CVE-2026-23348
- EPSS 0.09%
- Veröffentlicht 25.03.2026 10:27:34
- Zuletzt bearbeitet 24.04.2026 18:08:42
In the Linux kernel, the following vulnerability has been resolved: cxl: Fix race of nvdimm_bus object when creating nvdimm objects Found issue during running of cxl-translate.sh unit test. Adding a 3s sleep right before the test seems to make the ...
CVE-2026-23346
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:33
- Zuletzt bearbeitet 09.06.2026 11:16:49
In the Linux kernel, the following vulnerability has been resolved: arm64: io: Extract user memory type in ioremap_prot() The only caller of ioremap_prot() outside of the generic ioremap() implementation is generic_access_phys(), which passes a 'pg...
CVE-2026-23347
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:33
- Zuletzt bearbeitet 24.04.2026 18:10:38
In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwis...
CVE-2026-23345
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:32
- Zuletzt bearbeitet 24.04.2026 18:17:11
In the Linux kernel, the following vulnerability has been resolved: arm64: gcs: Do not set PTE_SHARED on GCS mappings if FEAT_LPA2 is enabled When FEAT_LPA2 is enabled, bits 8-9 of the PTE replace the shareability attribute with bits 50-51 of the o...
CVE-2026-23343
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:31
- Zuletzt bearbeitet 23.04.2026 21:14:13
In the Linux kernel, the following vulnerability has been resolved: xdp: produce a warning when calculated tailroom is negative Many ethernet drivers report xdp Rx queue frag size as being the same as DMA write size. However, the only user of this ...
CVE-2026-23344
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:31
- Zuletzt bearbeitet 24.04.2026 18:17:48
In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix use-after-free on error path In the error path of sev_tsm_init_locked(), the code dereferences 't' after it has been freed with kfree(). The pr_err() statement at...
CVE-2026-23339
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:28
- Zuletzt bearbeitet 23.04.2026 21:17:17
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: free skb on nci_transceive early error paths nci_transceive() takes ownership of the skb passed by the caller, but the -EPROTO, -EINVAL, and -EBUSY error paths return wit...
CVE-2026-23340
- EPSS 0.14%
- Veröffentlicht 25.03.2026 10:27:28
- Zuletzt bearbeitet 23.04.2026 21:17:07
In the Linux kernel, the following vulnerability has been resolved: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs When shrinking the number of real tx queues, netif_set_real_num_tx_queues() calls qdisc_reset_all_tx_g...
CVE-2026-23338
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:27:27
- Zuletzt bearbeitet 23.04.2026 21:17:25
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: Do not allow userspace to trivially triger kernel warnings Userspace can either deliberately pass in the too small num_fences, or the required number can legitima...
CVE-2026-23336
- EPSS 0.13%
- Veröffentlicht 25.03.2026 10:27:26
- Zuletzt bearbeitet 23.04.2026 21:12:52
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel rfkill_block work in wiphy_unregister() There is a use-after-free error in cfg80211_shutdown_all_interfaces found by syzkaller: BUG: KASAN: use-after-free i...