CVE-2026-31686
- EPSS 0.12%
- Veröffentlicht 27.04.2026 17:30:53
- Zuletzt bearbeitet 01.06.2026 17:16:55
In the Linux kernel, the following vulnerability has been resolved: mm/kasan: fix double free for kasan pXds kasan_free_pxd() assumes the page table is always struct page aligned. But that's not always the case for all architectures. E.g. In cas...
- EPSS 0.19%
- Veröffentlicht 27.04.2026 15:16:04
- Zuletzt bearbeitet 29.04.2026 04:16:38
A transient execution vulnerability within AMD CPUs may allow a local user-privileged attacker to leak data via the floating point divisor unit, potentially resulting in loss of confidentiality.
CVE-2026-31685
- EPSS 0.34%
- Veröffentlicht 25.04.2026 08:47:02
- Zuletzt bearbeitet 01.06.2026 17:16:55
In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_eui64: reject invalid MAC header for all packets `eui64_mt6()` derives a modified EUI-64 from the Ethernet source address and compares it with the low 64 bits of th...
CVE-2026-31683
- EPSS 0.12%
- Veröffentlicht 25.04.2026 08:47:00
- Zuletzt bearbeitet 06.05.2026 21:14:05
In the Linux kernel, the following vulnerability has been resolved: batman-adv: avoid OGM aggregation when skb tailroom is insufficient When OGM aggregation state is toggled at runtime, an existing forwarded packet may have been allocated with only...
CVE-2026-31681
- EPSS 0.12%
- Veröffentlicht 25.04.2026 08:46:57
- Zuletzt bearbeitet 01.06.2026 17:16:55
In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_multiport: validate range encoding in checkentry ports_match_v1() treats any non-zero pflags entry as the start of a port range and unconditionally consumes the next ...
CVE-2026-31680
- EPSS 0.12%
- Veröffentlicht 25.04.2026 08:46:56
- Zuletzt bearbeitet 06.05.2026 21:23:31
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: flowlabel: defer exclusive option free until RCU teardown `ip6fl_seq_show()` walks the global flowlabel hash under the seq-file RCU read-side lock and prints `fl->opt->o...
CVE-2026-31678
- EPSS 0.1%
- Veröffentlicht 25.04.2026 08:46:54
- Zuletzt bearbeitet 06.05.2026 21:28:02
In the Linux kernel, the following vulnerability has been resolved: openvswitch: defer tunnel netdev_put to RCU release ovs_netdev_tunnel_destroy() may run after NETDEV_UNREGISTER already detached the device. Dropping the netdev reference in destro...
CVE-2026-31676
- EPSS 0.39%
- Veröffentlicht 25.04.2026 08:46:52
- Zuletzt bearbeitet 01.06.2026 17:16:55
In the Linux kernel, the following vulnerability has been resolved: rxrpc: only handle RESPONSE during service challenge Only process RESPONSE packets while the service connection is still in RXRPC_CONN_SERVICE_CHALLENGING. Check that state under s...
CVE-2026-31675
- EPSS 0.13%
- Veröffentlicht 25.04.2026 08:46:51
- Zuletzt bearbeitet 06.05.2026 21:33:21
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_netem: fix out-of-bounds access in packet corruption In netem_enqueue(), the packet corruption logic uses get_random_u32_below(skb_headlen(skb)) to select an index f...
CVE-2026-31674
- EPSS 0.12%
- Veröffentlicht 25.04.2026 08:46:50
- Zuletzt bearbeitet 06.05.2026 21:34:51
In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() Reject rt match rules whose addrnr exceeds IP6T_RT_HOPS. rt_mt6() expects addrnr to stay within the bounds of rtinfo-...