CVE-2026-53233

In the Linux kernel, CVE-2026-53233 concerns a double-free in netdev_nl_bind_rx_doit(). The fix addresses a faulty interaction with genlmsg_reply(), where genlmsg_reply() is expected to consume the skb. The error path previously invoked nlmsg_free(rsp), which was incompatible with unbinding flow;...

EUVD-2026-30017

In the Linux kernel, the following vulnerability has been resolved: net-shapers: don't free reply skb after genlmsgreply genlmsgreply hands the reply skb to netlink, and netlinkunicast consumes it on all return paths, whether the skb is queued successfully or freed on an error path...

CVE-2026-43481

In the Linux kernel, the following vulnerability has been resolved: net-shapers: don't free reply skb after genlmsgreply genlmsgreply hands the reply skb to netlink, and netlinkunicast consumes it on all return paths, whether the skb is queued successfully or freed on an error path...

CVE-2026-43481

The CVE-2026-43481 issue affects the Linux kernel net-shapers component. The vulnerability arises because, on genlmsg_reply() failure, the reply skb could be freed twice (the code path freed or nlmsg_free(msg) after genlmsg_reply() and in all return paths). The root cause is that netlink_unicast(...