CVE-2026-45848
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:15:12
- Zuletzt bearbeitet 25.06.2026 21:03:46
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix NULL sock in aa_sock_file_perm Deal with the potential that sock and sock-sk can be NULL during socket setup or teardown. This could lead to an oops. The fix for NULL...
CVE-2026-45847
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:15:07
- Zuletzt bearbeitet 25.06.2026 21:03:49
In the Linux kernel, the following vulnerability has been resolved: net: remove WARN_ON_ONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARN_ON_ONCE if userspace manages t...
CVE-2025-71308
- EPSS 0.14%
- Veröffentlicht 27.05.2026 12:15:02
- Zuletzt bearbeitet 25.06.2026 21:04:11
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix potential NULL pointer dereference in context cleanup aie_destroy_context() is invoked during error handling in aie2_create_context(). However, aie_destroy_conte...
CVE-2025-71306
- EPSS 0.15%
- Veröffentlicht 27.05.2026 12:14:57
- Zuletzt bearbeitet 25.06.2026 21:04:28
In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in is_bprm_creds_for_exec() KASAN reported a stack-out-of-bounds access in ima_appraise_measurement from is_bprm_creds_for_exec: BUG: KASAN: stack-out...
CVE-2025-71305
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:14:55
- Zuletzt bearbeitet 25.06.2026 21:04:37
In the Linux kernel, the following vulnerability has been resolved: drm/display/dp_mst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayed_destro...
CVE-2025-71304
- EPSS 0.16%
- Veröffentlicht 27.05.2026 12:14:53
- Zuletzt bearbeitet 25.06.2026 21:04:41
In the Linux kernel, the following vulnerability has been resolved: smack: /smack/doi: accept previously used values Writing to /smack/doi a value that has ever been written there in the past disables networking for non-ambient labels. E.g. # ...
CVE-2026-45846
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:52
- Zuletzt bearbeitet 25.06.2026 21:04:57
In the Linux kernel, the following vulnerability has been resolved: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst() bareudp_fill_metadata_dst() passes bareudp->sock to udp_tunnel6_dst_lookup() in the IPv6 path without a NULL ch...
CVE-2026-45845
- EPSS 0.11%
- Veröffentlicht 27.05.2026 09:24:48
- Zuletzt bearbeitet 26.06.2026 18:38:35
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix NULL pointer dereference in class dump When a TAPRIO child qdisc is deleted via RTM_DELQDISC, taprio_graft() is called with new == NULL and stores NULL into ...
CVE-2026-45844
- EPSS 0.12%
- Veröffentlicht 27.05.2026 09:24:47
- Zuletzt bearbeitet 26.06.2026 18:42:59
In the Linux kernel, the following vulnerability has been resolved: netfilter: arp_tables: fix IEEE1394 ARP payload parsing Weiming Shi says: "arp_packet_match() unconditionally parses the ARP payload assuming two hardware addresses are present (s...
CVE-2026-45843
- EPSS 0.28%
- Veröffentlicht 27.05.2026 09:24:45
- Zuletzt bearbeitet 26.06.2026 18:49:23
In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length slhc_uncompress() parses a VJ-compressed TCP header by advancing a pointer through the packet via decode() and pull1...