CVE-2026-53211
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:16
- Zuletzt bearbeitet 02.07.2026 20:53:52
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_meta_bridge: fix stale stack leak via IIFHWADDR register NFT_META_BRI_IIFHWADDR declares its destination register with len = ETH_ALEN (6 bytes), which the register-i...
CVE-2026-53212
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:16
- Zuletzt bearbeitet 02.07.2026 20:53:00
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix use-after-free on object destroy nft_tunnel_obj_destroy() calls metadata_dst_free() which directly kfree()s the metadata_dst, ignoring the dst_entry refc...
CVE-2026-53210
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:15
- Zuletzt bearbeitet 02.07.2026 20:54:05
In the Linux kernel, the following vulnerability has been resolved: tee: shm: fix shm leak in register_shm_helper() register_shm_helper() allocates shm before calling iov_iter_npages(). If iov_iter_npages() returns 0, the function jumps to err_ctx_...
CVE-2026-53208
- EPSS 0.12%
- Veröffentlicht 25.06.2026 08:39:14
- Zuletzt bearbeitet 02.07.2026 20:55:04
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2cap_core.c:l2cap_sig_channel() accepts BR/EDR signaling packets up to the channel MTU and dispatches e...
CVE-2026-53209
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:14
- Zuletzt bearbeitet 02.07.2026 20:54:10
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broadcast Announcement prepend Existing advertising instances can already hold the maximum extended advertising payload. When hci_adv_bcast_an...
CVE-2026-53207
- EPSS 0.1%
- Veröffentlicht 25.06.2026 08:39:13
- Zuletzt bearbeitet 02.07.2026 20:55:07
In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix hugetlb_lock AA deadlock in get_huge_page_for_hwpoison Two concurrent madvise(MADV_HWPOISON) calls on the same hugetlb page can trigger a recursive spinlock ...
CVE-2026-53205
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:12
- Zuletzt bearbeitet 02.07.2026 20:55:24
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware log indices Add validation that read and write indices in the firmware log buffer are within valid bounds (< data_size) before using them...
CVE-2026-53206
- EPSS 0.11%
- Veröffentlicht 25.06.2026 08:39:12
- Zuletzt bearbeitet 02.07.2026 20:55:10
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds check for firmware runtime memory Validate that the firmware runtime memory specified in the image header is properly aligned and sized to hold the firmware ...
CVE-2026-53204
- EPSS 0.11%
- Veröffentlicht 25.06.2026 08:39:11
- Zuletzt bearbeitet 02.07.2026 20:55:42
In the Linux kernel, the following vulnerability has been resolved: firmware: stratix10-rsu: Fix NULL deref on rsu_send_msg() timeout in probe rsu_send_msg() can return -ETIMEDOUT when wait_for_completion_interruptible_timeout() fires while the SMC...
CVE-2026-53202
- EPSS 0.15%
- Veröffentlicht 25.06.2026 08:39:10
- Zuletzt bearbeitet 03.07.2026 13:17:28
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation in IPC receive Fix potential buffer overflow where firmware-supplied data_size is cast to signed int before being used in min_t(). Large u...