CVE-2026-43114
- EPSS 0.36%
- Veröffentlicht 06.05.2026 07:40:39
- Zuletzt bearbeitet 30.06.2026 03:19:44
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching functions are used. The test first loads a ranomly ge...
CVE-2026-43112
- EPSS 0.35%
- Veröffentlicht 06.05.2026 07:40:38
- Zuletzt bearbeitet 08.07.2026 13:16:44
In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath When cifs_sanitize_prepath is called with an empty string or a string containing only delimiters (e.g., "/"), the cur...
CVE-2026-43110
- EPSS 0.24%
- Veröffentlicht 06.05.2026 07:40:37
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: validate bsscfg indices in IF events brcmf_fweh_handle_if_event() validates the firmware-provided interface index before it touches drvr->iflist[], but it still use...
CVE-2026-43111
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:37
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccat_report_event roccat_report_event() iterates over the device->readers list without holding the readers_lock. This allows a concurrent rocca...
CVE-2026-43109
- EPSS 0.11%
- Veröffentlicht 06.05.2026 07:40:36
- Zuletzt bearbeitet 17.05.2026 16:16:16
In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_read_lock_killable(), which is a silly oversight, a...
CVE-2026-43103
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:32
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: net: lapbether: handle NETDEV_PRE_TYPE_CHANGE lapbeth_data_transmit() expects the underlying device type to be ARPHRD_ETHER. Returning NOTIFY_BAD from lapbeth_device_event() makes...
CVE-2026-43089
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:22
- Zuletzt bearbeitet 01.06.2026 17:17:02
In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_mapping() struct xfrm_usersa_id has a one-byte padding hole after the proto field, which ends up never getting set to zero before copying out to u...
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:21
- Zuletzt bearbeitet 14.05.2026 15:16:47
In the Linux kernel, the following vulnerability has been resolved: net: af_key: zero aligned sockaddr tail in PF_KEY exports PF_KEY export paths use `pfkey_sockaddr_size()` when reserving sockaddr payload space, so IPv6 addresses occupy 32 bytes o...
CVE-2026-43085
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:19
- Zuletzt bearbeitet 01.06.2026 18:14:48
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator When batching multiple NFLOG messages (inst->qlen > 1), __nfulnl_send() appends an NLMSG_DONE terminator with...
CVE-2026-43080
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:16
- Zuletzt bearbeitet 01.06.2026 17:32:26
In the Linux kernel, the following vulnerability has been resolved: l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series [1]. The actual issue is an overflow of 16-bit UDP length field, and it exists in the upstream cod...