CVE-2026-43492
- EPSS 0.15%
- Veröffentlicht 19.05.2026 10:44:24
- Zuletzt bearbeitet 26.06.2026 17:30:39
In the Linux kernel, the following vulnerability has been resolved: lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl() Yiming reports an integer underflow in mpi_read_raw_from_sgl() when subtracting "lzeros" from the unsigned "nbytes...
CVE-2026-43491
- EPSS 0.14%
- Veröffentlicht 19.05.2026 10:44:23
- Zuletzt bearbeitet 26.06.2026 19:14:15
In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the maximum server registration per node Current code does no bound checking on the number of servers added per node. A malicious client can flood NEW_SERVER m...
CVE-2026-46333
- EPSS 1.38%
- Veröffentlicht 15.05.2026 12:58:44
- Zuletzt bearbeitet 01.07.2026 13:17:36
In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' logic The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it can core dump or n...
CVE-2026-43490
- EPSS 0.41%
- Veröffentlicht 15.05.2026 05:15:37
- Zuletzt bearbeitet 26.06.2026 19:16:00
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate inherited ACE SID length smb_inherit_dacl() walks the parent directory DACL loaded from the security descriptor xattr. It verifies that each ACE contains the fixed ...
CVE-2025-54518
- EPSS 0.26%
- Veröffentlicht 15.05.2026 03:06:30
- Zuletzt bearbeitet 30.06.2026 03:16:52
Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.
CVE-2026-43488
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:33
- Zuletzt bearbeitet 26.06.2026 19:23:22
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Prevent interrupt storm on host controller error (HCE) The xHCI controller reports a Host Controller Error (HCE) in UAS Storage Device plug/unplug scenarios on Android d...
CVE-2026-43489
- EPSS 0.1%
- Veröffentlicht 13.05.2026 15:08:33
- Zuletzt bearbeitet 26.06.2026 19:16:26
In the Linux kernel, the following vulnerability has been resolved: liveupdate: luo_file: remember retrieve() status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple...
CVE-2026-43486
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:32
- Zuletzt bearbeitet 26.06.2026 19:23:45
In the Linux kernel, the following vulnerability has been resolved: arm64: contpte: fix set_access_flags() no-op check for SMMU/ATS faults contpte_ptep_set_access_flags() compared the gathered ptep_get() value against the requested entry to detect ...
CVE-2026-43487
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:32
- Zuletzt bearbeitet 26.06.2026 19:23:33
In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. The drive belongs to th...
CVE-2026-43485
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:31
- Zuletzt bearbeitet 26.06.2026 19:26:24
In the Linux kernel, the following vulnerability has been resolved: nouveau/gsp: drop WARN_ON in ACPI probes These WARN_ONs seem to trigger a lot, and we don't seem to have a plan to fix them, so just drop them, as they are most likely harmless.