CVE-2026-53009
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:20
- Zuletzt bearbeitet 15.07.2026 01:16:27
In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_tso() or ice_tx_csum() fail, the error path in ice_xmit_frame_ring() frees the skb, but the 'first' tx_buf still points to it and is marke...
CVE-2026-53008
- EPSS 0.08%
- Veröffentlicht 24.06.2026 16:29:19
- Zuletzt bearbeitet 14.07.2026 18:47:41
In the Linux kernel, the following vulnerability has been resolved: ice: fix race condition in TX timestamp ring cleanup Fix a race condition between ice_free_tx_tstamp_ring() and ice_tx_map() that can cause a NULL pointer dereference. ice_free_tx...
CVE-2026-53007
- EPSS 0.11%
- Veröffentlicht 24.06.2026 16:29:18
- Zuletzt bearbeitet 14.07.2026 19:18:15
In the Linux kernel, the following vulnerability has been resolved: ice: fix potential NULL pointer deref in error path of ice_set_ringparam() ice_set_ringparam nullifies tstamp_ring of temporary tx_rings, without clearing ICE_TX_RING_FLAGS_TXTIME ...
CVE-2026-53006
- EPSS 0.39%
- Veröffentlicht 24.06.2026 16:29:17
- Zuletzt bearbeitet 15.07.2026 01:16:26
In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Caching saddr and daddr before pskb_pull() is problematic since skb->head can change. Remove these temporary variables: - We only access &i...
CVE-2026-53004
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:16
- Zuletzt bearbeitet 14.07.2026 20:05:22
In the Linux kernel, the following vulnerability has been resolved: sctp: fix OOB write to userspace in sctp_getsockopt_peer_auth_chunks sctp_getsockopt_peer_auth_chunks() checks that the caller's optval buffer is large enough for the peer AUTH chu...
CVE-2026-53005
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:16
- Zuletzt bearbeitet 14.07.2026 20:01:48
In the Linux kernel, the following vulnerability has been resolved: af_unix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AF_UNIX GC. When a socket in SOCKMAP receives skb with inflight fd, sk_psock_verdict_data_ready() l...
CVE-2026-53003
- EPSS 0.51%
- Veröffentlicht 24.06.2026 16:29:15
- Zuletzt bearbeitet 14.07.2026 20:05:57
In the Linux kernel, the following vulnerability has been resolved: pppoe: drop PFC frames RFC 2516 Section 7 states that Protocol Field Compression (PFC) is NOT RECOMMENDED for PPPoE. In practice, pppd does not support negotiating PFC for PPPoE se...
CVE-2026-53002
- EPSS 0.36%
- Veröffentlicht 24.06.2026 16:29:14
- Zuletzt bearbeitet 15.07.2026 01:16:26
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage Replace it with scnprintf, the buffer sizes are expected to be large enough to hold the result, no need for snprintf+overflow check. Inc...
CVE-2026-53001
- EPSS 0.12%
- Veröffentlicht 24.06.2026 16:29:13
- Zuletzt bearbeitet 14.07.2026 20:09:09
In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict several matches to inet family This is a partial revert of: commit ab4f21e6fb1c ("netfilter: xtables: use NFPROTO_UNSPEC in more extensions") to al...
CVE-2026-53000
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:12
- Zuletzt bearbeitet 15.07.2026 01:16:26
In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nf_hook_...