- EPSS 0.13%
- Veröffentlicht 14.02.2026 16:27:02
- Zuletzt bearbeitet 25.03.2026 11:16:15
In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use array_index_nospec() to clamp this ...
CVE-2026-23169
- EPSS 0.13%
- Veröffentlicht 14.02.2026 16:15:57
- Zuletzt bearbeitet 03.04.2026 14:16:24
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs_doit() syzbot and Eulgyu Kim reported crashes in mptcp_pm_nl_get_local_id() and/or mptcp_pm_nl_is_backup() Root cause is list_splice_ini...
CVE-2026-23170
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:57
- Zuletzt bearbeitet 18.03.2026 14:57:32
In the Linux kernel, the following vulnerability has been resolved: drm/imx/tve: fix probe device leak Make sure to drop the reference taken to the DDC device during probe on probe failure (e.g. probe deferral) and on driver unbind.
CVE-2026-23171
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:57
- Zuletzt bearbeitet 17.05.2026 16:16:14
In the Linux kernel, the following vulnerability has been resolved: bonding: fix use-after-free due to enslave fail after slave array update Fix a use-after-free which happens due to enslave failure after the new slave has been added to the array. ...
CVE-2026-23164
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:56
- Zuletzt bearbeitet 18.03.2026 15:03:29
In the Linux kernel, the following vulnerability has been resolved: rocker: fix memory leak in rocker_world_port_post_fini() In rocker_world_port_pre_init(), rocker_port->wpriv is allocated with kzalloc(wops->port_priv_size, GFP_KERNEL). However, i...
CVE-2026-23167
- EPSS 0.09%
- Veröffentlicht 14.02.2026 16:15:56
- Zuletzt bearbeitet 18.03.2026 15:01:30
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix race between rfkill and nci_unregister_device(). syzbot reported the splat below [0] without a repro. It indicates that struct nci_dev.cmd_wq had been destroyed befo...
CVE-2026-23150
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:55
- Zuletzt bearbeitet 17.03.2026 21:12:01
In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame(). syzbot reported various memory leaks related to NFC, struct nfc_llcp_sock, sk_buff, nfc_dev, etc. [0] The leading log hinted th...
CVE-2026-23154
- EPSS 0.11%
- Veröffentlicht 14.02.2026 16:15:55
- Zuletzt bearbeitet 25.03.2026 11:16:19
In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment handling by properly checking the SKB_GSO_DODGY flag for frag_list GSO packets, addressing low thro...
CVE-2026-23157
- EPSS 0.13%
- Veröffentlicht 14.02.2026 16:15:55
- Zuletzt bearbeitet 01.06.2026 17:16:44
In the Linux kernel, the following vulnerability has been resolved: btrfs: do not strictly require dirty metadata threshold for metadata writepages [BUG] There is an internal report that over 1000 processes are waiting at the io_schedule_timeout() ...
CVE-2026-23146
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:54
- Zuletzt bearbeitet 17.03.2026 21:13:01
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work hci_uart_set_proto() sets HCI_UART_PROTO_INIT before calling hci_uart_register_dev(), which calls proto->open() to in...