Lucene search
K

1585 matches found

UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.10 views

CVE-2026-43108

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreglocpfrreqei It looks element length declared in servreglocpfrreqei for reason not matching servreglocpfrreq's reason field due which we could observe decoding error on PD crash...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.10 views

CVE-2026-43092

In the Linux kernel, the following vulnerability has been resolved: xsk: validate MTU against usable frame size on bind AFXDP bind currently accepts zero-copy pool configurations without verifying that the device MTU fits into the usable frame space provided by the UMEM chunk. This becomes a...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.9 views

CVE-2026-43080

In the Linux kernel, the following vulnerability has been resolved: l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series 1. The actual issue is an overflow of 16-bit UDP length field, and it exists in the upstream code. My series added a debug WARN with an overflow...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.10 views

CVE-2026-43112

In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifssanitizeprepath When cifssanitizeprepath is called with an empty string or a string containing only delimiters e.g., "/", the current logic attempts to check cursor2 - 1 before cursor2...

8.8CVSS5.7AI score0.00352EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.8 views

CVE-2026-43117

In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock from dentry in event btrfssyncfile If overlay is used on top of btrfs, dentry-dsb translates to overlay's super block and fsid assignment will lead to a crash. Use fileinodefile-isb to...

9.1CVSS5.8AI score0.00399EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.10 views

CVE-2026-43104

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4savehangstate encounters an early return condition, it returns without freeing the previously allocated kernelstate, leaking memory. Add the missing kfree calls by...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.9 views

CVE-2026-43102

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix memory leak in airohaqdmarxprocess If an error occurs on the subsequents buffers belonging to the non-linear part of the skb e.g. due to an error in the payload length reported by the NIC or if we consumed all th...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.9 views

CVE-2026-43100

In the Linux kernel, the following vulnerability has been resolved: bridge: guard local VLAN-0 FDB helpers against NULL vlan group When CONFIGBRIDGEVLANFILTERING is not set, brvlangroup and nbpvlangroup return NULL brprivate.h stub definitions. The BRBOOLOPTFDBLOCALVLAN0 toggle code is compiled...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.10 views

CVE-2026-43103

In the Linux kernel, the following vulnerability has been resolved: net: lapbether: handle NETDEVPRETYPECHANGE lapbethdatatransmit expects the underlying device type to be ARPHRDETHER. Returning NOTIFYBAD from lapbethdeviceevent makes sure bonding driver can not break this expectation...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.8 views

CVE-2026-43087

In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Disable all pin interrupts during probe A chip being probed may have the interrupt-on-change feature enabled on some of its pins, for example after a reboot. This can cause the chip to generate interrupts for...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.8 views

CVE-2026-43076

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate inline data isize during inode read When reading an inode from disk, ocfs2validateinodeblock performs various sanity checks but does not validate the size of inline data. If the filesystem is corrupted, an inode's...

7.8CVSS5.8AI score0.00131EPSS
Exploits0References2
OSV
OSV
added 2026/05/06 10:16 a.m.5 views

UBUNTU-CVE-2026-43092

In the Linux kernel, the following vulnerability has been resolved: xsk: validate MTU against usable frame size on bind AFXDP bind currently accepts zero-copy pool configurations without verifying that the device MTU fits into the usable frame space provided by the UMEM chunk. This becomes a...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.10 views

CVE-2026-43111

In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccatreportevent roccatreportevent iterates over the device-readers list without holding the readerslock. This allows a concurrent roccatrelease to remove and free a reader while it's still bei...

7.8CVSS5.7AI score0.00117EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.9 views

CVE-2026-43083

In the Linux kernel, the following vulnerability has been resolved: net: ioam6: fix OOB and missing lock When trace-type.bit6 is set: if trace-type.bit6 ... queue = skbgettxqueuedev, skb; qdisc = rcudereferencequeue-qdisc; This code can lead to an out-of-bounds access of the dev-tx array when...

9.1CVSS5.8AI score0.00442EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.9 views

CVE-2026-43081

In the Linux kernel, the following vulnerability has been resolved: net: ipa: fix GENERICCMD register field masks for IPA v5.0+ Fix the field masks to match the hardware layout documented in downstream GSI GSIV30EEnGSIEEGENERICCMD. Notably this fixes a WARN I was seeing when I tried to send "stop...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.11 views

CVE-2026-43086

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix NULL deref in ipvsaddservice error path When ipvsbindscheduler succeeds in ipvsaddservice, the local variable sched is set to NULL. If ipvsstartestimator subsequently fails, the outerr cleanup calls...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/05 4:16 p.m.7 views

CVE-2026-43072

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: platformgetirqbyname returns an int platformgetirqbyname will return a negative value if an error happens, so it should be checked and not just passed directly into devmrequestthreadedirq hoping all will be ok...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/05 4:16 p.m.8 views

CVE-2026-43066

In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4fcreplayinode error paths During code review, Joseph found that ext4fcreplayinode calls ext4getfcinodeloc to get the inode location, which holds a reference to iloc.bh that must be released via brels...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/05 3:29 p.m.7 views

CVE-2026-43072

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: platformgetirqbyname returns an int platformgetirqbyname will return a negative value if an error happens, so it should be checked and not just passed directly into devmrequestthreadedirq hoping all will be ok...

5.5CVSS5.7AI score0.00114EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/05 3:29 p.m.4 views

CVE-2026-43071

In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket to two There is an OOB read problem on dentryhashtable when user sets 'dhashentries=1': BUG: unable to handle page fault for address: ffff888b30b774b0 PF: supervisor read access in kerne...

9.1CVSS5.7AI score0.0039EPSS
Exploits0
Rows per page
Query Builder