CVE-2026-46308
- EPSS 0.12%
- Veröffentlicht 08.06.2026 15:46:36
- Zuletzt bearbeitet 08.07.2026 14:47:18
In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-after-free in scpsys_get_bus_protection_legacy() In scpsys_get_bus_protection_legacy(), of_find_node_with_property() returns a device node with its refe...
CVE-2026-46307
- EPSS 0.22%
- Veröffentlicht 08.06.2026 15:46:35
- Zuletzt bearbeitet 08.07.2026 14:47:35
In the Linux kernel, the following vulnerability has been resolved: wifi: ath5k: do not access array OOB Vincent reports: > The ath5k driver seems to do an array-index-out-of-bounds access as > shown by the UBSAN kernel message: > UBSAN: array-inde...
CVE-2026-46306
- EPSS 0.39%
- Veröffentlicht 08.06.2026 15:46:33
- Zuletzt bearbeitet 08.07.2026 14:47:47
In the Linux kernel, the following vulnerability has been resolved: flow_dissector: do not dissect PPPoE PFC frames RFC 2516 Section 7 states that Protocol Field Compression (PFC) is NOT RECOMMENDED for PPPoE. In practice, pppd does not support neg...
CVE-2026-46305
- EPSS 0.1%
- Veröffentlicht 08.06.2026 15:46:32
- Zuletzt bearbeitet 08.07.2026 14:47:58
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: os_dep: avoid NULL pointer dereference in rtw_cbuf_alloc The return value of kzalloc_flex() is used without ensuring that the allocation succeeded, and the poin...
CVE-2026-46304
- EPSS 0.39%
- Veröffentlicht 08.06.2026 15:46:31
- Zuletzt bearbeitet 08.07.2026 14:48:12
In the Linux kernel, the following vulnerability has been resolved: nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free nvmet_tcp_release_queue_work() runs on nvmet-wq and can drop the final controller reference through nvmet_cq_put(). If that...
CVE-2026-46303
- EPSS 0.28%
- Veröffentlicht 08.06.2026 15:46:30
- Zuletzt bearbeitet 08.07.2026 14:48:22
In the Linux kernel, the following vulnerability has been resolved: isofs: validate Rock Ridge CE continuation extent against volume size rock_continue() reads rs->cont_extent verbatim from the Rock Ridge CE record and passes it to sb_bread() witho...
CVE-2026-46302
- EPSS 0.1%
- Veröffentlicht 08.06.2026 15:46:29
- Zuletzt bearbeitet 08.07.2026 14:48:36
In the Linux kernel, the following vulnerability has been resolved: selinux: allow multiple opens of /sys/fs/selinux/policy Currently there can only be a single open of /sys/fs/selinux/policy at any time. This allows any process to block any other ...
CVE-2026-46301
- EPSS 0.12%
- Veröffentlicht 08.06.2026 15:46:28
- Zuletzt bearbeitet 08.07.2026 14:48:44
In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on unbind Give the driver a chance to flush its queue before releasing the DMA buffers on driver unbind
- EPSS 0.09%
- Veröffentlicht 08.06.2026 15:46:26
- Zuletzt bearbeitet 08.07.2026 14:48:53
In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplus_fill_super() hfsplus_fill_super() calls hfs_find_init() to initialize a search structure, which acquires tree->tree_lock. If the subsequent ...
CVE-2026-46298
- EPSS 0.07%
- Veröffentlicht 08.06.2026 15:46:25
- Zuletzt bearbeitet 08.07.2026 14:49:04
In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix race with interrupt handler While executing ->ioctl handler or ->release handler, if an interrupt fires on the same cpu, then we can enter into a deadlock....