EUVD-2026-26562

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

CVE-2026-31749 comedi: ni_atmio16d: Fix invalid clean-up after failed attach

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

CVE-2026-31749

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

PT-2026-36384

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the comedi ni atmio16d driver where the atmio16d detach handler function calls reset atmio16d unconditionally during a failed attach process. If the atmio16d attach...

PT-2026-36427

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel where bpf kprobe multi link attach fails to validate if a program being attached has the sleepable flag set. Because kprobe.multi programs operate...

PT-2026-36386

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The dt2815 driver crashes when attached to I/O ports without actual hardware present. This occurs because users can attach the driver to arbitrary I/O addresses via the 'COMEDI DEVCONFIG...

CVE-2026-31688

In the Linux kernel, the following vulnerability has been resolved: driver core: enforce devicelock for drivermatchdevice Currently, drivermatchdevice is called from three sites. One site deviceattachdriver holds devicelockdev, but the other two bindstore and driverattach do not. This inconsisten...

CVE-2026-31688 driver core: enforce device_lock for driver_match_device()

In the Linux kernel, the following vulnerability has been resolved: driver core: enforce devicelock for drivermatchdevice Currently, drivermatchdevice is called from three sites. One site deviceattachdriver holds devicelockdev, but the other two bindstore and driverattach do not. This inconsisten...

PT-2026-35494

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A race condition exists in the driver core due to inconsistent locking in the driver match device function. While one call site holds the device lockdev, others such as bind store and...

SUSE CVE-2026-31527

In the Linux kernel, the following vulnerability has been resolved: driver core: platform: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock...

CVE-2026-31487

A flaw was found in the Linux kernel, specifically within its Serial Peripheral Interface SPI subsystem. This vulnerability arises from improper handling of memory when a driver is being attached, leading to a use-after-free UAF condition. A UAF vulnerability is a type of memory corruption that c...

CVE-2026-31527

In the Linux kernel, the following vulnerability has been resolved: driver core: platform: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock...

CVE-2026-31487

In the Linux kernel, the following vulnerability has been resolved: spi: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which can cause ...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the release of jino before the initialization of the ext4 inodeattachjinode function. This...

PT-2026-34392

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free UAF issue exists in the SPI subsystem. When a driver is probed via the driver attach function, the bus match callback is executed without holding the device lock. This...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013547)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013547 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/panel/panel-sitronix-st7701: Remove panel on DSI attach failure In case mipidsiattach fails,...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011026)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011026 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Fix memory leak in rsicoexattach The coexcb needs to be freed when rsicreatekthread...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-013182)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013182 advisory. In the Linux kernel, the following vulnerability has been resolved: cgroup: Add missing cpusreadlock to cgroupattachtaskall syzbot is hitting...

CVE-2026-3464 WP Customer Area <= 8.3.4 - Authenticated (Subscriber+) Arbitrary File Read/Deletion via ajax_attach_file

The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation in the 'ajaxattachfile' function in all versions up to, and including, 8.3.4. This makes it possible for authenticated attackers with a role that an administrator...

CVE-2026-3464

The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation in the 'ajaxattachfile' function in all versions up to, and including, 8.3.4. This makes it possible for authenticated attackers with a role that an administrator...