226352 matches found
PT-2026-51716
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the checkpoint/restore sysctl path where the ipc idr alloc function forwards requests to idr alloc with an open-ended upper bound. When the valid SysV IPC id space is...
PT-2026-51715
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the batman-adv module where the batadv dat forward data function calls pskb copy for clone to duplicate an skb for each DHT candidate without verifying the return valu...
PT-2026-51956
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In passthrough mode, the invalidate mapping operation within the dm cache policy smq is called simultaneously by multiple workers without proper lock protection. This lack of...
PT-2026-51949
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the hisilicon/sec2 crypto component. Under heavy load during packet transmission, the hardware may complete packet processing and free the request memory...
PT-2026-51937
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the dlm match regions function, the qr numregions field from a DLM QUERY REGION network message is used to control loops over the qr regions buffer without adequate validation. A...
PT-2026-51938
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the soc/tegra: cbb component where the incorrect use of ARRAY SIZE in fabric lookup tables can lead to out-of-bounds access during target timeout lookup. Out-of-bounds...
PT-2026-51943
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the gfs2 module, the gfs2 logd function calls log flushing functions gfs2 ail1 start, gfs2 ail1 wait, and gfs2 ail1 empty without holding the sdp-sd log flush lock lock. These functio...
PT-2026-51919
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the greybus raw component. The problem occurs when a raw bundle is disconnected while its character device chardev remains open by an application. Becaus...
PT-2026-51899
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.0-rc7 Description An issue exists in the af unix component where SOCKMAP can hide inflight file descriptors from the AF UNIX Garbage Collector GC. When a socket in SOCKMAP receives a socket buffer skb with an...
PT-2026-51927
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the unix stream bpf update proto function within the Linux kernel's sockmap functionality. This issue occurs when a BPF Berkeley Packet Filter iterator program...
PT-2026-51944
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between the dquot scan active function and quota deactivation within quota release workfn. This occurs when dquot scan active acquires a reference to a dquot that...
PT-2026-51887
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double-free flaw exists in the Transparent Inter-Process Communication TIPC module. The issue occurs within the tipc buf append function when it incorrectly handles memory after a sock...
PT-2026-51900
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free UAF error exists in the IPv6 implementation of the Linux kernel. This issue occurs within the icmpv6 rcv function due to the incorrect caching of source and destination...
PT-2026-51893
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds read exists in the netfilter module. In the nf osf match function, the nf osf hdr ctx structure is passed by reference to nf osf match one for fingerprint checks. During...
PT-2026-51897
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the PPPoE driver where the generic PPP layer function ppp input accepts Protocol Field Compression PFC frames, despite PFC not being recommended for PPPoE. If an...
PT-2026-51896
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw in the netfilter conntrack module occurs due to the use of the sprintf function and insufficient buffer sizing within the mangle content len function. This can lead to a...
PT-2026-51851
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the libceph component where a null pointer dereference can occur in the decode choose args function. This happens when processing a CEPH MSG OSD MAP message containing...
PT-2026-51708
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter module where the hbh mt6 check function fails to reject optsnr values supplied from userspace that exceed the capacity of the struct ip6t opts structure...
PT-2026-51713
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter module where the match policy in function processes sec path entries in reverse order, from the last transform to the first. For strict policy matching,...
PT-2026-51910
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the cryptographic coprocessor CCP driver. When processing AF ALG rfc3686-ctr-aes-ccp requests, the ccp aes complete function restores more data than the allocated buffer...