CVE-2026-45850
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:15:21
- Zuletzt bearbeitet 25.06.2026 21:03:27
In the Linux kernel, the following vulnerability has been resolved: ipvs: skip ipv6 extension headers for csum checks Protocol checksum validation fails for IPv6 if there are extension headers before the protocol header. iph->len already contains i...
CVE-2026-45848
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:15:12
- Zuletzt bearbeitet 25.06.2026 21:03:46
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix NULL sock in aa_sock_file_perm Deal with the potential that sock and sock-sk can be NULL during socket setup or teardown. This could lead to an oops. The fix for NULL...
CVE-2026-45847
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:15:07
- Zuletzt bearbeitet 25.06.2026 21:03:49
In the Linux kernel, the following vulnerability has been resolved: net: remove WARN_ON_ONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARN_ON_ONCE if userspace manages t...
CVE-2025-71305
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:14:55
- Zuletzt bearbeitet 25.06.2026 21:04:37
In the Linux kernel, the following vulnerability has been resolved: drm/display/dp_mst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayed_destro...
CVE-2025-71304
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:14:53
- Zuletzt bearbeitet 25.06.2026 21:04:41
In the Linux kernel, the following vulnerability has been resolved: smack: /smack/doi: accept previously used values Writing to /smack/doi a value that has ever been written there in the past disables networking for non-ambient labels. E.g. # ...
CVE-2026-45846
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:52
- Zuletzt bearbeitet 25.06.2026 21:04:57
In the Linux kernel, the following vulnerability has been resolved: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst() bareudp_fill_metadata_dst() passes bareudp->sock to udp_tunnel6_dst_lookup() in the IPv6 path without a NULL ch...
CVE-2026-45844
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:47
- Zuletzt bearbeitet 26.06.2026 18:42:59
In the Linux kernel, the following vulnerability has been resolved: netfilter: arp_tables: fix IEEE1394 ARP payload parsing Weiming Shi says: "arp_packet_match() unconditionally parses the ARP payload assuming two hardware addresses are present (s...
CVE-2026-45843
- EPSS 0.28%
- Veröffentlicht 27.05.2026 09:24:45
- Zuletzt bearbeitet 26.06.2026 18:49:23
In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length slhc_uncompress() parses a VJ-compressed TCP header by advancing a pointer through the packet via decode() and pull1...
CVE-2026-45842
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:42
- Zuletzt bearbeitet 26.06.2026 18:51:05
In the Linux kernel, the following vulnerability has been resolved: slip: reject VJ receive packets on instances with no rstate array slhc_init() accepts rslots == 0 as a valid configuration, with the documented meaning of 'no receive compression'....
CVE-2026-45841
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:40
- Zuletzt bearbeitet 26.06.2026 18:52:56
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO nf_osf_match_one() computes ctx->window % f->wss.val in the OSF_WSS_MODULO branch with no guard for f->wss.val == 0. ...