CVE-2026-46156

A flaw was found in the Linux kernel's LoongArch architecture. An issue in the loongsongpufixupdmahang function, specifically with incorrect handling of device IDs when a discrete GPU is inserted, can lead to an Address Data Error ADE. This flaw may allow a local attacker to trigger a kernel pani...

CVE-2026-46165

A flaw was found in the Linux kernel's openvswitch vport component. This vulnerability arises during the release of tunnel ports, where a self-deadlock can occur. This prevents the vport from being properly freed and its references released, leading to a system deadlock during device removal. Suc...

CVE-2026-46163

A flaw was found in the Linux kernel's b43legacy Wi-Fi driver. A remote attacker could exploit this vulnerability by sending specially crafted Wi-Fi frames, causing the firmware-controlled key index in the receive path to exceed its allocated bounds. This out-of-bounds read could lead to...

CVE-2026-46164

A flaw was found in the Linux kernel's btrfs filesystem. This vulnerability, a double free, occurs in the createspaceinfosubgroup function's error handling path. When kobjectinitandadd fails, a memory region can be freed twice. This can lead to memory corruption, potentially resulting in a denial...

CVE-2026-46167

A flaw was found in the Linux kernel's usblp driver. A local user, interacting with a malicious printer, could exploit this vulnerability. When the LPGETSTATUS ioctl is used and a printer responds with zero bytes, the driver may return uninitialized kernel memory. This leads to information...

CVE-2026-46184

A flaw was found in the Linux kernel's ua101 USB audio driver. A local attacker, by connecting a specially crafted USB audio device, could trigger a division-by-zero error. This occurs because the driver fails to validate the bNrChannels field, leading to a kernel crash. This vulnerability result...

CVE-2026-46183

A flaw was found in the Linux kernel's DAMON Data Access MONitor sysfs system file system component. This vulnerability, a use-after-free, occurs because the damonsysfsquotgoal-path buffer can be deallocated during a write operation without proper locking. A local user could exploit this race...

CVE-2026-46179

A flaw was found in the Linux kernel's Advanced Linux Sound Architecture ALSA System on Chip ASoC Sound Open Firmware SOF subsystem. This vulnerability occurs when reporting the pointer for a compressed stream, where the I/O frame position is divided by values that can be zero if the stream...

CVE-2026-46178

A flaw was found in the Linux kernel. This vulnerability, located in the RDMA/mlx4 component, is due to a resource leak during error handling in the mlx4ibcreatesrq function. An attacker could potentially exploit this flaw to cause a denial of service by exhausting system resources...

CVE-2026-46177

A flaw was found in the Linux kernel's Intelligent Platform Management Interface IPMI driver. This vulnerability allows a malfunctioning Baseboard Management Controller BMC to cause the IPMI driver to continuously fetch events and messages, or become stuck if the attention bit remains active. Thi...

CVE-2026-46175

A flaw was found in the Linux kernel's f2fs filesystem. During Foreground Garbage Collection FGGC of node blocks, the system fails to properly clear internal metadata marks. This can lead to filesystem inconsistencies, where the fsck utility may misinterpret the state of migrated data. A local us...

CVE-2026-46187

A flaw was found in the Linux kernel's Redpine Signals RSI Wi-Fi driver. A race condition, which occurs when multiple operations try to access the same resource simultaneously, exists in the management of kernel threads kthreads, lightweight processes within the kernel. This can lead to a...

CVE-2026-46197

A flaw was found in the Linux kernel. A local attacker could exploit an out-of-bounds buffer access vulnerability in the AMDGPU kernel driver by providing a specially crafted attribute count during SVM ioctl operations. This improper validation could allow the attacker to cause a system crash,...

CVE-2026-46192

A flaw was found in the Linux kernel's spi: microchip-core-qspi driver. This vulnerability allows the driver to transmit data during emulated read-only dual or quad operations, which are specific modes for communicating with Quad Serial Peripheral Interface QSPI devices. This unintended data...

CVE-2026-46194

A flaw was found in the Linux kernel's f2fs filesystem. A race condition exists between the f2fsdestroyextentnode function and concurrent writeback operations. This occurs because f2fsdestroyextentnode does not properly set a flag FINOEXTENT before clearing extent nodes, allowing new extent nodes...

CVE-2026-46196

A flaw was found in the Linux kernel. When a tracepoint a mechanism for dynamic instrumentation is registered, a failure during the probe installation process can lead to the registration's side effects persisting without a corresponding probe. This can cause a Denial of Service DoS by leaving...

CVE-2026-46200

A flaw was found in the Linux kernel's spi: mpc52xx driver. This vulnerability occurs because the controller is not properly deregistered before its underlying resources, such as interrupts and General Purpose Input/Output GPIO pins, are disabled and released during the driver unbind process. Thi...

CVE-2026-46199

A flaw was found in the Linux kernel's drm/amdgpu/vcn4 component. This vulnerability allows an attacker to trigger an out-of-bounds OOB read when parsing decoder messages due to insufficient bounds checking. This could lead to information disclosure, potentially revealing sensitive data from memo...

CVE-2026-46198

A flaw was found in the Linux kernel's batman-adv component. An integer overflow in the batadvivogmsendtoif function, specifically with the buffpos variable, can lead to an out-of-bound read. This occurs because the size check uses an int type while buffpos uses an s16 type, causing a mismatch th...

CVE-2026-46202

A flaw was found in the Linux kernel's Apple Touch Bar keyboard driver. This vulnerability allows the system to become unstable or crash kernel panic when the driver's inactivity autodim feature attempts to acquire a lock from an inappropriate execution context. This can be triggered by a local...