CVE-2026-52970
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:28:48
- Zuletzt bearbeitet 14.07.2026 19:45:46
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: fix missing expect put in obj eval nft_ct_expect_obj_eval() allocates an expectation and may call nf_ct_expect_related(), but never drops its local reference. A...
CVE-2026-52968
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:28:47
- Zuletzt bearbeitet 14.07.2026 20:20:13
In the Linux kernel, the following vulnerability has been resolved: KVM: s390: pci: fix GAIT table indexing due to double-scaling pointer arithmetic kvm_s390_pci_aif_enable(), kvm_s390_pci_aif_disable(), and aen_host_forward() index the GAIT by man...
CVE-2026-52967
- EPSS 0.4%
- Veröffentlicht 24.06.2026 16:28:46
- Zuletzt bearbeitet 14.07.2026 20:20:28
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlink_data() On 32-bit architectures, the infinite loop is as follows: len = p->ErrorDataLength == 0xfffffff8 u8 *next...
CVE-2026-52965
- EPSS 0.12%
- Veröffentlicht 24.06.2026 16:28:45
- Zuletzt bearbeitet 14.07.2026 20:21:06
In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttm_bo_swapout() infinite LRU walk on swapout failure When ttm_tt_swapout() fails, the current code calls ttm_resource_add_bulk_move() followed by ttm_resource_move_to...
CVE-2026-52966
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:28:45
- Zuletzt bearbeitet 14.07.2026 20:20:55
In the Linux kernel, the following vulnerability has been resolved: drm: Replace old pointer to new idr Commit 5e28b7b94408 introduced a logical error by failing to replace the newly generated IDR pointer to old id's pointer at the correct location...
CVE-2026-52964
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:28:44
- Zuletzt bearbeitet 14.07.2026 16:12:55
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans The USB MIDI 2.0 endpoint parser has the same descriptor walking pattern as the legacy MIDI parser. It validates bLength a...
CVE-2026-52963
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:28:43
- Zuletzt bearbeitet 14.07.2026 16:17:50
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI endpoint descriptor scans snd_usbmidi_get_ms_info() validates the internal MIDIStreaming endpoint descriptor size before using baAssocJackID[], but the ...
CVE-2026-52962
- EPSS 0.14%
- Veröffentlicht 24.06.2026 16:28:42
- Zuletzt bearbeitet 14.07.2026 16:18:32
In the Linux kernel, the following vulnerability has been resolved: ceph: fix a buffer leak in __ceph_setxattr() The old_blob in __ceph_setxattr() can store ci->i_xattrs.prealloc_blob value during the retry. However, it is never called the ceph_buf...
CVE-2026-52960
- EPSS 0.36%
- Veröffentlicht 24.06.2026 16:28:41
- Zuletzt bearbeitet 14.07.2026 16:20:27
In the Linux kernel, the following vulnerability has been resolved: ceph: put folios not suitable for writeback The batch holds references to the folios (see `filemap_get_folios`, `folio_batch_release`), so we need to `folio_put` the folios we remo...
CVE-2026-52961
- EPSS 0.14%
- Veröffentlicht 24.06.2026 16:28:41
- Zuletzt bearbeitet 14.07.2026 16:20:05
In the Linux kernel, the following vulnerability has been resolved: ceph: fix BUG_ON in __ceph_build_xattrs_blob() due to stale blob size The generic/642 test-case can reproduce the kernel crash: [40243.605254] ------------[ cut here ]------------...