CVE-2026-31433
- EPSS 0.6%
- Veröffentlicht 22.04.2026 08:15:11
- Zuletzt bearbeitet 27.04.2026 14:16:38
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in get_file_all_info() for compound requests When a compound request consists of QUERY_DIRECTORY + QUERY_INFO (FILE_ALL_INFORMATION) and the first command ...
- EPSS 96.27%
- Veröffentlicht 22.04.2026 08:15:10
- Zuletzt bearbeitet 01.07.2026 17:30:58
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-pl...
CVE-2026-31432
- EPSS 0.51%
- Veröffentlicht 22.04.2026 08:15:10
- Zuletzt bearbeitet 21.05.2026 17:28:57
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERY_INFO for compound requests When a compound request such as READ + QUERY_INFO(Security) is received, and the first command (READ) consumes most of the ...
CVE-2026-31429
- EPSS 0.26%
- Veröffentlicht 20.04.2026 09:43:03
- Zuletzt bearbeitet 20.05.2026 19:23:01
In the Linux kernel, the following vulnerability has been resolved: net: skb: fix cross-cache free of KFENCE-allocated skb head SKB_SMALL_HEAD_CACHE_SIZE is intentionally set to a non-power-of-2 value (e.g. 704 on x86_64) to avoid collisions with g...
CVE-2026-31430
- EPSS 0.08%
- Veröffentlicht 20.04.2026 09:43:03
- Zuletzt bearbeitet 21.05.2026 15:28:28
In the Linux kernel, the following vulnerability has been resolved: X.509: Fix out-of-bounds access when parsing extensions Leo reports an out-of-bounds access when parsing a certificate with empty Basic Constraints or Key Usage extension because t...
CVE-2023-20585
- EPSS 0.1%
- Veröffentlicht 16.04.2026 18:42:28
- Zuletzt bearbeitet 17.04.2026 15:14:05
Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity.
CVE-2026-31427
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:27:17
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp process_sdp() declares union nf_inet_addr rtp_addr on the stack and passes it to the nf_nat_sip sdp_se...
CVE-2026-31428
- EPSS 0.12%
- Veröffentlicht 13.04.2026 13:40:30
- Zuletzt bearbeitet 20.05.2026 19:24:58
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD __build_packet_message() manually constructs the NFULA_PAYLOAD netlink attribute using skb_put() and skb_c...
- EPSS 0.11%
- Veröffentlicht 13.04.2026 13:40:29
- Zuletzt bearbeitet 20.05.2026 17:55:22
In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() When ec_install_handlers() returns -EPROBE_DEFER on reduced-hardware platforms, it has already started the EC and in...
CVE-2026-31425
- EPSS 0.11%
- Veröffentlicht 13.04.2026 13:40:28
- Zuletzt bearbeitet 20.05.2026 17:56:52
In the Linux kernel, the following vulnerability has been resolved: rds: ib: reject FRMR registration before IB connection is established rds_ib_get_mr() extracts the rds_ib_connection from conn->c_transport_data and passes it to rds_ib_reg_frmr() ...