CVE-2026-23145
- EPSS 0.12%
- Veröffentlicht 14.02.2026 15:36:10
- Zuletzt bearbeitet 17.03.2026 21:13:17
In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4_xattr_inode_update_ref The error branch for ext4_xattr_inode_update_ref forget to release the refcount for iloc.bh. Find this when review code.
CVE-2026-23141
- EPSS 0.12%
- Veröffentlicht 14.02.2026 15:36:07
- Zuletzt bearbeitet 01.06.2026 17:16:44
In the Linux kernel, the following vulnerability has been resolved: btrfs: send: check for inline extents in range_is_hole_in_parent() Before accessing the disk_bytenr field of a file extent item we need to check if we are dealing with an inline ex...
CVE-2025-71202
- EPSS 0.11%
- Veröffentlicht 14.02.2026 15:36:06
- Zuletzt bearbeitet 17.03.2026 21:16:48
In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This inter...
CVE-2026-23138
- EPSS 0.12%
- Veröffentlicht 14.02.2026 15:22:23
- Zuletzt bearbeitet 25.03.2026 11:16:19
In the Linux kernel, the following vulnerability has been resolved: tracing: Add recursion protection in kernel stack trace recording A bug was reported about an infinite recursion caused by tracing the rcu events with the kernel stack trace trigge...
CVE-2026-23137
- EPSS 0.11%
- Veröffentlicht 14.02.2026 15:22:22
- Zuletzt bearbeitet 17.03.2026 21:15:45
In the Linux kernel, the following vulnerability has been resolved: of: unittest: Fix memory leak in unittest_data_add() In unittest_data_add(), if of_resolve_phandles() fails, the allocated unittest_data is not freed, leading to a memory leak. Fi...
CVE-2026-23128
- EPSS 0.11%
- Veröffentlicht 14.02.2026 15:16:08
- Zuletzt bearbeitet 18.03.2026 14:46:26
In the Linux kernel, the following vulnerability has been resolved: arm64: Set __nocfi on swsusp_arch_resume() A DABT is reported[1] on an android based system when resume from hiberate. This happens because swsusp_arch_suspend_exit() is marked wit...
CVE-2026-23119
- EPSS 0.11%
- Veröffentlicht 14.02.2026 15:16:07
- Zuletzt bearbeitet 18.03.2026 13:39:51
In the Linux kernel, the following vulnerability has been resolved: bonding: provide a net pointer to __skb_flow_dissect() After 3cbf4ffba5ee ("net: plumb network namespace into __skb_flow_dissect") we have to provide a net pointer to __skb_flow_di...
CVE-2026-23120
- EPSS 0.11%
- Veröffentlicht 14.02.2026 15:16:07
- Zuletzt bearbeitet 18.03.2026 13:39:35
In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tp_tunnel_del_work() We should read sk->sk_socket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-...
CVE-2026-23121
- EPSS 0.12%
- Veröffentlicht 14.02.2026 15:16:07
- Zuletzt bearbeitet 18.03.2026 13:39:23
In the Linux kernel, the following vulnerability has been resolved: mISDN: annotate data-race around dev->work dev->work can re read locklessly in mISDN_read() and mISDN_poll(). Add READ_ONCE()/WRITE_ONCE() annotations. BUG: KCSAN: data-race in mI...
CVE-2026-23124
- EPSS 0.11%
- Veröffentlicht 14.02.2026 15:16:07
- Zuletzt bearbeitet 18.03.2026 14:50:31
In the Linux kernel, the following vulnerability has been resolved: ipv6: annotate data-race in ndisc_router_discovery() syzbot found that ndisc_router_discovery() could read and write in6_dev->ra_mtu without holding a lock [1] This looks fine, IF...