CVE-2026-31523
- EPSS 0.09%
- Veröffentlicht 22.04.2026 14:16:52
- Zuletzt bearbeitet 28.04.2026 18:09:51
In the Linux kernel, the following vulnerability has been resolved: nvme-pci: ensure we're polling a polled queue A user can change the polled queue count at run time. There's a brief window during a reset where a hipri task may try to poll that qu...
CVE-2026-31524
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:52
- Zuletzt bearbeitet 28.04.2026 18:07:48
In the Linux kernel, the following vulnerability has been resolved: HID: asus: avoid memory leak in asus_report_fixup() The asus_report_fixup() function was returning a newly allocated kmemdup()-allocated buffer, but never freeing it. Switch to de...
CVE-2026-31519
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:51
- Zuletzt bearbeitet 28.04.2026 18:54:10
In the Linux kernel, the following vulnerability has been resolved: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create We have recently observed a number of subvolumes with broken dentries. ls-ing the parent dir looks like: drwxrwxrwt 1 roo...
CVE-2026-31520
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:51
- Zuletzt bearbeitet 28.04.2026 18:27:38
In the Linux kernel, the following vulnerability has been resolved: HID: apple: avoid memory leak in apple_report_fixup() The apple_report_fixup() function was returning a newly kmemdup()-allocated buffer, but never freeing it. The caller of repor...
CVE-2026-31521
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:51
- Zuletzt bearbeitet 28.04.2026 18:26:58
In the Linux kernel, the following vulnerability has been resolved: module: Fix kernel panic when a symbol st_shndx is out of bounds The module loader doesn't check for bounds of the ELF section index in simplify_symbols(): for (i = 1; i < ...
CVE-2026-31510
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:50
- Zuletzt bearbeitet 28.04.2026 15:01:35
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref on l2cap_sock_ready_cb Before using sk pointer, check if it is null. Fix the following: KASAN: null-ptr-deref in range [0x0000000000000260-0...
CVE-2026-31515
- EPSS 0.12%
- Veröffentlicht 22.04.2026 14:16:50
- Zuletzt bearbeitet 28.04.2026 16:20:43
In the Linux kernel, the following vulnerability has been resolved: af_key: validate families in pfkey_send_migrate() syzbot was able to trigger a crash in skb_put() [1] Issue is that pfkey_send_migrate() does not check old/new families, and that ...
CVE-2026-31504
- EPSS 0.13%
- Veröffentlicht 22.04.2026 14:16:49
- Zuletzt bearbeitet 28.04.2026 15:07:06
In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() via NETDEV_UP race `packet_release()` has a race window where `NETDEV_UP` can re-register a socket into a fanout group's `arr[]` array. The ...
CVE-2026-31509
- EPSS 0.1%
- Veröffentlicht 22.04.2026 14:16:49
- Zuletzt bearbeitet 28.04.2026 15:02:57
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix circular locking dependency in nci_close_device nci_close_device() flushes rx_wq and tx_wq while holding req_lock. This causes a circular locking dependency because n...
CVE-2026-31502
- EPSS 0.13%
- Veröffentlicht 22.04.2026 14:16:48
- Zuletzt bearbeitet 28.04.2026 14:47:01
In the Linux kernel, the following vulnerability has been resolved: team: fix header_ops type confusion with non-Ethernet ports Similar to commit 950803f72547 ("bonding: fix type confusion in bond_setup_by_slave()") team has the same class of heade...