CVE-2025-71304
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:14:53
- Zuletzt bearbeitet 25.06.2026 21:04:41
In the Linux kernel, the following vulnerability has been resolved: smack: /smack/doi: accept previously used values Writing to /smack/doi a value that has ever been written there in the past disables networking for non-ambient labels. E.g. # ...
CVE-2026-45846
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:52
- Zuletzt bearbeitet 25.06.2026 21:04:57
In the Linux kernel, the following vulnerability has been resolved: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst() bareudp_fill_metadata_dst() passes bareudp->sock to udp_tunnel6_dst_lookup() in the IPv6 path without a NULL ch...
CVE-2026-45845
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:48
- Zuletzt bearbeitet 26.06.2026 18:38:35
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix NULL pointer dereference in class dump When a TAPRIO child qdisc is deleted via RTM_DELQDISC, taprio_graft() is called with new == NULL and stores NULL into ...
CVE-2026-45844
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:47
- Zuletzt bearbeitet 26.06.2026 18:42:59
In the Linux kernel, the following vulnerability has been resolved: netfilter: arp_tables: fix IEEE1394 ARP payload parsing Weiming Shi says: "arp_packet_match() unconditionally parses the ARP payload assuming two hardware addresses are present (s...
CVE-2026-45843
- EPSS 0.28%
- Veröffentlicht 27.05.2026 09:24:45
- Zuletzt bearbeitet 26.06.2026 18:49:23
In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length slhc_uncompress() parses a VJ-compressed TCP header by advancing a pointer through the packet via decode() and pull1...
CVE-2026-45842
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:42
- Zuletzt bearbeitet 26.06.2026 18:51:05
In the Linux kernel, the following vulnerability has been resolved: slip: reject VJ receive packets on instances with no rstate array slhc_init() accepts rslots == 0 as a valid configuration, with the documented meaning of 'no receive compression'....
CVE-2026-45841
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:40
- Zuletzt bearbeitet 26.06.2026 18:52:56
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO nf_osf_match_one() computes ctx->window % f->wss.val in the OSF_WSS_MODULO branch with no guard for f->wss.val == 0. ...
CVE-2026-45840
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:39
- Zuletzt bearbeitet 26.06.2026 18:56:58
In the Linux kernel, the following vulnerability has been resolved: openvswitch: cap upcall PID array size and pre-size vport replies The vport netlink reply helpers allocate a fixed-size skb with nlmsg_new(NLMSG_DEFAULT_SIZE, ...) but serialize th...
CVE-2026-45839
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:37
- Zuletzt bearbeitet 26.06.2026 19:08:05
In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpf_core_parse_spec() CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field,...
CVE-2026-45838
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:36
- Zuletzt bearbeitet 26.06.2026 19:09:03
In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroup_storage_get_next_key() list_next_entry() never returns NULL -- when the current element is the last entry it wraps to the list head via con...