127256 matches found
EUVD-2026-38732
In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskbcarve helpers pskbcarveinsideheader and pskbcarveinsidenonlinear both copy the old skbsharedinfo header into a new buffer via memcpy, which includes the destructorarg pointer uar...
CVE-2026-52940
CVE-2026-52940 affects the Linux kernel tun module. In tun_put_user(), an on-stack struct virtio_net_hdr_v1_hash_tunnel is declared but not zeroed; for non-tunnel skbs, virtio_net_hdr_tnl_from_skb() initializes only the first 10 bytes of the 24-byte header, leaving bytes 10–23 as stack garbage. I...
EUVD-2026-38711
In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid NULL deref of conn-lnk in smcmsgevent tracepoint The smcmsgevent tracepoint class, shared by smctxsendmsg and smcrxrecvmsg, unconditionally dereferences smc-conn.lnk: stringname, smc-conn.lnk-ibname conn-lnk is onl...
CVE-2026-52939
Linux kernel vulnerability CVE-2026-52939 affects RDS over InfiniBand. A NULL dereference can occur in rds_ib_send_cqe_handler() when handling masked atomic completions, due to rds_ib_send_unmap_op() not covering masked opcodes. The issue occurs because masked atomic opcodes (IB_WR_MASKED_ATOMIC_...
EUVD-2026-38706
In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jentkcapirandom serializes the shared jitterentropy state, but it currently holds a spinlock across the jentreadentropy call. That path performs expensive jitter...
EUVD-2026-38705
In the Linux kernel, the following vulnerability has been resolved: xfrm: espintcp: do not reuse an in-progress partial send espintcp keeps a single in-flight transmit in ctx-partial. Before building a new skmsg, espintcpsendmsg first tries to flush that state through espintcppushmsgs. For blocki...
CVE-2026-52929
The CVE-2026-52929 entry concerns the Linux kernel SCTP stream handling. When ADD_OUT_STREAMS is denied, the scheduler may leave removed stream metadata behind, enabling a later re-add to reuse a stale ext and trigger a null-pointer dereference in the scheduler get path. The fix tears down the re...
EUVD-2026-38728
In the Linux kernel, the following vulnerability has been resolved: vrf: Fix a potential NPD when removing a port from a VRF RCU readers that identified a net device as a VRF port using netifisl3slave assume that a subsequent call to netdevmasterupperdevgetrcu will return a VRF device. They then...
EUVD-2026-38723
In the Linux kernel, the following vulnerability has been resolved: netfilter: xtpolicy: fix strict mode inbound policy matching matchpolicyin walks secpath entries from the last transform to the first one, but strict policy matching needs to consume info-pol in the same forward order as the rule...
CVE-2026-52913
The CVE-2026-52913 issue affects the Linux kernel batman-adv subsystem where, after a batadv_hard_iface is disabled and its mesh_iface becomes NULL, batadv_v_ogm_send_meshif() can still queue OGMs via batadv_v_ogm_queue_on_if() for interfaces that lost their mesh_iface. This leads to a NULL point...
ROOT-APP-NPM-CVE-2025-62718 CVE-2025-62718 in @rootio/axios - Patched by Root
Root has patched CVE-2025-62718 in the @rootio/axios package for Root:npm. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-68295 CVE-2025-68295 in rootio-linux - Patched by Root
Root has patched CVE-2025-68295 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-71068 CVE-2025-71068 in rootio-linux - Patched by Root
Root has patched CVE-2025-71068 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-31533 CVE-2026-31533 in rootio-linux - Patched by Root
Root has patched CVE-2026-31533 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-23362 CVE-2026-23362 in rootio-linux - Patched by Root
Root has patched CVE-2026-23362 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-38539 CVE-2025-38539 in rootio-linux - Patched by Root
Root has patched CVE-2025-38539 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-68353 CVE-2025-68353 in rootio-linux - Patched by Root
Root has patched CVE-2025-68353 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-40271 CVE-2025-40271 in rootio-linux - Patched by Root
Root has patched CVE-2025-40271 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-23306 CVE-2026-23306 in rootio-linux - Patched by Root
Root has patched CVE-2026-23306 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-23321 CVE-2026-23321 in rootio-linux - Patched by Root
Root has patched CVE-2026-23321 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...