CVE-2026-23343
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:31
- Zuletzt bearbeitet 23.04.2026 21:14:13
In the Linux kernel, the following vulnerability has been resolved: xdp: produce a warning when calculated tailroom is negative Many ethernet drivers report xdp Rx queue frag size as being the same as DMA write size. However, the only user of this ...
CVE-2026-23344
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:31
- Zuletzt bearbeitet 24.04.2026 18:17:48
In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix use-after-free on error path In the error path of sev_tsm_init_locked(), the code dereferences 't' after it has been freed with kfree(). The pr_err() statement at...
CVE-2026-23339
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:28
- Zuletzt bearbeitet 23.04.2026 21:17:17
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: free skb on nci_transceive early error paths nci_transceive() takes ownership of the skb passed by the caller, but the -EPROTO, -EINVAL, and -EBUSY error paths return wit...
CVE-2026-23340
- EPSS 0.14%
- Veröffentlicht 25.03.2026 10:27:28
- Zuletzt bearbeitet 23.04.2026 21:17:07
In the Linux kernel, the following vulnerability has been resolved: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs When shrinking the number of real tx queues, netif_set_real_num_tx_queues() calls qdisc_reset_all_tx_g...
CVE-2026-23336
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:26
- Zuletzt bearbeitet 23.04.2026 21:12:52
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel rfkill_block work in wiphy_unregister() There is a use-after-free error in cfg80211_shutdown_all_interfaces found by syzkaller: BUG: KASAN: use-after-free i...
CVE-2026-23335
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:25
- Zuletzt bearbeitet 23.04.2026 21:13:06
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix kernel stack leak in irdma_create_user_ah() struct irdma_create_ah_resp { // 8 bytes, no padding __u32 ah_id; // offset 0 - SET (uresp.ah_id = ah...
CVE-2026-23334
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:24
- Zuletzt bearbeitet 23.04.2026 21:13:15
In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: handle short interrupt urb messages properly If an interrupt urb is received that is not the correct length, properly detect it and don't attempt to treat the dat...
CVE-2026-23330
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:21
- Zuletzt bearbeitet 27.04.2026 14:16:30
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: complete pending data exchange on device close In nci_close_device(), complete any pending data exchange before closing. The data exchange callback (e.g. rawsock_data_exc...
CVE-2026-23327
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:19
- Zuletzt bearbeitet 01.06.2026 17:16:45
In the Linux kernel, the following vulnerability has been resolved: cxl/mbox: validate payload size before accessing contents in cxl_payload_from_user_allowed() cxl_payload_from_user_allowed() casts and dereferences the input payload without first ...
CVE-2026-23325
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:18
- Zuletzt bearbeitet 23.04.2026 21:11:24
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211() Check frame length before accessing the mgmt fields in mt7996_mac_write_txwi_80211 in order to avoid a ...