Linux Distros Unpatched Vulnerability : CVE-2026-42483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code vi...

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : kmod update (USN-8226-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-8226-1 advisory. It was discovered that the Linux kernel algifaead module contained a logic flaw allowing a local attacker to escalate privileges to root. This...

Linux Distros Unpatched Vulnerability : CVE-2026-43504

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access contro...

Linux Distros Unpatched Vulnerability : CVE-2026-43052

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: mac80211: check tdls flag in ieee80211tdlsoper When NL80211TDLSENABLELINK is called, the code only checks if the station exists but not whether it is...

CVE-2026-31769

A flaw was found in the Linux kernel's gpib module. This use-after-free vulnerability allows a local attacker to trigger a condition where memory is accessed after it has been freed. By concurrently calling specific ioctl handlers, an attacker could cause a system crash, leading to a denial of...

CVE-2026-31753

A flaw was found in the Linux kernel, specifically within the auxdisplay and line-display modules. This vulnerability occurs when the linedisprelease function attempts to free display resources. If the associated attachment list has already been removed, the function dereferences a null pointer,...

CVE-2026-31752

A flaw was found in the Linux kernel's bridge module. A remote attacker could exploit this by sending a malformed Neighbor Discovery ND option. This could cause the brndsend function to improperly process option lengths, potentially leading to information disclosure or a denial of service DoS...

CVE-2026-31748

A flaw was found in the Linux kernel's comedi: medaq module. The me2600xilinxdownload function, responsible for loading firmware, does not adequately validate the length of the provided firmware data stream. This vulnerability allows for a buffer overrun, which can lead to memory corruption withi...

CVE-2026-31743

A flaw was found in the Linux kernel, specifically within the nvmem and zynqmpnvmem modules. An incorrect buffer size used during Direct Memory Access DMA allocation and memcpy operations can lead to undersized DMA buffer access. This vulnerability could allow a local attacker to cause memory...

CVE-2026-31729

A flaw was found in the Linux kernel's USB Type-C Unified Connector and Switch Interface UCSI module. A malicious or malfunctioning USB Type-C device could report an out-of-range connector number in the Configuration and Capability Information CCI. This could lead to an out-of-bounds array access...

CVE-2026-31727

A flaw was found in the Linux kernel's USB gadget subsystem, specifically within the uether module. A local user can exploit this vulnerability by using a userspace tool to query a USB gadget interface during a specific detached state. This action can trigger a NULL pointer dereference, potential...

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 — Copy Fail Repo educativo con implementac...

CVE-2026-31719

A flaw was found in the krb5enc module of the Linux kernel's crypto subsystem. When performing asynchronous decryption, the krb5encdispatchdecrypt function incorrectly bypasses the integrity verification hash check. This issue occurs because the skcipher completion handler signals completion...

CVE-2026-31699

A flaw was found in the Linux kernel's crypto: ccp module. A local user could exploit a vulnerability where the system attempts to copy a Certificate Signing Request CSR to userspace even after a Platform Security Processor PSP command has failed. This can lead to a slab-out-of-bounds write,...

CVE-2026-43045

A flaw was found in the Linux kernel's mshv module. Incorrect error handling in the mshvregionpin function can lead to memory corruption. This occurs when the pinuserpagesfast operation returns a partial pin count, causing the system to use incompletely pinned memory regions. This issue can also...

CVE-2026-43044

A flaw was found in the Linux kernel's crypto: caam module. When processing HMAC Keyed-Hash Message Authentication Code keys longer than the block size, the memory allocated for the key copy was not correctly aligned for Direct Memory Access DMA operations. This oversight could lead to DMA...

CVE-2026-43041

A flaw was found in the Linux kernel's qrtr networking module. This vulnerability occurs when the radixtreecreate function allocates intermediate nodes that are not properly reclaimed if subsequent memory allocations fail. This leads to orphaned internal nodes and a memory leak. This memory leak...

CVE-2026-43033

A flaw was found in the Linux kernel's authencesn cryptographic module. When performing out-of-place decryption where source and destination data buffers are different, the system incorrectly handles high-order sequence bits. This leads to improper data rearrangement before hashing, which could...

CVE-2026-7586

A weakness has been identified in Open5GS up to 2.7.7. Affected is the function ogsidgetvalue of the file /src/amf/nudm-handler.c of the component AMF. This manipulation causes denial of service. Remote exploitation of the attack is possible. The exploit has been made available to the public and...

CVE-2026-43050

In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix use-after-free in sockdefreadable A race condition exists between lecatmclose setting priv-lecd to NULL and concurrent access to priv-lecd in sendtolecd, lechandlebridge, and lecatmsend. When the socket is freed via...