CVE-2026-31427
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:27:17
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp process_sdp() declares union nf_inet_addr rtp_addr on the stack and passes it to the nf_nat_sip sdp_se...
CVE-2026-31428
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:24:58
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD __build_packet_message() manually constructs the NFULA_PAYLOAD netlink attribute using skb_put() and skb_c...
CVE-2026-31424
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:27
- Zuletzt bearbeitet 20.05.2026 18:01:27
In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP Weiming Shi says: xt_match and xt_target structs registered with NFPROTO_UNSPEC can be load...
CVE-2026-31423
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:26
- Zuletzt bearbeitet 20.05.2026 18:06:31
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() m2sm() converts a u32 slope to a u64 scaled value. For large inputs (e.g. m1=4000000000), the result can reach 2^32. rtsc_mi...
CVE-2026-31417
- EPSS 0.39%
- Veröffentlicht 13.04.2026 13:21:04
- Zuletzt bearbeitet 20.05.2026 19:34:29
In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix overflow when accumulating packets Add a check to ensure that `x25_sock.fraglen` does not overflow. The `fraglen` also needs to be resetted when purging `fragment_que...
CVE-2026-31415
- EPSS 0.11%
- Veröffentlicht 13.04.2026 13:21:03
- Zuletzt bearbeitet 20.05.2026 15:41:05
In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid overflows in ip6_datagram_send_ctl() Yiming Qian reported : <quote> I believe I found a locally triggerable kernel bug in the IPv6 sendmsg ancillary-data path that ca...
CVE-2026-31416
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:21:03
- Zuletzt bearbeitet 20.05.2026 15:36:14
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: account for netlink header size This is a followup to an old bug fix: NLMSG_DONE needs to account for the netlink header size, not just the attribute size...
CVE-2026-31414
- EPSS 0.38%
- Veröffentlicht 13.04.2026 13:21:02
- Zuletzt bearbeitet 20.05.2026 15:43:42
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_expect: use expect->helper Use expect->helper in ctnetlink and /proc to dump the helper name. Using nfct_help() without holding a reference to the master co...
CVE-2026-31412
- EPSS 0.17%
- Veröffentlicht 10.04.2026 10:35:05
- Zuletzt bearbeitet 20.05.2026 15:54:46
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_mass_storage: Fix potential integer overflow in check_command_size_in_blocks() The `check_command_size_in_blocks()` function calculates the data size in bytes by lef...
CVE-2026-31411
- EPSS 0.13%
- Veröffentlicht 08.04.2026 13:06:17
- Zuletzt bearbeitet 20.05.2026 16:03:38
In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() Reproducer available at [1]. The ATM send path (sendmsg -> vcc_sendmsg -> sigd_send) reads the vcc pointer from m...