CVE-2026-43426
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:21:59
- Zuletzt bearbeitet 20.05.2026 18:32:36
In the Linux kernel, the following vulnerability has been resolved: usb: renesas_usbhs: fix use-after-free in ISR during device removal In usbhs_remove(), the driver frees resources (including the pipe array) while the interrupt handler (usbhs_inte...
CVE-2026-43424
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:58
- Zuletzt bearbeitet 20.05.2026 18:37:33
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_tcm: Fix NULL pointer dereferences in nexus handling The `tpg->tpg_nexus` pointer in the USB Target driver is dynamically managed and tied to userspace configuration...
- EPSS 0.02%
- Veröffentlicht 08.05.2026 14:21:57
- Zuletzt bearbeitet 12.05.2026 14:10:27
In the Linux kernel, the following vulnerability has been resolved: usb: legacy: ncm: Fix NPE in gncm_bind Commit 56a512a9b410 ("usb: gadget: f_ncm: align net_device lifecycle with bind/unbind") deferred the allocation of the net_device. This chang...
- EPSS 0.01%
- Veröffentlicht 08.05.2026 14:21:57
- Zuletzt bearbeitet 12.05.2026 14:10:27
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_ncm: Fix atomic context locking issue The ncm_set_alt function was holding a mutex to protect against races with configfs, which invokes the might-sleep function ins...
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:56
- Zuletzt bearbeitet 12.05.2026 14:10:27
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_ncm: Fix net_device lifecycle with device_move The network device outlived its parent gadget device during disconnection, resulting in dangling sysfs links and null ...
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:55
- Zuletzt bearbeitet 12.05.2026 14:10:27
In the Linux kernel, the following vulnerability has been resolved: ceph: fix memory leaks in ceph_mdsc_build_path() Add __putname() calls to error code paths that did not free the "path" pointer obtained by __getname(). If ownership of this point...
- EPSS 0.09%
- Veröffentlicht 08.05.2026 14:21:55
- Zuletzt bearbeitet 12.05.2026 14:10:27
In the Linux kernel, the following vulnerability has been resolved: ceph: fix i_nlink underrun during async unlink During async unlink, we drop the `i_nlink` counter before we receive the completion (that will eventually update the `i_nlink`) becau...
- EPSS 0.11%
- Veröffentlicht 08.05.2026 14:21:54
- Zuletzt bearbeitet 12.05.2026 14:10:27
In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Prevent CID stalls due to concurrent forks A newly forked task is accounted as MMCID user before the task is visible in the process' thread list and the global task li...
- EPSS 0.11%
- Veröffentlicht 08.05.2026 14:21:53
- Zuletzt bearbeitet 12.05.2026 14:10:27
In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Handle vfork()/CLONE_VM correctly Matthieu and Jiri reported stalls where a task endlessly loops in mm_get_cid() when scheduling in. It turned out that the logic whic...
CVE-2026-43415
- EPSS 0.09%
- Veröffentlicht 08.05.2026 14:21:52
- Zuletzt bearbeitet 21.05.2026 18:08:58
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix SError in ufshcd_rtc_work() during UFS suspend In __ufshcd_wl_suspend(), cancel_delayed_work_sync() is called to cancel the UFS RTC work, but it is placed afte...