CVE-2026-43350
- EPSS 0.22%
- Veröffentlicht 08.05.2026 13:41:53
- Zuletzt bearbeitet 01.06.2026 17:17:05
In the Linux kernel, the following vulnerability has been resolved: smb: client: require a full NFS mode SID before reading mode bits parse_dacl() treats an ACE SID matching sid_unix_NFS_mode as an NFS mode SID and reads sid.sub_auth[2] to recover ...
CVE-2026-43349
- EPSS 0.11%
- Veröffentlicht 08.05.2026 13:41:52
- Zuletzt bearbeitet 15.05.2026 19:09:19
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid uninit-value access in f2fs_sanity_check_node_footer syzbot reported a f2fs bug as below: BUG: KMSAN: uninit-value in f2fs_sanity_check_node_footer+0x374/0xa20 ...
CVE-2026-43348
- EPSS 0.1%
- Veröffentlicht 08.05.2026 13:41:51
- Zuletzt bearbeitet 15.05.2026 19:27:15
In the Linux kernel, the following vulnerability has been resolved: mshv_vtl: Fix vmemmap_shift exceeding MAX_FOLIO_ORDER When registering VTL0 memory via MSHV_ADD_VTL0_MEMORY, the kernel computes pgmap->vmemmap_shift as the number of trailing zero...
- EPSS 93.24%
- Veröffentlicht 08.05.2026 07:21:47
- Zuletzt bearbeitet 15.07.2026 02:21:43
In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFL_SHARED_FRAG after skb_splice_...
CVE-2026-43071
- EPSS 0.39%
- Veröffentlicht 05.05.2026 16:16:16
- Zuletzt bearbeitet 01.06.2026 17:17:01
In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket to two There is an OOB read problem on dentry_hashtable when user sets 'dhash_entries=1': BUG: unable to handle page fault for address:...
CVE-2026-43072
- EPSS 0.11%
- Veröffentlicht 05.05.2026 16:16:16
- Zuletzt bearbeitet 01.06.2026 17:17:01
In the Linux kernel, the following vulnerability has been resolved: drm/vc4: platform_get_irq_byname() returns an int platform_get_irq_byname() will return a negative value if an error happens, so it should be checked and not just passed directly i...
CVE-2026-43073
- EPSS 0.12%
- Veröffentlicht 05.05.2026 16:16:16
- Zuletzt bearbeitet 07.06.2026 09:16:22
In the Linux kernel, the following vulnerability has been resolved: x86-64: rename misleadingly named '__copy_user_nocache()' function This function was a masterclass in bad naming, for various historical reasons. It claimed to be a non-cached use...
CVE-2026-43058
- EPSS 0.12%
- Veröffentlicht 02.05.2026 06:11:50
- Zuletzt bearbeitet 01.06.2026 17:17:01
In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix pass-by-value structs causing MSAN warnings vidtv_ts_null_write_into() and vidtv_ts_pcr_write_into() take their argument structs by value, causing MSAN to report ...
CVE-2026-31719
- EPSS 0.29%
- Veröffentlicht 01.05.2026 14:16:22
- Zuletzt bearbeitet 06.05.2026 20:59:16
In the Linux kernel, the following vulnerability has been resolved: crypto: krb5enc - fix async decrypt skipping hash verification krb5enc_dispatch_decrypt() sets req->base.complete as the skcipher callback, which is the caller's own completion han...
CVE-2026-31710
- EPSS 0.1%
- Veröffentlicht 01.05.2026 14:16:21
- Zuletzt bearbeitet 06.05.2026 20:21:16
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix dir separator in SMB1 UNIX mounts When calling cifs_mount_get_tcon() with SMB1 UNIX mounts, @cifs_sb->mnt_cifs_flags needs to be read or updated only after calling...