CVE-2026-23428
- EPSS 0.33%
- Veröffentlicht 03.04.2026 15:15:14
- Zuletzt bearbeitet 27.04.2026 14:16:32
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of share_conf in compound request smb2_get_ksmbd_tcon() reuses work->tcon in compound requests without validating tcon->t_state. ksmbd_tree_conn_lookup() ...
CVE-2026-23426
- EPSS 0.12%
- Veröffentlicht 03.04.2026 13:24:34
- Zuletzt bearbeitet 23.04.2026 21:04:06
In the Linux kernel, the following vulnerability has been resolved: drm/logicvc: Fix device node reference leak in logicvc_drm_config_parse() The logicvc_drm_config_parse() function calls of_get_child_by_name() to find the "layers" node but fails t...
CVE-2026-23420
- EPSS 0.09%
- Veröffentlicht 03.04.2026 13:24:29
- Zuletzt bearbeitet 24.04.2026 15:21:23
In the Linux kernel, the following vulnerability has been resolved: wifi: wlcore: Fix a locking bug Make sure that wl->mutex is locked before it is unlocked. This has been detected by the Clang thread-safety analyzer.
CVE-2026-23419
- EPSS 0.18%
- Veröffentlicht 03.04.2026 13:24:23
- Zuletzt bearbeitet 27.04.2026 14:16:31
In the Linux kernel, the following vulnerability has been resolved: net/rds: Fix circular locking dependency in rds_tcp_tune syzbot reported a circular locking dependency in rds_tcp_tune() where sk_net_refcnt_upgrade() is called while holding the s...
CVE-2026-23418
- EPSS 0.11%
- Veröffentlicht 03.04.2026 13:24:22
- Zuletzt bearbeitet 24.04.2026 15:21:40
In the Linux kernel, the following vulnerability has been resolved: drm/xe/reg_sr: Fix leak on xa_store failure Free the newly allocated entry when xa_store() fails to avoid a memory leak on the error path. v2: use goto fail_free. (Bala) (cherry ...
CVE-2026-23414
- EPSS 0.24%
- Veröffentlicht 02.04.2026 11:40:55
- Zuletzt bearbeitet 27.04.2026 14:16:31
In the Linux kernel, the following vulnerability has been resolved: tls: Purge async_hold in tls_decrypt_async_wait() The async_hold queue pins encrypted input skbs while the AEAD engine references their scatterlist data. Once tls_decrypt_async_wai...
CVE-2026-23413
- EPSS 0.12%
- Veröffentlicht 02.04.2026 11:40:54
- Zuletzt bearbeitet 27.04.2026 14:16:31
In the Linux kernel, the following vulnerability has been resolved: clsact: Fix use-after-free in init/destroy rollback asymmetry Fix a use-after-free in the clsact qdisc upon init/destroy rollback asymmetry. The latter is achieved by first fully i...
CVE-2026-23412
- EPSS 0.12%
- Veröffentlicht 02.04.2026 11:40:53
- Zuletzt bearbeitet 27.04.2026 14:16:31
In the Linux kernel, the following vulnerability has been resolved: netfilter: bpf: defer hook memory release until rcu readers are done Yiming Qian reports UaF when concurrent process is dumping hooks via nfnetlink_hooks: BUG: KASAN: slab-use-aft...
CVE-2026-23410
- EPSS 0.14%
- Veröffentlicht 01.04.2026 08:36:39
- Zuletzt bearbeitet 24.04.2026 15:23:43
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix race on rawdata dereference There is a race condition that leads to a use-after-free situation: because the rawdata inodes are not refcounted, an attacker can start o...
CVE-2026-23411
- EPSS 0.15%
- Veröffentlicht 01.04.2026 08:36:39
- Zuletzt bearbeitet 24.04.2026 15:23:12
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix race between freeing data and fs accessing it AppArmor was putting the reference to i_private data on its end after removing the original entry from the file system. ...