CVE-2026-43495
- EPSS 0.27%
- Veröffentlicht 21.05.2026 12:12:45
- Zuletzt bearbeitet 26.06.2026 17:29:15
In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: validate port_count against message length in t7xx_port_enum_msg_handler t7xx_port_enum_msg_handler() uses the modem-supplied port_count field as a loop bound over...
CVE-2026-43494
- EPSS 0.27%
- Veröffentlicht 21.05.2026 10:49:21
- Zuletzt bearbeitet 30.06.2026 03:19:46
In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page pin fails When iov_iter_get_pages2() fails in rds_message_zcopy_from_user(), the pinned pages are released with put_page(), and rm->data....
CVE-2026-43493
- EPSS 0.55%
- Veröffentlicht 19.05.2026 10:44:25
- Zuletzt bearbeitet 26.06.2026 17:30:15
In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKLOG requests MAY_BACKLOG requests can return EBUSY. Handle them by checking for that value and filtering out EINPROGRESS notifications.
CVE-2026-43492
- EPSS 0.15%
- Veröffentlicht 19.05.2026 10:44:24
- Zuletzt bearbeitet 26.06.2026 17:30:39
In the Linux kernel, the following vulnerability has been resolved: lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl() Yiming reports an integer underflow in mpi_read_raw_from_sgl() when subtracting "lzeros" from the unsigned "nbytes...
CVE-2026-43491
- EPSS 0.14%
- Veröffentlicht 19.05.2026 10:44:23
- Zuletzt bearbeitet 26.06.2026 19:14:15
In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the maximum server registration per node Current code does no bound checking on the number of servers added per node. A malicious client can flood NEW_SERVER m...
CVE-2026-46333
- EPSS 1.38%
- Veröffentlicht 15.05.2026 12:58:44
- Zuletzt bearbeitet 01.07.2026 13:17:36
In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' logic The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it can core dump or n...
CVE-2026-43490
- EPSS 0.41%
- Veröffentlicht 15.05.2026 05:15:37
- Zuletzt bearbeitet 26.06.2026 19:16:00
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate inherited ACE SID length smb_inherit_dacl() walks the parent directory DACL loaded from the security descriptor xattr. It verifies that each ACE contains the fixed ...
CVE-2025-54518
- EPSS 0.26%
- Veröffentlicht 15.05.2026 03:06:30
- Zuletzt bearbeitet 30.06.2026 03:16:52
Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.
CVE-2026-43488
- EPSS 0.11%
- Veröffentlicht 13.05.2026 15:08:33
- Zuletzt bearbeitet 26.06.2026 19:23:22
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Prevent interrupt storm on host controller error (HCE) The xHCI controller reports a Host Controller Error (HCE) in UAS Storage Device plug/unplug scenarios on Android d...
CVE-2026-43489
- EPSS 0.1%
- Veröffentlicht 13.05.2026 15:08:33
- Zuletzt bearbeitet 26.06.2026 19:16:26
In the Linux kernel, the following vulnerability has been resolved: liveupdate: luo_file: remember retrieve() status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple...