CVE-2026-46118
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:33
- Zuletzt bearbeitet 24.06.2026 16:59:50
In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix null ptr deref in papr_hvpipe_dev_create_handle() commit 6d3789d347a7 ("papr-hvpipe: convert papr_hvpipe_dev_create_handle() to FD_PREPARE()"), changed the...
CVE-2026-46116
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:30
- Zuletzt bearbeitet 07.07.2026 12:16:52
In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete KASAN reproduces a slab-use-after-free in __xfrm_state_delete()'s hlist_del_rcu calls under syzkaller load on linux...
CVE-2026-46113
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:23
- Zuletzt bearbeitet 24.06.2026 18:23:16
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp->gfn plus the SPTE index. This assumption breaks for ...
CVE-2026-46112
- EPSS 0.1%
- Veröffentlicht 28.05.2026 09:35:20
- Zuletzt bearbeitet 24.06.2026 18:25:40
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() Sashiko points out that hns_roce_qp_remove() requires the caller to hold locks. The error flow in hns_roce_create_qp_common() d...
CVE-2026-46108
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:14
- Zuletzt bearbeitet 25.06.2026 21:19:26
In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to norma...
CVE-2026-46107
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:13
- Zuletzt bearbeitet 25.06.2026 21:19:11
In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalance_children. If the internal btree node has one entry, the code tries to copy all btree ent...
CVE-2026-46103
- EPSS 0.11%
- Veröffentlicht 27.05.2026 12:59:11
- Zuletzt bearbeitet 25.06.2026 21:18:31
In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. T...
CVE-2026-46102
- EPSS 0.5%
- Veröffentlicht 27.05.2026 12:59:09
- Zuletzt bearbeitet 25.06.2026 21:18:22
In the Linux kernel, the following vulnerability has been resolved: net: strparser: fix skb_head leak in strp_abort_strp() When the stream parser is aborted, for example after a message assembly timeout, it can still hold a reference to a partially...
CVE-2026-46101
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:59:08
- Zuletzt bearbeitet 25.06.2026 21:18:10
In the Linux kernel, the following vulnerability has been resolved: netfilter: reject zero shift in nft_bitwise Reject zero shift operands for nft_bitwise left and right shift expressions during initialization. The carry propagation logic computes...
CVE-2026-46099
- EPSS 0.32%
- Veröffentlicht 27.05.2026 12:59:04
- Zuletzt bearbeitet 30.06.2026 03:20:08
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6_input_core() and rpl_input() call ip6_route_input() which sets a NOREF dst on the skb, then pass it to dst_cache_set_ip6...