CVE-2026-46116
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:30
- Zuletzt bearbeitet 07.07.2026 12:16:52
In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete KASAN reproduces a slab-use-after-free in __xfrm_state_delete()'s hlist_del_rcu calls under syzkaller load on linux...
CVE-2026-46115
- EPSS 0.49%
- Veröffentlicht 28.05.2026 09:35:26
- Zuletzt bearbeitet 24.06.2026 17:00:06
In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovec_phys_mergeable biovec_phys_mergeable() is used by the request merge, DMA mapping, and integrity merge paths to decide if two physically contiguous ...
CVE-2026-46114
- EPSS 0.47%
- Veröffentlicht 28.05.2026 09:35:24
- Zuletzt bearbeitet 24.06.2026 17:00:11
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject non-8-byte ATOMIC_WRITE payloads atomic_write_reply() at drivers/infiniband/sw/rxe/rxe_resp.c unconditionally dereferences 8 bytes at payload_addr(pkt): value...
CVE-2026-46113
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:23
- Zuletzt bearbeitet 24.06.2026 18:23:16
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp->gfn plus the SPTE index. This assumption breaks for ...
CVE-2026-46112
- EPSS 0.1%
- Veröffentlicht 28.05.2026 09:35:20
- Zuletzt bearbeitet 24.06.2026 18:25:40
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() Sashiko points out that hns_roce_qp_remove() requires the caller to hold locks. The error flow in hns_roce_create_qp_common() d...
CVE-2026-46111
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:19
- Zuletzt bearbeitet 24.06.2026 18:26:17
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in create_big_sync Add hci_conn_valid() check in create_big_sync() to detect stale connections before proceeding with BIG creation. Handle th...
CVE-2026-46110
- EPSS 0.5%
- Veröffentlicht 28.05.2026 09:35:18
- Zuletzt bearbeitet 24.06.2026 18:28:54
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Prevent NULL deref when RX memory exhausted The CPU receives frames from the MAC through conventional DMA: the CPU allocates buffers for the MAC, then the MAC fills th...
CVE-2026-46108
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:14
- Zuletzt bearbeitet 25.06.2026 21:19:26
In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message allocation failed, so the driver needs to return to norma...
CVE-2026-46107
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:13
- Zuletzt bearbeitet 25.06.2026 21:19:11
In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalance_children. If the internal btree node has one entry, the code tries to copy all btree ent...
CVE-2026-46106
- EPSS 0.12%
- Veröffentlicht 28.05.2026 09:35:11
- Zuletzt bearbeitet 25.06.2026 21:18:59
In the Linux kernel, the following vulnerability has been resolved: eventfs: Hold eventfs_mutex and SRCU when remount walks events Commit 340f0c7067a9 ("eventfs: Update all the eventfs_inodes from the events descriptor") had eventfs_set_attrs() rec...