CVE-2026-53248
- EPSS 0.39%
- Veröffentlicht 25.06.2026 08:39:41
- Zuletzt bearbeitet 07.07.2026 22:12:46
In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix use-after-free in metadata dst teardown airoha_metadata_dst_free() runs metadata_dst_free() which frees the metadata_dst with kfree() immediately, bypassing the RC...
CVE-2026-53249
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:41
- Zuletzt bearbeitet 07.07.2026 22:06:51
In the Linux kernel, the following vulnerability has been resolved: ipv4: restrict IPOPT_SSRR and IPOPT_LSRR options This patch restricts setting Loose Source and Record Route (LSRR) and Strict Source and Record Route (SSRR) IP options to users wit...
CVE-2026-53247
- EPSS 0.51%
- Veröffentlicht 25.06.2026 08:39:40
- Zuletzt bearbeitet 07.07.2026 22:16:24
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: Fix use-after-free in metadata dst teardown mtk_free_dev() calls metadata_dst_free() which frees the metadata_dst with kfree() immediately, bypassing th...
CVE-2026-53245
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:39
- Zuletzt bearbeitet 07.07.2026 22:17:38
In the Linux kernel, the following vulnerability has been resolved: net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattr In mrp_pdu_parse_vecattr(), vector attribute events are encoded three per byte and valen tracks the number of eve...
CVE-2026-53246
- EPSS 0.48%
- Veröffentlicht 25.06.2026 08:39:39
- Zuletzt bearbeitet 07.07.2026 22:16:52
In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk length in COOKIE_ECHO processing When a listening SCTP server processes a COOKIE_ECHO chunk, the cached peer INIT chunk embedded after the coo...
CVE-2026-53244
- EPSS 0.36%
- Veröffentlicht 25.06.2026 08:39:38
- Zuletzt bearbeitet 07.07.2026 22:19:58
In the Linux kernel, the following vulnerability has been resolved: VFS: fix possible failure to unlock in nfsd4_create_file() atomic_create() in fs/namei.c drops the reference to the dentry when it returns an error. This behaviour was imported int...
CVE-2026-53242
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:37
- Zuletzt bearbeitet 07.07.2026 22:22:16
In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams snd_pcm_drain() uses init_waitqueue_entry which does not clear entry.prev/next, and add_wait_queue wi...
CVE-2026-53243
- EPSS 0.11%
- Veröffentlicht 25.06.2026 08:39:37
- Zuletzt bearbeitet 07.07.2026 22:21:55
In the Linux kernel, the following vulnerability has been resolved: rseq: Fix using an uninitialized stack variable in rseq_exit_user_update() There is an bug in which an uninitialized stack variable is used in rseq_exit_user_update() as reported b...
CVE-2026-53241
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:36
- Zuletzt bearbeitet 07.07.2026 22:22:37
In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct snd_seq_event into a stack temporary, rewriting source and des...
CVE-2026-53239
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:35
- Zuletzt bearbeitet 08.07.2026 13:06:06
In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexact bin in xfrm_policy_bysel_ctx() Fix the race by pruning the bin while still holding xfrm_policy_lock, before dropping it. Use __xfrm_poli...