CVE-2026-46120
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:35
- Zuletzt bearbeitet 24.06.2026 16:51:39
In the Linux kernel, the following vulnerability has been resolved: ip6_gre: Use cached t->net in ip6erspan_changelink(). After commit 5e72ce3e3980 ("net: ipv6: Use link netns in newlink() of rtnl_link_ops"), ip6erspan_newlink() correctly resolves ...
CVE-2026-46119
- EPSS 0.53%
- Veröffentlicht 28.05.2026 09:35:34
- Zuletzt bearbeitet 24.06.2026 16:51:46
In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in auth message processing If a (potentially corrupted) message of type CEPH_MSG_AUTH_REPLY contains a positive value in its result field, it...
CVE-2026-46118
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:33
- Zuletzt bearbeitet 24.06.2026 16:59:50
In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix null ptr deref in papr_hvpipe_dev_create_handle() commit 6d3789d347a7 ("papr-hvpipe: convert papr_hvpipe_dev_create_handle() to FD_PREPARE()"), changed the...
CVE-2026-46117
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:32
- Zuletzt bearbeitet 30.06.2026 03:20:08
In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() Sashiko points out that the user can specify WQs sharing the same CQ as a part of the uAPI and this will tri...
CVE-2026-46116
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:30
- Zuletzt bearbeitet 07.07.2026 12:16:52
In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete KASAN reproduces a slab-use-after-free in __xfrm_state_delete()'s hlist_del_rcu calls under syzkaller load on linux...
CVE-2026-46115
- EPSS 0.49%
- Veröffentlicht 28.05.2026 09:35:26
- Zuletzt bearbeitet 24.06.2026 17:00:06
In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovec_phys_mergeable biovec_phys_mergeable() is used by the request merge, DMA mapping, and integrity merge paths to decide if two physically contiguous ...
CVE-2026-46114
- EPSS 0.47%
- Veröffentlicht 28.05.2026 09:35:24
- Zuletzt bearbeitet 24.06.2026 17:00:11
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject non-8-byte ATOMIC_WRITE payloads atomic_write_reply() at drivers/infiniband/sw/rxe/rxe_resp.c unconditionally dereferences 8 bytes at payload_addr(pkt): value...
CVE-2026-46113
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:23
- Zuletzt bearbeitet 24.06.2026 18:23:16
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp->gfn plus the SPTE index. This assumption breaks for ...
CVE-2026-46112
- EPSS 0.1%
- Veröffentlicht 28.05.2026 09:35:20
- Zuletzt bearbeitet 24.06.2026 18:25:40
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() Sashiko points out that hns_roce_qp_remove() requires the caller to hold locks. The error flow in hns_roce_create_qp_common() d...
CVE-2026-46111
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:19
- Zuletzt bearbeitet 24.06.2026 18:26:17
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in create_big_sync Add hci_conn_valid() check in create_big_sync() to detect stale connections before proceeding with BIG creation. Handle th...