CVE-2026-46122
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:37
- Zuletzt bearbeitet 24.06.2026 16:51:28
In the Linux kernel, the following vulnerability has been resolved: wifi: b43: enforce bounds check on firmware key index in b43_rx() The firmware-controlled key index in b43_rx() can exceed the dev->key[] array size (58 entries). The existing B43_...
CVE-2026-46119
- EPSS 0.53%
- Veröffentlicht 28.05.2026 09:35:34
- Zuletzt bearbeitet 24.06.2026 16:51:46
In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in auth message processing If a (potentially corrupted) message of type CEPH_MSG_AUTH_REPLY contains a positive value in its result field, it...
CVE-2026-46118
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:33
- Zuletzt bearbeitet 24.06.2026 16:59:50
In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix null ptr deref in papr_hvpipe_dev_create_handle() commit 6d3789d347a7 ("papr-hvpipe: convert papr_hvpipe_dev_create_handle() to FD_PREPARE()"), changed the...
CVE-2026-46116
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:30
- Zuletzt bearbeitet 07.07.2026 12:16:52
In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete KASAN reproduces a slab-use-after-free in __xfrm_state_delete()'s hlist_del_rcu calls under syzkaller load on linux...
CVE-2026-46113
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:23
- Zuletzt bearbeitet 24.06.2026 18:23:16
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp->gfn plus the SPTE index. This assumption breaks for ...
CVE-2026-46112
- EPSS 0.1%
- Veröffentlicht 28.05.2026 09:35:20
- Zuletzt bearbeitet 24.06.2026 18:25:40
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() Sashiko points out that hns_roce_qp_remove() requires the caller to hold locks. The error flow in hns_roce_create_qp_common() d...
CVE-2026-46108
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:14
- Zuletzt bearbeitet 25.06.2026 21:19:26
In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to norma...
CVE-2026-46107
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:13
- Zuletzt bearbeitet 25.06.2026 21:19:11
In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalance_children. If the internal btree node has one entry, the code tries to copy all btree ent...
CVE-2026-46102
- EPSS 0.5%
- Veröffentlicht 27.05.2026 12:59:09
- Zuletzt bearbeitet 25.06.2026 21:18:22
In the Linux kernel, the following vulnerability has been resolved: net: strparser: fix skb_head leak in strp_abort_strp() When the stream parser is aborted, for example after a message assembly timeout, it can still hold a reference to a partially...
CVE-2026-46099
- EPSS 0.32%
- Veröffentlicht 27.05.2026 12:59:04
- Zuletzt bearbeitet 30.06.2026 03:20:08
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6_input_core() and rpl_input() call ip6_route_input() which sets a NOREF dst on the skb, then pass it to dst_cache_set_ip6...