CVE-2026-23455
- EPSS 0.51%
- Veröffentlicht 03.04.2026 15:15:36
- Zuletzt bearbeitet 26.05.2026 14:43:03
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() In DecodeQ931(), the UserUserIE code path reads a 16-bit length from the packet, then decrements it by 1 to skip...
CVE-2026-23452
- EPSS 0.09%
- Veröffentlicht 03.04.2026 15:15:34
- Zuletzt bearbeitet 26.05.2026 14:52:12
In the Linux kernel, the following vulnerability has been resolved: PM: runtime: Fix a race condition related to device removal The following code in pm_runtime_work() may dereference the dev->parent pointer after the parent device has been freed: ...
CVE-2026-23448
- EPSS 0.13%
- Veröffentlicht 03.04.2026 15:15:31
- Zuletzt bearbeitet 21.05.2026 00:44:10
In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc_ncm: add ndpoffset to NDP16 nframes bounds check cdc_ncm_rx_verify_ndp16() validates that the NDP header and its DPE entries fit within the skb. The first check corre...
CVE-2026-23444
- EPSS 0.13%
- Veröffentlicht 03.04.2026 15:15:28
- Zuletzt bearbeitet 01.06.2026 17:16:46
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure ieee80211_tx_prepare_skb() has three error paths, but only two of them free the skb. The first error path (iee...
CVE-2026-23439
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:15:23
- Zuletzt bearbeitet 23.04.2026 20:59:18
In the Linux kernel, the following vulnerability has been resolved: udp_tunnel: fix NULL deref caused by udp_sock_create6 when CONFIG_IPV6=n When CONFIG_IPV6 is disabled, the udp_sock_create6() function returns 0 (success) without actually creating...
CVE-2026-23404
- EPSS 0.18%
- Veröffentlicht 01.04.2026 08:36:35
- Zuletzt bearbeitet 24.04.2026 18:40:10
In the Linux kernel, the following vulnerability has been resolved: apparmor: replace recursive profile removal with iterative approach The profile removal code uses recursion when removing nested profiles, which can lead to kernel stack exhaustion...
CVE-2026-23405
- EPSS 0.18%
- Veröffentlicht 01.04.2026 08:36:35
- Zuletzt bearbeitet 24.04.2026 18:40:27
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix: limit the number of levels of policy namespaces Currently the number of policy namespaces is not bounded relying on the user namespace limit. However policy namespac...
CVE-2026-23403
- EPSS 0.18%
- Veröffentlicht 01.04.2026 08:36:34
- Zuletzt bearbeitet 24.04.2026 18:39:58
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix memory leak in verify_header The function sets `*ns = NULL` on every call, leaking the namespace string allocated in previous iterations when multiple profiles are un...
CVE-2026-23398
- EPSS 0.11%
- Veröffentlicht 26.03.2026 10:22:50
- Zuletzt bearbeitet 24.04.2026 15:17:53
In the Linux kernel, the following vulnerability has been resolved: icmp: fix NULL pointer dereference in icmp_tag_validation() icmp_tag_validation() unconditionally dereferences the result of rcu_dereference(inet_protos[proto]) without checking fo...
CVE-2026-23396
- EPSS 0.11%
- Veröffentlicht 26.03.2026 10:22:49
- Zuletzt bearbeitet 24.04.2026 15:18:27
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL deref in mesh_matches_local() mesh_matches_local() unconditionally dereferences ie->mesh_config to compare mesh configuration parameters. When called from ...