CVE-2026-43115
- EPSS 0.1%
- Veröffentlicht 06.05.2026 07:40:40
- Zuletzt bearbeitet 08.05.2026 17:51:44
In the Linux kernel, the following vulnerability has been resolved: srcu: Use irq_work to start GP in tiny SRCU Tiny SRCU's srcu_gp_start_if_needed() directly calls schedule_work(), which acquires the workqueue pool->lock. This causes a lockdep sp...
CVE-2026-43113
- EPSS 0.25%
- Veröffentlicht 06.05.2026 07:40:39
- Zuletzt bearbeitet 01.06.2026 17:17:04
In the Linux kernel, the following vulnerability has been resolved: wifi: wl1251: validate packet IDs before indexing tx_frames wl1251_tx_packet_cb() uses the firmware completion ID directly to index the fixed 16-entry wl->tx_frames[] array. The ID...
CVE-2026-43114
- EPSS 0.36%
- Veröffentlicht 06.05.2026 07:40:39
- Zuletzt bearbeitet 30.06.2026 03:19:44
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching functions are used. The test first loads a ranomly ge...
CVE-2026-43112
- EPSS 0.35%
- Veröffentlicht 06.05.2026 07:40:38
- Zuletzt bearbeitet 08.07.2026 13:16:44
In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath When cifs_sanitize_prepath is called with an empty string or a string containing only delimiters (e.g., "/"), the cur...
CVE-2026-43110
- EPSS 0.24%
- Veröffentlicht 06.05.2026 07:40:37
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: validate bsscfg indices in IF events brcmf_fweh_handle_if_event() validates the firmware-provided interface index before it touches drvr->iflist[], but it still use...
CVE-2026-43111
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:37
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccat_report_event roccat_report_event() iterates over the device->readers list without holding the readers_lock. This allows a concurrent rocca...
CVE-2026-43109
- EPSS 0.11%
- Veröffentlicht 06.05.2026 07:40:36
- Zuletzt bearbeitet 17.05.2026 16:16:16
In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_read_lock_killable(), which is a silly oversight, a...
CVE-2026-43103
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:32
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: net: lapbether: handle NETDEV_PRE_TYPE_CHANGE lapbeth_data_transmit() expects the underlying device type to be ARPHRD_ETHER. Returning NOTIFY_BAD from lapbeth_device_event() makes...
CVE-2026-43089
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:22
- Zuletzt bearbeitet 01.06.2026 17:17:02
In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_mapping() struct xfrm_usersa_id has a one-byte padding hole after the proto field, which ends up never getting set to zero before copying out to u...
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:21
- Zuletzt bearbeitet 14.05.2026 15:16:47
In the Linux kernel, the following vulnerability has been resolved: net: af_key: zero aligned sockaddr tail in PF_KEY exports PF_KEY export paths use `pfkey_sockaddr_size()` when reserving sockaddr payload space, so IPv6 addresses occupy 32 bytes o...