CVE-2025-71151
- EPSS 0.11%
- Veröffentlicht 23.01.2026 14:15:17
- Zuletzt bearbeitet 26.02.2026 20:29:07
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix memory and information leak in smb3_reconfigure() In smb3_reconfigure(), if smb3_sync_session_ctx_passwords() fails, the function returns immediately without freeing and ...
CVE-2025-71150
- EPSS 0.12%
- Veröffentlicht 23.01.2026 14:15:16
- Zuletzt bearbeitet 18.04.2026 09:16:13
In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix refcount leak when invalid session is found on session lookup When a session is found but its state is not SMB2_SESSION_VALID, It indicates that no valid session was fou...
CVE-2025-71149
- EPSS 0.02%
- Veröffentlicht 23.01.2026 14:15:15
- Zuletzt bearbeitet 02.05.2026 07:16:01
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2025-71148
- EPSS 0.11%
- Veröffentlicht 23.01.2026 14:15:14
- Zuletzt bearbeitet 26.02.2026 20:27:18
In the Linux kernel, the following vulnerability has been resolved: net/handshake: restore destructor on submit failure handshake_req_submit() replaces sk->sk_destruct but never restores it when submission fails before the request is hashed. handsh...
CVE-2025-71147
- EPSS 0.11%
- Veröffentlicht 23.01.2026 14:15:13
- Zuletzt bearbeitet 26.02.2026 20:26:24
In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix a memory leak in tpm2_load_cmd 'tpm2_load_cmd' allocates a tempoary blob indirectly via 'tpm2_key_decode' but it is not freed in the failure paths. Address this ...
CVE-2026-22977
- EPSS 0.12%
- Veröffentlicht 21.01.2026 13:08:54
- Zuletzt bearbeitet 02.06.2026 14:16:46
In the Linux kernel, the following vulnerability has been resolved: net: sock: fix hardened usercopy panic in sock_recv_errqueue skbuff_fclone_cache was created without defining a usercopy region, [1] unlike skbuff_head_cache which properly whiteli...
CVE-2026-22976
- EPSS 0.12%
- Veröffentlicht 21.01.2026 06:57:23
- Zuletzt bearbeitet 02.06.2026 14:16:45
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset `qfq_class->leaf_qdisc->q.qlen > 0` does not imply that the class itself is active. Two qfq_cl...
CVE-2025-71143
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:04
- Zuletzt bearbeitet 25.03.2026 18:02:14
In the Linux kernel, the following vulnerability has been resolved: clk: samsung: exynos-clkout: Assign .num before accessing .hws Commit f316cdff8d67 ("clk: Annotate struct clk_hw_onecell_data with __counted_by") annotated the hws member of 'struc...
CVE-2025-71144
- EPSS 0.12%
- Veröffentlicht 14.01.2026 15:16:04
- Zuletzt bearbeitet 26.02.2026 18:41:23
In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure context reset on disconnect() After the blamed commit below, if the MPC subflow is already in TCP_CLOSE status or has fallback to TCP at mptcp_disconnect() time, mptc...
CVE-2025-71133
- EPSS 0.15%
- Veröffentlicht 14.01.2026 15:16:03
- Zuletzt bearbeitet 25.03.2026 18:04:12
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: avoid invalid read in irdma_net_event irdma_net_event() should not dereference anything from "neigh" (alias "ptr") until it has checked that the event is NETEVENT_NEIGH...