- EPSS 0.23%
- Veröffentlicht 15.10.2025 07:56:04
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: can: mcba_usb: populate ndo_change_mtu() to prevent buffer overflow Sending an PF_PACKET allows to bypass the CAN framework logic and to directly reach the xmit() function of a CAN...
- EPSS 0.19%
- Veröffentlicht 15.10.2025 07:56:02
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync This fixes the following UFA in hci_acl_create_conn_sync where a connection still pending is command submission (conn->sta...
- EPSS 0.19%
- Veröffentlicht 15.10.2025 07:56:00
- Zuletzt bearbeitet 14.07.2026 13:17:52
In the Linux kernel, the following vulnerability has been resolved: nexthop: Forbid FDB status change while nexthop is in a group The kernel forbids the creation of non-FDB nexthop groups with FDB nexthops: # ip nexthop add id 1 via 192.0.2.1 fdb...
- EPSS 0.19%
- Veröffentlicht 15.10.2025 07:56:00
- Zuletzt bearbeitet 17.05.2026 16:16:14
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix possible UAFs This attemps to fix possible UAFs caused by struct mgmt_pending being freed while still being processed like in the following trace, in order to ...
- EPSS 0.19%
- Veröffentlicht 15.10.2025 07:55:58
- Zuletzt bearbeitet 14.07.2026 13:17:51
In the Linux kernel, the following vulnerability has been resolved: futex: Prevent use-after-free during requeue-PI syzbot managed to trigger the following race: T1 T2 futex_wait_requeue_pi() futex_do_wait() ...
- EPSS 0.19%
- Veröffentlicht 15.10.2025 07:55:58
- Zuletzt bearbeitet 14.07.2026 13:17:52
In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() This code calls kfree_rcu(new_node, rcu) and then dereferences "new_node" and then dereferences it on the next line...
- EPSS 0.2%
- Veröffentlicht 15.10.2025 07:55:55
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: i40e: add validation for ring_len param The `ring_len` parameter provided by the virtual function (VF) is assigned directly to the hardware memory context (HMC) without any validat...
- EPSS 0.2%
- Veröffentlicht 15.10.2025 07:55:54
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: i40e: fix idx validation in config queues msg Ensure idx is within range of active/initialized TCs when iterating over vf->ch[idx] in i40e_vc_config_queues_msg().
- EPSS 0.2%
- Veröffentlicht 15.10.2025 07:55:54
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: i40e: fix idx validation in i40e_validate_queue_map Ensure idx is within range of active/initialized TCs when iterating over vf->ch[idx] in i40e_validate_queue_map().
- EPSS 0.2%
- Veröffentlicht 15.10.2025 07:55:53
- Zuletzt bearbeitet 15.04.2026 00:35:42
In the Linux kernel, the following vulnerability has been resolved: i40e: fix input validation logic for action_meta Fix condition to check 'greater or equal' to prevent OOB dereference.