CVE-2026-46037
- EPSS 0.43%
- Veröffentlicht 27.05.2026 12:56:47
- Zuletzt bearbeitet 16.06.2026 15:17:15
In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmp_pointers Extended echo replies use ICMP_EXT_ECHOREPLY as the outbound reply type. That value is outside the range covered by icmp_...
CVE-2026-46036
- EPSS 0.14%
- Veröffentlicht 27.05.2026 12:56:46
- Zuletzt bearbeitet 16.06.2026 15:17:26
In the Linux kernel, the following vulnerability has been resolved: vfio/cdx: Serialize VFIO_DEVICE_SET_IRQS with a per-device mutex vfio_cdx_set_msi_trigger() reads vdev->config_msi and operates on the vdev->cdx_irqs array based on its value, but ...
CVE-2026-46035
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:56:44
- Zuletzt bearbeitet 16.06.2026 16:58:44
In the Linux kernel, the following vulnerability has been resolved: mm/page_alloc: return NULL early from alloc_frozen_pages_nolock() in NMI on UP On UP kernels (!CONFIG_SMP), spin_trylock() is a no-op that unconditionally succeeds even when the lo...
CVE-2026-46034
- EPSS 0.14%
- Veröffentlicht 27.05.2026 12:56:43
- Zuletzt bearbeitet 16.06.2026 16:59:26
In the Linux kernel, the following vulnerability has been resolved: vfio/cdx: Fix NULL pointer dereference in interrupt trigger path Add validation to ensure MSI is configured before accessing cdx_irqs array in vfio_cdx_set_msi_trigger(). Without t...
CVE-2026-46033
- EPSS 0.13%
- Veröffentlicht 27.05.2026 12:56:42
- Zuletzt bearbeitet 15.07.2026 02:22:08
In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash digests during instance creation authencesn requires either a zero authsize or an authsize of at least 4 bytes because the ESN encrypt/decry...
CVE-2026-46032
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:56:41
- Zuletzt bearbeitet 16.06.2026 17:24:12
In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Triple fault if restore host CR3 fails on nested #VMEXIT If loading L1's CR3 fails on a nested #VMEXIT, nested_svm_vmexit() returns an error code that is ignored by most...
CVE-2026-46031
- EPSS 0.37%
- Veröffentlicht 27.05.2026 12:56:40
- Zuletzt bearbeitet 16.06.2026 17:37:42
In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Reinstate disabling of BHs around IRQ handler If the driver executes ks8851_irq() AND a TX packet has been sent, then the driver enables TX queue via netif_wake_queue(...
CVE-2026-46030
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:56:39
- Zuletzt bearbeitet 16.06.2026 17:38:25
In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix device_node leak in mc_probe() of_parse_phandle() returns a device_node reference that must be released with of_node_put(). The original code never freed r5_cor...
- EPSS 0.15%
- Veröffentlicht 27.05.2026 12:56:38
- Zuletzt bearbeitet 16.06.2026 15:53:30
In the Linux kernel, the following vulnerability has been resolved: mm/slab: return NULL early from kmalloc_nolock() in NMI on UP On UP kernels (!CONFIG_SMP), spin_trylock() is a no-op that unconditionally succeeds even when the lock is already hel...
CVE-2026-46028
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:56:36
- Zuletzt bearbeitet 16.06.2026 15:54:18
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - snapshot IV for async AEAD requests AF_ALG AEAD AIO requests currently use the socket-wide IV buffer during request processing. For async requests, later sock...