CVE-2026-31402
- EPSS 0.49%
- Veröffentlicht 03.04.2026 15:16:05
- Zuletzt bearbeitet 08.07.2026 13:16:34
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache The NFSv4.0 replay cache uses a fixed 112-byte inline buffer (rp_ibuf[NFSD4_REPLAY_ISIZE]) to store encoded operation responses...
CVE-2026-31399
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:16:03
- Zuletzt bearbeitet 20.05.2026 12:54:51
In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if device_add() fails in nd_async_device_register(). Commit b...
CVE-2026-31400
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:16:03
- Zuletzt bearbeitet 20.05.2026 12:31:31
In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix cache_request leak in cache_release When a reader's file descriptor is closed while in the middle of reading a cache_request (rp->offset != 0), cache_release() decremen...
CVE-2026-31396
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:16:00
- Zuletzt bearbeitet 20.05.2026 13:08:34
In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via get_ts_i...
CVE-2026-31393
- EPSS 0.26%
- Veröffentlicht 03.04.2026 15:15:58
- Zuletzt bearbeitet 26.05.2026 12:56:10
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Validate L2CAP_INFO_RSP payload length before access l2cap_information_rsp() checks that cmd_len covers the fixed l2cap_info_rsp header (type + result, 4 bytes) b...
CVE-2026-31394
- EPSS 0.11%
- Veröffentlicht 03.04.2026 15:15:58
- Zuletzt bearbeitet 20.05.2026 15:08:26
In the Linux kernel, the following vulnerability has been resolved: mac80211: fix crash in ieee80211_chan_bw_change for AP_VLAN stations ieee80211_chan_bw_change() iterates all stations and accesses link->reserved.oper via sta->sdata->link[link_id]...
CVE-2026-31392
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:15:57
- Zuletzt bearbeitet 26.05.2026 12:57:56
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix krb5 mount with username option Customer reported that some of their krb5 mounts were failing against a single server as the client was trying to mount the shares ...
CVE-2026-31391
- EPSS 0.11%
- Veröffentlicht 03.04.2026 15:15:56
- Zuletzt bearbeitet 26.05.2026 12:59:33
In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-sha204a - Fix OOM ->tfm_count leak If memory allocation fails, decrement ->tfm_count to avoid blocking future reads.
CVE-2026-31389
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:15:55
- Zuletzt bearbeitet 20.05.2026 15:12:39
In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free on controller registration failure Make sure to deregister from driver core also in the unlikely event that per-cpu statistics allocation fails during contr...
CVE-2026-23475
- EPSS 0.12%
- Veröffentlicht 03.04.2026 15:15:54
- Zuletzt bearbeitet 20.05.2026 15:14:29
In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where acces...