Lucene search
K

1585 matches found

osv
osv
added 2026/05/06 12:16 p.m.6 views

UBUNTU-CVE-2026-43225

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211informbssframe may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix th...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References9
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.10 views

CVE-2026-43248

In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhostvdpa Remove duplication by consolidating these here. This reduces the posibility of a parent driver missing them. While we're at it, fix a bug in vdpasim where a valid ASID can be assign...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.10 views

CVE-2026-43225

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211informbssframe may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix th...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.12 views

CVE-2026-43246

In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9906: Fix potential memory leak in tw9906probe In one of the error paths in tw9906probe, the memory allocated in v4l2ctrlhandlerinit and v4l2ctrlnewstd is not freed. Fix that by calling v4l2ctrlhandlerfree on the...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References2
osv
osv
added 2026/05/06 12:16 p.m.9 views

UBUNTU-CVE-2026-43181

In the Linux kernel, the following vulnerability has been resolved: gpio: sysfs: fix chip removal with GPIOs exported over sysfs Currently if we export a GPIO over sysfs and unbind the parent GPIO controller, the exported attribute will remain under /sys/class/gpio because once we remove the pare...

5.5CVSS5.7AI score0.00126EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.10 views

CVE-2026-43142

In the Linux kernel, the following vulnerability has been resolved: media: iris: gen1: Destroy internal buffers after FW releases After the firmware releases internal buffers, the driver was not destroying them. This left stale allocations that were no longer used, especially across resolution...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.8 views

CVE-2026-43270

In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix a reference leak bug in mtkmdpremove In mtkmdpprobe, vpugetplatdevice increases the reference count of the returned platform device. Add platformdeviceput to prevent reference leak...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.11 views

CVE-2026-43139

In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6getsaddr xfrm6getsaddr does not check the return value of ipv6devgetsaddr. When ipv6devgetsaddr fails to find a suitable source address returns -EADDRNOTAVAIL, saddr-in6 is left uninitialize...

8.6CVSS5.7AI score0.00375EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.11 views

CVE-2026-43233

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackh323: fix OOB read in decodechoice In decodechoice, the boundary check before getlen uses the variable len, which is still 0 from its initialization at the top of the function: unsigned int type, ext, len = ...

8.2CVSS5.8AI score0.00463EPSS
Exploits0References2
osv
osv
added 2026/05/06 12:16 p.m.5 views

UBUNTU-CVE-2026-43194

In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udpgrofrglist.sh and udpgrobench.sh are the flakiest tests currently in NIPA. They fail in the same exact way, TCP GRO test stalls occasionally and the test gets killed after 10min. These...

7.5CVSS5.7AI score0.00533EPSS
Exploits0References9
osv
osv
added 2026/05/06 12:16 p.m.8 views

UBUNTU-CVE-2026-43123

In the Linux kernel, the following vulnerability has been resolved: fbcon: check return value of con2fbacquirenewinfo If fbconopen fails when called from con2fbacquirenewinfo then info-fbconpar pointer remains NULL which is later dereferenced. Add check for return value of the function...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References9
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.8 views

CVE-2026-43138

In the Linux kernel, the following vulnerability has been resolved: reset: gpio: suppress bind attributes in sysfs This is a special device that's created dynamically and is supposed to stay in memory forever. We also currently don't have a devlink between it and the actual reset consumer. Suppre...

7.8CVSS5.8AI score0.00134EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.9 views

CVE-2026-43177

In the Linux kernel, the following vulnerability has been resolved: media: ipu6: Fix RPM reference leak in probe error paths Several error paths in ipu6pciprobe were jumping directly to outipu6busdeldevices without releasing the runtime PM reference. Add pmruntimeputsync before cleaning up other...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References2
osv
osv
added 2026/05/06 12:16 p.m.10 views

UBUNTU-CVE-2026-43259

In the Linux kernel, the following vulnerability has been resolved: phy: fsl-imx8mq-usb: set platform driver data Add missing platformsetdrvdata as the data will be used in remove...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References3
osv
osv
added 2026/05/06 12:16 p.m.7 views

UBUNTU-CVE-2026-43197

In the Linux kernel, the following vulnerability has been resolved: netconsole: avoid OOB reads, msg is not nul-terminated msg passed to netconsole from the console subsystem is not guaranteed to be nul-terminated. Before recent commit 7eab73b18630 "netconsole: convert to NBCON console...

9.1CVSS5.7AI score0.00462EPSS
Exploits0References6
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.10 views

CVE-2026-43224

In the Linux kernel, the following vulnerability has been resolved: iouring/zcrx: fix sgtable leak on mapping failures In an unlikely case when iopopulateareadma fails, which could only happen on a PAGEPOOL32BITARCHWITH64BITDMA machine, iozcrxmaparea will have an initialised and not freed table. ...

5.5CVSS5.7AI score0.00126EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.9 views

CVE-2026-43192

In the Linux kernel, the following vulnerability has been resolved: dm mpath: Add missing dmputdevice when failing to get scsi dh name When commit fd81bc5cca8f "scsi: devicehandler: Return error pointer in scsidhattachedhandlername" added code to fail parsing the path if scsidhattachedhandlername...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.7 views

CVE-2026-43279

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB writes at silencing At silencing the playback URB packets in the implicit fb mode before the actual playback, we blindly assume that the received packets fit with the buffer size. But whe...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/06 12:16 p.m.9 views

CVE-2026-43190

In the Linux kernel, the following vulnerability has been resolved: netfilter: xttcpmss: check remaining length before reading optlen Quoting reporter: In net/netfilter/xttcpmss.c lines 53-68, the TCP option parser reads opi+1 directly without validating the remaining option length. If the last...

8.2CVSS5.9AI score0.00463EPSS
Exploits0References2
osv
osv
added 2026/05/06 10:16 a.m.5 views

UBUNTU-CVE-2026-43092

In the Linux kernel, the following vulnerability has been resolved: xsk: validate MTU against usable frame size on bind AFXDP bind currently accepts zero-copy pool configurations without verifying that the device MTU fits into the usable frame space provided by the UMEM chunk. This becomes a...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
Rows per page
Query Builder