PT-2026-39252

Name of the Vulnerable Software and Affected Versions free5GC versions prior to 4.2.2 Description The Network Exposure Function NEF in free5GC contains a nil-pointer dereference issue within the PatchIndividualApplicationPFDManagement function. This occurs when a PATCH request is sent to the...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a synchronization error in the USB dummy-hcd driver. This error may lead to race conditions and...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There are security vulnerabilities in the Linux kernel. These vulnerabilities arise from errors in the snbeppci2phymapinit function during Intel uncore performance...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which triggers a WARN message when the nvmsetnestedstate function fails. This vulnerability can be easily exploite...

PT-2026-38857

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API Python bindings because of an incorrect return value. This occurs in xmlPythonFileRead and xmlPythonFileReadRaw because of a difference between bytes and characters...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a double release in the error path of cpufreqdbsgovernorinit. After kobjectput, the functions exi...

PT-2026-39127

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the net/mlx5e component where a DMA FIFO desynchronization occurs during error CQE SQ recovery. When a TX error CQE triggers a recovery flow, the function mlx5e reset...

PT-2026-39112

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the netfilter nfnetlink queue component. The nfqnl recv verdict function calls find dequeue entry to remove a queue entry, taking ownership of it. For PF BRIDGE...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a synchronization processing error in the amdgpudmabufmovenotify function. This vulnerability may...

PT-2026-39249

Name of the Vulnerable Software and Affected Versions free5GC versions prior to 4.2.2 Description The Network Exposure Function NEF in free5GC terminates the entire process when a stored PFD-subscription notifyUri cannot be reached. This occurs within the PfdChangeNotifier.FlushNotifications...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an error in the registration path for thermal devices in the thermal core driver. This error...

PT-2026-39106

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the e1000 and e1000e drivers during DMA Direct Memory Access error cleanup. When an error occurs while mapping TX buffers, the driver fails to correctly unmap all...

FlashMQ 数字错误漏洞

FlashMQ is a fast and lightweight MQTT proxy server developed by Wiebe Cazemier. Versions of FlashMQ prior to 1.26.1 contained a numerical error vulnerability. This vulnerability could cause the FlashMQ proxy to crash and lead to a denial-of-service attack when the setretainedmessagedefertimeout...

PT-2026-39019

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A missing RCU Read-Copy-Update unlock in the error path of the try release subpage extent buffer function within the btrfs module can occur. This happens because a rcu read unlock call...

PT-2026-38952

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description On the i.MX8MQ platform, a hardware limitation exists where the g1 VPU and g2 VPU cannot perform decoding simultaneously. Concurrent operation leads to a bus error, resulting in corrupte...

PT-2026-39122

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description DMA mapping error handling issues exist in the aml sfc dma buffer setup function. These include an unnecessary jump during the first DMA mapping failure, a double-unmap bug where sfc-dad...

zebra 数据伪造问题漏洞

Zebra is an open-source Zcash implementation built with Rust by the Zcash Foundation. Versions of Zebra prior to 4.4.0 had a data forgery vulnerability, which stemmed from insufficient error handling when sighash types were invalid, potentially leading to consensus splits...

PT-2026-39123

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the emac tx mem map function where DMA Direct Memory Access mappings—a method allowing hardware to access system memory independently of the CPU—were leaked when a...

PT-2026-39058

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the samsung dsim host attach function. When drm bridge add is called to add the bridge, a failure in samsung dsim register te irq or pdata-host ops-attach causes...

PT-2026-39033

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the net: dsa: microchip component where the ksz ptp irq setup function fails to dispose of a newly created IRQ mapping if the request threaded irq function fails durin...