CVE-2026-46244
- EPSS 0.32%
- Veröffentlicht 03.06.2026 15:48:59
- Zuletzt bearbeitet 07.07.2026 12:16:54
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff desync In nft_inner_parse_l2l3(), when processing inner IPv6 packets, ipv6_find_hdr() correctly computes the transport header offset trav...
CVE-2026-46243
- EPSS 0.35%
- Veröffentlicht 01.06.2026 17:17:34
- Zuletzt bearbeitet 10.07.2026 12:17:03
In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego descriptions cifs.spnego key descriptions contain authority-bearing fields such as pid, uid, creduid, and upcall_target that cifs.upcall t...
- EPSS 0.13%
- Veröffentlicht 30.05.2026 12:13:45
- Zuletzt bearbeitet 09.07.2026 01:19:06
In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix ep_remove struct eventpoll / struct file UAF ep_remove() (via ep_remove_file()) cleared file->f_ep under file->f_lock but then kept using @file inside the critical s...
CVE-2026-47337
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:29:20
- Zuletzt bearbeitet 29.05.2026 21:21:45
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation. The bug can be triggered by an unprivileged local user. This can lead to a kernel oops.
CVE-2026-47334
- EPSS 0.08%
- Veröffentlicht 28.05.2026 18:28:39
- Zuletzt bearbeitet 09.06.2026 14:41:07
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly sleep while holding a spinlock in notification handling code. The bug can be triggered by an unprivileged local user and can result in kernel panic or deadlock.
CVE-2026-47333
- EPSS 0.11%
- Veröffentlicht 28.05.2026 18:28:28
- Zuletzt bearbeitet 09.06.2026 14:40:46
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification handling code. The bug can be triggered by an unprivil...
CVE-2026-47332
- EPSS 0.11%
- Veröffentlicht 28.05.2026 18:28:18
- Zuletzt bearbeitet 09.06.2026 14:40:31
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly validate the size of an internal structure, leading to an out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can...
CVE-2026-47330
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:27:58
- Zuletzt bearbeitet 09.06.2026 14:38:43
Ubuntu Linux 6.8, 7.17 and 7.0 contain AppArmor SAUCE patches which can, under certain circumstances, use an uninitialized variable in notification handling code. The bug can be triggered by an unprivileged local user and can result in the incorrect ...
CVE-2026-47329
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:27:44
- Zuletzt bearbeitet 09.06.2026 14:32:29
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches which fail to validate invalid sizes of the name field in AppAmor notification responses. The bug can be triggered by an unprivileged local user and could result in handling of crafted responses.
CVE-2026-47328
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:27:33
- Zuletzt bearbeitet 09.06.2026 16:33:18
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly attempt to free a pointer which was not previously kmalloc()d, while at the same time leaking allocated memory. The bug can be triggered by an unprivileged local user and...