 16.06.2026 13:48:45
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Add spectre boundry for syscall dispatch table The LoongArch syscall number is directly controlled by userspace, but does not have a array_index_nospec() boundry to prev...
CVE-2026-45991
- EPSS 0.17%
- Veröffentlicht 27.05.2026 12:55:43
- Zuletzt bearbeitet 16.06.2026 13:50:27
In the Linux kernel, the following vulnerability has been resolved: udf: fix partition descriptor append bookkeeping Mounting a crafted UDF image with repeated partition descriptors can trigger a heap out-of-bounds write in part_descs_loc[]. handl...
CVE-2026-45990
- EPSS 0.13%
- Veröffentlicht 27.05.2026 12:55:42
- Zuletzt bearbeitet 16.06.2026 13:51:27
In the Linux kernel, the following vulnerability has been resolved: slub: fix data loss and overflow in krealloc() Commit 2cd8231796b5 ("mm/slub: allow to set node and align in k[v]realloc") introduced the ability to force a reallocation if the ori...