CVE-2026-43457
- EPSS 0.11%
- Veröffentlicht 08.05.2026 14:22:20
- Zuletzt bearbeitet 21.05.2026 16:50:46
In the Linux kernel, the following vulnerability has been resolved: mctp: i2c: fix skb memory leak in receive path When 'midev->allow_rx' is false, the newly allocated skb isn't consumed by netif_rx(), it needs to free the skb directly.
CVE-2026-43455
- EPSS 0.11%
- Veröffentlicht 08.05.2026 14:22:19
- Zuletzt bearbeitet 20.05.2026 18:04:20
In the Linux kernel, the following vulnerability has been resolved: mctp: route: hold key->lock in mctp_flow_prepare_output() mctp_flow_prepare_output() checks key->dev and may call mctp_dev_set_key(), but it does not hold key->lock while doing so....
CVE-2026-43453
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:22:18
- Zuletzt bearbeitet 21.05.2026 16:52:05
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: fix stack out-of-bounds read in pipapo_drop() pipapo_drop() passes rulemap[i + 1].n to pipapo_unmap() as the to_offset argument on every iteration, inclu...
CVE-2026-43454
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:22:18
- Zuletzt bearbeitet 20.05.2026 18:04:47
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix for duplicate device in netdev hooks When handling NETDEV_REGISTER notification, duplicate device registration must be avoided since the device may have b...
CVE-2026-43452
- EPSS 0.44%
- Veröffentlicht 08.05.2026 14:22:17
- Zuletzt bearbeitet 21.05.2026 16:54:50
In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: guard option walkers against 1-byte tail reads When the last byte of options is a non-single-byte option kind, walkers that advance with i += op[i + 1] ? : 1 c...
CVE-2026-43451
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:22:16
- Zuletzt bearbeitet 21.05.2026 16:55:59
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: fix entry leak in bridge verdict error path nfqnl_recv_verdict() calls find_dequeue_entry() to remove the queue entry from the queue data structures, ta...
CVE-2026-43449
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:22:15
- Zuletzt bearbeitet 21.05.2026 16:59:20
In the Linux kernel, the following vulnerability has been resolved: nvme-pci: Fix slab-out-of-bounds in nvme_dbbuf_set dev->online_queues is a count incremented in nvme_init_queue. Thus, valid indices are 0 through dev->online_queues − 1. This pat...
CVE-2026-43450
- EPSS 0.13%
- Veröffentlicht 08.05.2026 14:22:15
- Zuletzt bearbeitet 21.05.2026 16:57:23
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() nfnl_cthelper_dump_table() has a 'goto restart' that jumps to a label inside the for loop body. When the ...
CVE-2026-43448
- EPSS 0.09%
- Veröffentlicht 08.05.2026 14:22:14
- Zuletzt bearbeitet 21.05.2026 17:00:53
In the Linux kernel, the following vulnerability has been resolved: nvme-pci: Fix race bug in nvme_poll_irqdisable() In the following scenario, pdev can be disabled between (1) and (3) by (2). This sets pdev->msix_enabled = 0. Then, pci_irq_vector(...
CVE-2026-43446
- EPSS 0.09%
- Veröffentlicht 08.05.2026 14:22:13
- Zuletzt bearbeitet 21.05.2026 17:03:45
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix runtime suspend deadlock when there is pending job The runtime suspend callback drains the running job workqueue before suspending the device. If a job is still ...