CVE-2026-43107
- EPSS 0.11%
- Veröffentlicht 06.05.2026 07:40:35
- Zuletzt bearbeitet 11.05.2026 17:30:05
In the Linux kernel, the following vulnerability has been resolved: xfrm: account XFRMA_IF_ID in aevent size calculation xfrm_get_ae() allocates the reply skb with xfrm_aevent_msgsize(), then build_aevent() appends attributes including XFRMA_IF_ID ...
CVE-2026-43104
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:33
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4_save_hang_state() encounters an early return condition, it returns without freeing the previously allocated `kernel_sta...
CVE-2026-43105
- EPSS 0.11%
- Veröffentlicht 06.05.2026 07:40:33
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix memory leak of BO array in hang state The hang state's BO array is allocated separately with kzalloc() in vc4_save_hang_state() but never freed in vc4_free_hang_state(...
CVE-2026-43103
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:32
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: net: lapbether: handle NETDEV_PRE_TYPE_CHANGE lapbeth_data_transmit() expects the underlying device type to be ARPHRD_ETHER. Returning NOTIFY_BAD from lapbeth_device_event() makes...
CVE-2026-43101
- EPSS 0.43%
- Veröffentlicht 06.05.2026 07:40:30
- Zuletzt bearbeitet 11.05.2026 17:35:21
In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() We need to check __in6_dev_get() for possible NULL value, as suggested by Yiming Qian. Also add skb_dst_de...
CVE-2026-43099
- EPSS 0.49%
- Veröffentlicht 06.05.2026 07:40:29
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: fix null-ptr-deref in icmp_build_probe() ipv6_stub->ipv6_dev_find() may return ERR_PTR(-EAFNOSUPPORT) when the IPv6 stack is not active (CONFIG_IPV6=m and not loaded), ...
CVE-2026-43098
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:28
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: nfc: s3fwrn5: allocate rx skb before consuming bytes s3fwrn82_uart_read() reports the number of accepted bytes to the serdev core. The current code consumes bytes into recv_skb and...
CVE-2026-43093
- EPSS 0.13%
- Veröffentlicht 06.05.2026 07:40:25
- Zuletzt bearbeitet 01.06.2026 17:17:02
In the Linux kernel, the following vulnerability has been resolved: xsk: tighten UMEM headroom validation to account for tailroom and min frame The current headroom validation in xdp_umem_reg() could leave us with insufficient space dedicated to ev...
CVE-2026-43094
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:25
- Zuletzt bearbeitet 01.06.2026 17:17:03
In the Linux kernel, the following vulnerability has been resolved: ixgbevf: add missing negotiate_features op to Hyper-V ops table Commit a7075f501bd3 ("ixgbevf: fix mailbox API compatibility by negotiating supported features") added the .negotiat...
CVE-2026-43092
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:24
- Zuletzt bearbeitet 19.05.2026 20:41:46
In the Linux kernel, the following vulnerability has been resolved: xsk: validate MTU against usable frame size on bind AF_XDP bind currently accepts zero-copy pool configurations without verifying that the device MTU fits into the usable frame spa...