CVE-2026-46169
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:24
- Zuletzt bearbeitet 11.06.2026 12:56:33
In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplus_strcasecmp(). The root cause is that hfs_brec_read() doesn't valid...
CVE-2026-46168
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:23
- Zuletzt bearbeitet 10.06.2026 21:14:43
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix scheduling with atomic in timestamp sockopt Using lock_sock_fast() (atomic context) around sock_set_timestamp() and sock_set_timestamping() is unsafe, as both helpers ca...
CVE-2026-46167
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:22
- Zuletzt bearbeitet 10.06.2026 21:14:35
In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl Just like in a previous problem in this driver, usblp_ctrl_msg() will collapse the usb_control_msg() return value to 0...
- EPSS 0.14%
- Veröffentlicht 28.05.2026 09:36:19
- Zuletzt bearbeitet 10.06.2026 21:14:05
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in create_space_info_sub_group() error path When kobject_init_and_add() fails, the call chain is: create_space_info_sub_group() -> btrfs_sysfs_add_space_inf...
CVE-2026-46163
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:18
- Zuletzt bearbeitet 10.06.2026 21:13:41
In the Linux kernel, the following vulnerability has been resolved: wifi: b43legacy: enforce bounds check on firmware key index in RX path Same fix as b43: the firmware-controlled key index in b43legacy_rx() can exceed dev->max_nr_keys. The existin...
CVE-2026-46161
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:16
- Zuletzt bearbeitet 09.06.2026 21:06:33
In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix divide-by-zero in setup_geo() with zero far_copies setup_geo() extracts near_copies (nc) and far_copies (fc) from the user-provided layout parameter without checking...
CVE-2026-46160
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:15
- Zuletzt bearbeitet 09.06.2026 21:06:29
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix missing last_unlink_trans update when removing a directory When removing a directory we are not updating its last_unlink_trans field, which can result in incorrect fsync...
CVE-2026-46159
- EPSS 0.09%
- Veröffentlicht 28.05.2026 09:36:14
- Zuletzt bearbeitet 09.06.2026 21:06:24
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak btrfs_ioctl_space_info() has a TOCTOU race between two passes over the block group RAID type lists...
CVE-2026-46158
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:36:13
- Zuletzt bearbeitet 09.06.2026 21:02:30
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: always decrease sk refcount When an ADD_ADDR is retransmitted, the sk is held in sk_reset_timer(). It should then be released in all cases at the end. Som...
CVE-2026-46157
- EPSS 0.1%
- Veröffentlicht 28.05.2026 09:36:12
- Zuletzt bearbeitet 09.06.2026 21:02:12
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger Currently the runtime.oss.trigger field may be accessed concurrently without protection, which may lead to the data r...