CVE-2026-23248
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:10
- Zuletzt bearbeitet 21.05.2026 18:45:54
In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix refcount bug and potential UAF in perf_mmap Syzkaller reported a refcount_t: addition on 0; use-after-free warning in perf_mmap. The issue is caused by a race condi...
CVE-2026-23243
- EPSS 0.13%
- Veröffentlicht 18.03.2026 10:05:05
- Zuletzt bearbeitet 21.05.2026 15:52:23
In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_umad_write ib_umad_write computes data_len from user-controlled count and the MAD header sizes. With a mismatched user MAD header size and...
CVE-2025-71267
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:04
- Zuletzt bearbeitet 21.05.2026 18:28:40
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop triggered by zero-sized ATTR_LIST We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service (DoS) condition. A malfo...
CVE-2025-71266
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:02
- Zuletzt bearbeitet 21.05.2026 15:39:12
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: check return value of indx_find to avoid infinite loop We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service (DoS) condition. A ma...
CVE-2025-71265
- EPSS 0.12%
- Veröffentlicht 18.03.2026 10:05:01
- Zuletzt bearbeitet 20.05.2026 19:43:23
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop in attr_load_runs_range on inconsistent metadata We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service (DoS) cond...
CVE-2026-3856
- EPSS 0.15%
- Veröffentlicht 17.03.2026 22:20:14
- Zuletzt bearbeitet 19.03.2026 14:20:39
IBM Db2 Recovery Expert for Linux, UNIX and Windows 5.5 IF 2 could allow an attacker to modify or corrupt data due to an insecure mechanism used for verifying the integrity of the data during transmission.
CVE-2026-23241
- EPSS 0.13%
- Veröffentlicht 17.03.2026 09:11:04
- Zuletzt bearbeitet 20.05.2026 19:45:27
In the Linux kernel, the following vulnerability has been resolved: audit: add missing syscalls to read class The "at" variant of getxattr() and listxattr() are missing from the audit read class. Calling getxattrat() or listxattrat() on a file to r...
CVE-2025-71239
- EPSS 0.12%
- Veröffentlicht 17.03.2026 09:11:03
- Zuletzt bearbeitet 20.05.2026 19:47:56
In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2() to change attributes class fchmodat2(), introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2() to change a fi...
CVE-2024-14027
- EPSS 0.21%
- Veröffentlicht 09.03.2026 16:16:14
- Zuletzt bearbeitet 26.06.2026 20:18:19
In the Linux kernel, the following vulnerability has been resolved: fs/xattr: missing fdput() in fremovexattr error path In the Linux kernel, the fremovexattr() syscall calls fdget() to acquire a file reference but returns early without calling fdp...
CVE-2026-25702
- EPSS 0.2%
- Veröffentlicht 05.03.2026 07:16:13
- Zuletzt bearbeitet 09.03.2026 18:31:36
A Improper Access Control vulnerability in the kernel of SUSE SUSE Linux Enterprise Server 12 SP5 breaks nftables, causing firewall rules applied via nftables to not be effective.This issue affects SUSE Linux Enterprise Server: from 9e6d9d4601768c75f...