CVE-2025-71223
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:27:06
- Zuletzt bearbeitet 18.03.2026 17:11:48
In the Linux kernel, the following vulnerability has been resolved: smb/server: fix refcount leak in smb2_open() When ksmbd_vfs_getattr() fails, the reference count of ksmbd_file must be released.
- EPSS 0.17%
- Veröffentlicht 14.02.2026 16:27:06
- Zuletzt bearbeitet 15.04.2026 14:34:27
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: ocb: skip rx_no_sta when interface is not joined ieee80211_ocb_rx_no_sta() assumes a valid channel context, which is only present after JOIN_OCB. RX may run before...
CVE-2025-71222
- EPSS 0.13%
- Veröffentlicht 14.02.2026 16:27:05
- Zuletzt bearbeitet 19.03.2026 18:05:23
In the Linux kernel, the following vulnerability has been resolved: wifi: wlcore: ensure skb headroom before skb_push This avoids occasional skb_under_panic Oops from wl1271_tx_work. In this case, headroom is less than needed (typically 110 - 94 = ...
- EPSS 0.1%
- Veröffentlicht 14.02.2026 16:27:04
- Zuletzt bearbeitet 01.06.2026 17:16:38
In the Linux kernel, the following vulnerability has been resolved: dmaengine: mmp_pdma: Fix race condition in mmp_pdma_residue() Add proper locking in mmp_pdma_residue() to prevent use-after-free when accessing descriptor list and descriptor conte...
CVE-2025-71204
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:27:03
- Zuletzt bearbeitet 18.03.2026 17:12:03
In the Linux kernel, the following vulnerability has been resolved: smb/server: fix refcount leak in parse_durable_handle_context() When the command is a replay operation and -ENOEXEC is returned, the refcount of ksmbd_file must be released.
CVE-2025-71220
- EPSS 0.13%
- Veröffentlicht 14.02.2026 16:27:03
- Zuletzt bearbeitet 19.03.2026 18:06:27
In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbd_session_rpc_close() on error path in create_smb2_pipe() When ksmbd_iov_pin_rsp() fails, we should call ksmbd_session_rpc_close().
- EPSS 0.13%
- Veröffentlicht 14.02.2026 16:27:02
- Zuletzt bearbeitet 25.03.2026 11:16:15
In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use array_index_nospec() to clamp this ...
CVE-2026-23170
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:57
- Zuletzt bearbeitet 18.03.2026 14:57:32
In the Linux kernel, the following vulnerability has been resolved: drm/imx/tve: fix probe device leak Make sure to drop the reference taken to the DDC device during probe on probe failure (e.g. probe deferral) and on driver unbind.
CVE-2026-23167
- EPSS 0.09%
- Veröffentlicht 14.02.2026 16:15:56
- Zuletzt bearbeitet 18.03.2026 15:01:30
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix race between rfkill and nci_unregister_device(). syzbot reported the splat below [0] without a repro. It indicates that struct nci_dev.cmd_wq had been destroyed befo...
CVE-2026-23150
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:55
- Zuletzt bearbeitet 17.03.2026 21:12:01
In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame(). syzbot reported various memory leaks related to NFC, struct nfc_llcp_sock, sk_buff, nfc_dev, etc. [0] The leading log hinted th...