Canonical

Ubuntu 25.10

3177 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.12%
  • Veröffentlicht 24.06.2026 07:14:30
  • Zuletzt bearbeitet 08.07.2026 19:08:21

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_log: validate MAC header was set before dumping it The fallback path of dump_mac_header() guards the MAC header access only with "skb->mac_header != skb->network_head...

  • EPSS 0.11%
  • Veröffentlicht 24.06.2026 07:14:29
  • Zuletzt bearbeitet 08.07.2026 19:12:57

In the Linux kernel, the following vulnerability has been resolved: tun: zero the whole vnet header in tun_put_user() tun_put_user() declares an on-stack struct virtio_net_hdr_v1_hash_tunnel without zeroing it. For a non-tunnel skb, virtio_net_hdr_...

  • EPSS 0.12%
  • Veröffentlicht 24.06.2026 07:14:29
  • Zuletzt bearbeitet 08.07.2026 19:10:24

In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid NULL deref of conn->lnk in smc_msg_event tracepoint The smc_msg_event tracepoint class, shared by smc_tx_sendmsg and smc_rx_recvmsg, unconditionally dereferences smc...

  • EPSS 0.11%
  • Veröffentlicht 24.06.2026 07:14:28
  • Zuletzt bearbeitet 08.07.2026 19:14:19

In the Linux kernel, the following vulnerability has been resolved: net/rds: fix NULL deref in rds_ib_send_cqe_handler() on masked atomic completion rds_ib_xmit_atomic() always programs a masked atomic opcode (IB_WR_MASKED_ATOMIC_CMP_AND_SWP or IB_...

  • EPSS 0.11%
  • Veröffentlicht 24.06.2026 07:14:27
  • Zuletzt bearbeitet 08.07.2026 19:22:42

In the Linux kernel, the following vulnerability has been resolved: tap: fix stack info leak in tap_ioctl() SIOCGIFHWADDR In the SIOCGIFHWADDR path, tap_ioctl() copies 16 bytes of an uninitialised on-stack struct sockaddr_storage to userspace via i...

  • EPSS 0.1%
  • Veröffentlicht 24.06.2026 07:14:27
  • Zuletzt bearbeitet 08.07.2026 19:19:19

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths bpf_selem_unlink_nofail() sets SDATA(selem)->smap to NULL before removing the selem from the storage hlist....

  • EPSS 0.11%
  • Veröffentlicht 24.06.2026 07:14:26
  • Zuletzt bearbeitet 08.07.2026 20:31:02

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jent_kcapi_random() serializes the shared jitterentropy state, but it currently holds a spinlock across the jent_read_...

  • EPSS 0.25%
  • Veröffentlicht 24.06.2026 07:14:25
  • Zuletzt bearbeitet 08.07.2026 17:48:48

In the Linux kernel, the following vulnerability has been resolved: batman-adv: tvlv: reject oversized TVLV packets batadv_tvlv_container_ogm_append() builds a TVLV packet section from the tvlv.container_list. The total size of this section is comp...

  • EPSS 0.12%
  • Veröffentlicht 24.06.2026 07:14:25
  • Zuletzt bearbeitet 08.07.2026 20:35:16

In the Linux kernel, the following vulnerability has been resolved: xfrm: espintcp: do not reuse an in-progress partial send espintcp keeps a single in-flight transmit in ctx->partial. Before building a new sk_msg, espintcp_sendmsg() first tries to...

  • EPSS 0.34%
  • Veröffentlicht 24.06.2026 07:14:24
  • Zuletzt bearbeitet 08.07.2026 15:28:06

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the out_free_req label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success.