CVE-2026-43091
- EPSS 0.13%
- Veröffentlicht 06.05.2026 07:40:23
- Zuletzt bearbeitet 19.05.2026 20:42:35
In the Linux kernel, the following vulnerability has been resolved: xfrm: Wait for RCU readers during policy netns exit xfrm_policy_fini() frees the policy_bydst hash tables after flushing the policy work items and deleting all policies, but it doe...
CVE-2026-43089
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:22
- Zuletzt bearbeitet 01.06.2026 17:17:02
In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_mapping() struct xfrm_usersa_id has a one-byte padding hole after the proto field, which ends up never getting set to zero before copying out to u...
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:21
- Zuletzt bearbeitet 14.05.2026 15:16:47
In the Linux kernel, the following vulnerability has been resolved: net: af_key: zero aligned sockaddr tail in PF_KEY exports PF_KEY export paths use `pfkey_sockaddr_size()` when reserving sockaddr payload space, so IPv6 addresses occupy 32 bytes o...
CVE-2026-43086
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:20
- Zuletzt bearbeitet 01.06.2026 18:16:01
In the Linux kernel, the following vulnerability has been resolved: ipvs: fix NULL deref in ip_vs_add_service error path When ip_vs_bind_scheduler() succeeds in ip_vs_add_service(), the local variable sched is set to NULL. If ip_vs_start_estimator...
CVE-2026-43084
- EPSS 0.13%
- Veröffentlicht 06.05.2026 07:40:19
- Zuletzt bearbeitet 05.06.2026 00:24:44
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: make hash table per queue Sharing a global hash table among all queues is tempting, but it can cause crash: BUG: KASAN: slab-use-after-free in nfqnl_re...
CVE-2026-43085
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:19
- Zuletzt bearbeitet 01.06.2026 18:14:48
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator When batching multiple NFLOG messages (inst->qlen > 1), __nfulnl_send() appends an NLMSG_DONE terminator with...
CVE-2026-43083
- EPSS 0.44%
- Veröffentlicht 06.05.2026 07:40:18
- Zuletzt bearbeitet 01.06.2026 17:38:57
In the Linux kernel, the following vulnerability has been resolved: net: ioam6: fix OOB and missing lock When trace->type.bit6 is set: if (trace->type.bit6) { ... queue = skb_get_tx_queue(dev, skb); qdisc = rcu_derefere...
CVE-2026-43081
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:17
- Zuletzt bearbeitet 01.06.2026 17:35:53
In the Linux kernel, the following vulnerability has been resolved: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ Fix the field masks to match the hardware layout documented in downstream GSI (GSI_V3_0_EE_n_GSI_EE_GENERIC_CMD_*). No...
CVE-2026-43082
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:17
- Zuletzt bearbeitet 01.06.2026 17:38:23
In the Linux kernel, the following vulnerability has been resolved: net: txgbe: leave space for null terminators on property_entry Lists of struct property_entry are supposed to be terminated with an empty property, this driver currently seems to b...
CVE-2026-43080
- EPSS 0.12%
- Veröffentlicht 06.05.2026 07:40:16
- Zuletzt bearbeitet 01.06.2026 17:32:26
In the Linux kernel, the following vulnerability has been resolved: l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series [1]. The actual issue is an overflow of 16-bit UDP length field, and it exists in the upstream cod...