CVE-2026-23324
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:17
- Zuletzt bearbeitet 23.04.2026 21:05:15
In the Linux kernel, the following vulnerability has been resolved: can: usb: etas_es58x: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it othe...
CVE-2026-23318
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:12
- Zuletzt bearbeitet 23.04.2026 21:05:42
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Use correct version for UAC3 header validation The entry of the validators table for UAC3 AC header descriptor is defined with the wrong protocol version UAC_VERSI...
CVE-2026-23315
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:10
- Zuletzt bearbeitet 23.04.2026 21:06:57
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix possible oob access in mt76_connac2_mac_write_txwi_80211() Check frame length before accessing the mgmt fields in mt76_connac2_mac_write_txwi_80211 in order to avoi...
CVE-2026-23312
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:07
- Zuletzt bearbeitet 26.05.2026 15:02:57
In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it ...
CVE-2026-23310
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:05
- Zuletzt bearbeitet 28.05.2026 14:20:22
In the Linux kernel, the following vulnerability has been resolved: bpf/bonding: reject vlan+srcmac xmit_hash_policy change when XDP is loaded bond_option_mode_set() already rejects mode changes that would make a loaded XDP program incompatible via...
CVE-2026-23307
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:02
- Zuletzt bearbeitet 28.05.2026 14:28:13
In the Linux kernel, the following vulnerability has been resolved: can: ems_usb: ems_usb_read_bulk_callback(): check the proper length of a message When looking at the data in a USB urb, the actual_length is the size of the buffer passed to the dr...
CVE-2026-23304
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:59
- Zuletzt bearbeitet 28.05.2026 14:34:35
In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6_rt_get_dev_rcu() l3mdev_master_dev_rcu() can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, ...
CVE-2026-23303
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:58
- Zuletzt bearbeitet 28.05.2026 14:40:06
In the Linux kernel, the following vulnerability has been resolved: smb: client: Don't log plaintext credentials in cifs_set_cifscreds When debug logging is enabled, cifs_set_cifscreds() logs the key payload and exposes the plaintext username and p...
CVE-2026-23302
- EPSS 0.09%
- Veröffentlicht 25.03.2026 10:26:57
- Zuletzt bearbeitet 04.07.2026 12:16:54
In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk->sk_{data_ready,write_space} skmsg (and probably other layers) are changing these pointers while other cpus might read them concurrently. Add co...
CVE-2026-23300
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:26:56
- Zuletzt bearbeitet 28.05.2026 14:46:05
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop When a standalone IPv6 nexthop object is created with a loopback device (e.g., "ip -6 nexthop add id 100 dev l...