CVE-2026-31657
- EPSS 0.4%
- Veröffentlicht 24.04.2026 14:45:08
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadv_bla_add_claim() can replace claim->backbone_gw and drop the old gateway's last reference while readers still follow the...
CVE-2026-31656
- EPSS 0.12%
- Veröffentlicht 24.04.2026 14:45:07
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat A use-after-free / refcount underflow is possible when the heartbeat worker and intel_engine_park_heartbeat() rac...
CVE-2026-31651
- EPSS 0.11%
- Veröffentlicht 24.04.2026 14:45:03
- Zuletzt bearbeitet 27.04.2026 20:14:45
In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix NULL-deref on disconnect Make sure to deregister the controller before dropping the reference to the driver data on disconnect to avoid NULL-pointer dereferences o...
CVE-2026-31649
- EPSS 0.41%
- Veröffentlicht 24.04.2026 14:45:02
- Zuletzt bearbeitet 27.04.2026 20:13:49
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chain mode The jumbo_frm() chain-mode implementation unconditionally computes len = nopaged_len - bmax; where nopaged_len = skb_headlen(...
CVE-2026-31642
- EPSS 0.12%
- Veröffentlicht 24.04.2026 14:44:56
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call removal to use RCU safe deletion Fix rxrpc call removal from the rxnet->calls list to use list_del_rcu() rather than list_del_init() to prevent stuffing up reading ...
CVE-2026-31637
- EPSS 0.51%
- Veröffentlicht 24.04.2026 14:44:51
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response tickets rxkad_decrypt_ticket() decrypts the RXKAD response ticket and then parses the buffer as plaintext without checking whether crypto...
CVE-2026-31634
- EPSS 0.12%
- Veröffentlicht 24.04.2026 14:44:49
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix reference count leak in rxrpc_server_keyring() This patch fixes a reference count leak in rxrpc_server_keyring() by checking if rx->securities is already set.
CVE-2026-31630
- EPSS 0.13%
- Veröffentlicht 24.04.2026 14:44:46
- Zuletzt bearbeitet 01.06.2026 17:16:54
In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AF_RXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with "%pISpc". That is to...
CVE-2026-31628
- EPSS 0.13%
- Veröffentlicht 24.04.2026 14:42:49
- Zuletzt bearbeitet 27.04.2026 20:40:46
In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results from previous operations. Those results can be leaked by another, attack...
CVE-2026-31629
- EPSS 0.22%
- Veröffentlicht 24.04.2026 14:42:49
- Zuletzt bearbeitet 01.06.2026 17:16:53
In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCP_CLOSED checks In nfc_llcp_recv_hdlc() and nfc_llcp_recv_disc(), when the socket state is LLCP_CLOSED, the code correctly calls release_sock...