Lucene search
K
SusecveRecent

59178 matches found

SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52966

In the Linux kernel, the following vulnerability has been resolved: drm: Replace old pointer to new idr Commit 5e28b7b94408 introduced a logical error by failing to replace the newly generated IDR pointer to old id's pointer at the correct location within the "change handle" logic; this resulted ...

6AI score0.00186EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•6 views

SUSE CVE-2026-52967

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

8.1CVSS5.8AI score0.00398EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52968

In the Linux kernel, the following vulnerability has been resolved: KVM: s390: pci: fix GAIT table indexing due to double-scaling pointer arithmetic kvms390pciaifenable, kvms390pciaifdisable, and aenhostforward index the GAIT by manually multiplying the index with sizeofstruct zpcigaite. Since...

5.8AI score0.0018EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52969

In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvmresetdirtygfn kvmresetdirtygfn guards the gfn range with if !memslot || offset + flsmask = memslot-npages return; but offset is u64 and the addition is unchecked. The check can be silently bypasse...

5.8AI score0.00147EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52971

In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in gettimestamp Move the phc-active check and resp pointer assignment to after acquiring the spinlock. Previously, phc-active was checked without holding the lock, and resp was cached...

7.8CVSS5.8AI score0.00133EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-52972

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000...

5.8AI score0.0014EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52990

In the Linux kernel, the following vulnerability has been resolved: fsnotify: fix inode reference leak in fsnotifyrecalcmask fsnotifyrecalcmask fails to handle the return value of fsnotifyrecalcmask, which may return an inode pointer that needs to be released via fsnotifydropobject when the...

5.8AI score0.00175EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52991

In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release and pressure write A potential race condition exists between pressure write and cgroup file release regarding the priv member of struct kernfsopenfile, which triggers the uaf reported in 1...

7.8CVSS6AI score0.00104EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-52992

In the Linux kernel, the following vulnerability has been resolved: fs/adfs: validate nzones in adfsvalidatebblk Reject ADFS disc records with a zero zone count during boot block validation, before the disc record is used. When nzones is 0, adfsreadmap passes it to kmallocarray0, ... which return...

5.8AI score0.00184EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52993

In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...

9.8CVSS5.8AI score0.00351EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-52994

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix MSGZEROCOPY pinned-pages accounting virtiotransportinitzcopyskb uses iter-count as the size argument for msgzerocopyrealloc, which in turn passes it to mmaccountpinnedpages for RLIMITMEMLOCK accounting. However,...

5.8AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52995

In the Linux kernel, the following vulnerability has been resolved: net/rds: zero per-item info buffer before handing it to visitors rdsforeachconninfo and rdswalkconnpathinfo both hand a caller-allocated on-stack u64 buffer to a per-connection visitor and then copy the full itemlen bytes back to...

5.9AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•6 views

SUSE CVE-2026-52996

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix durable fd leak on ClientGUID mismatch in durable v2 open ksmbdlookupfdcguid returns a ksmbdfile with its refcount incremented via ksmbdfpget. parsedurablehandlecontext in the DURABLEREQV2 case properly releases this...

6AI score0.00188EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•6 views

SUSE CVE-2026-52997

In the Linux kernel, the following vulnerability has been resolved: net/sched: schdualpi2: drain both C-queue and L-queue in dualpi2change Fix dualpi2change to correctly enforce updated limit and memlimit values after a configuration change of the dualpi2 qdisc. Before this patch, dualpi2change...

5.7AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52998

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix potential NULL dereference in ttl check The nfosfttl function accessed skb-dev to perform a local interface address lookup without verifying that the device pointer was valid. Additionally, the...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-52999

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix out-of-bounds read on option matching In nfosfmatch, the nfosfhdrctx structure is initialized once and passed by reference to nfosfmatchone for each fingerprint checked. During TCP option parsing,...

9.1CVSS5.8AI score0.00521EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53000

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53001

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict several matches to inet family This is a partial revert of: commit ab4f21e6fb1c "netfilter: xtables: use NFPROTOUNSPEC in more extensions" to allow ipv4 and ipv6 only. - xtmac - xtowner - xtphysdev...

5.8AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•7 views

SUSE CVE-2026-53002

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage Replace it with scnprintf, the buffer sizes are expected to be large enough to hold the result, no need for snprintf+overflow check. Increase buffer size in manglecontentlen while at it...

9.8CVSS5.9AI score0.00351EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53003

In the Linux kernel, the following vulnerability has been resolved: pppoe: drop PFC frames RFC 2516 Section 7 states that Protocol Field Compression PFC is NOT RECOMMENDED for PPPoE. In practice, pppd does not support negotiating PFC for PPPoE sessions, and the current PPPoE driver assumes an...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53004

In the Linux kernel, the following vulnerability has been resolved: sctp: fix OOB write to userspace in sctpgetsockoptpeerauthchunks sctpgetsockoptpeerauthchunks checks that the caller's optval buffer is large enough for the peer AUTH chunk list with if len gauthchunks, which lives at offset...

6AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53005

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AFUNIX GC. When a socket in SOCKMAP receives skb with inflight fd, skpsockverdictdataready looks up the mapped socket and enqueue skb to its...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53006

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6rcv Caching saddr and daddr before pskbpull is problematic since skb-head can change. Remove these temporary variables: - We only access &ipv6hdrskb-saddr and &ipv6hdrskb-daddr when netdbgratelimit...

9.8CVSS5.8AI score0.00377EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53007

In the Linux kernel, the following vulnerability has been resolved: ice: fix potential NULL pointer deref in error path of icesetringparam icesetringparam nullifies tstampring of temporary txrings, without clearing ICETXRINGFLAGSTXTIME bit. When ICETXRINGFLAGSTXTIME is set and the subsequent...

5.8AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53008

In the Linux kernel, the following vulnerability has been resolved: ice: fix race condition in TX timestamp ring cleanup Fix a race condition between icefreetxtstampring and icetxmap that can cause a NULL pointer dereference. icefreetxtstampring currently clears the ICETXFLAGSTXTIME flag after...

5.8AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•7 views

SUSE CVE-2026-53009

In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of txbuf skb If icetso or icetxcsum fail, the error path in icexmitframering frees the skb, but the 'first' txbuf still points to it and is marked as valid ICETXBUFSKB. 'nexttouse' remains unchanged, so the...

7.8CVSS5.9AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53010

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2open during durable reconnect In smb2open, the call to ksmbdputdurablefdfp drops the reference to the durable file descriptor early during the durable reconnect process. If an error occurs...

9.8CVSS5.8AI score0.00435EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53011

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix use-after-free in advancesched on schedule switch In advancesched, when shouldchangeschedules returns true, switchschedules is called to promote the admin schedule to oper. switchschedules queues the old op...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53012

In the Linux kernel, the following vulnerability has been resolved: nexthop: fix IPv6 route referencing IPv4 nexthop syzbot reported a panic 1 2. When an IPv6 nexthop is replaced with an IPv4 nexthop, the hasv4 flag of all groups containing this nexthop is not updated. This is because...

5.8AI score0.00185EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•6 views

SUSE CVE-2026-53013

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix macvlangetsize not reserving space for IFLAMACVLANBCCUTOFF macvlangetsize does not account for IFLAMACVLANBCCUTOFF, but macvlanfillinfo conditionally includes it when port-bccutoff != 1. This causes nlaputs32 to fail...

5.8AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53014

In the Linux kernel, the following vulnerability has been resolved: net/sched: actmirred: fix wrong device for macheaderxmit check in tcfblockcastredir In tcfblockcastredir, when iterating block ports to redirect packets to multiple devices, the macheaderxmit flag is queried from the wrong device...

5.8AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53015

In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...

5.8AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53016

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsize AFALG rfc3686-ctr-aes-ccp requests pass an 8-byte IV to the driver. ccpaescomplete restores AESBLOCKSIZE bytes into the caller's IV buffer while RFC3686 skciphers expose an 8-byte IV, s...

7.8CVSS5.8AI score0.00132EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53017

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix data loss caused by incorrect use of natentry flag Data loss can occur when fsync is performed on a newly created file before any checkpoint has been written concurrently with a checkpoint operation. The scenario is as...

5.8AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53018

In the Linux kernel, the following vulnerability has been resolved: f2fs: avoid reading already updated pages during GC We found the following issue during fuzz testing: page: refcount:3 mapcount:0 mapping:00000000b6e89c65 index:0x18b2dc pfn:0x161ba9 memcg:f8ffff800e269c00 aops:f2fsmetaaops ino:2...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53019

In the Linux kernel, the following vulnerability has been resolved: clk: spacemit: ccumix: fix inverted condition in ccumixtriggerfc Fix inverted condition that skips frequency change trigger, causing kernel panics during cpufreq scaling...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53020

In the Linux kernel, the following vulnerability has been resolved: um: Fix potential race condition in TLB sync During the TLB sync, we need to traverse and modify the page table, so we should hold the page table lock. Since full SMP support for threads within the same process is still missing,...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53021

In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix integer overflow in UNMAP bounds check sbcexecuteunmap checks LBA + range does not exceed the device capacity, but does not guard against LBA + range wrapping around on 64-bit overflow. Add an overflow che...

5.9AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53022

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.8AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53023

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: terminate the cached volume label after UTF-8 conversion ntfsfillsuper loads the on-disk volume label with utf16stoutf8s and stores the result in sbi-volume.label. The converted label is later exposed through...

5.8AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53024

In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free if write is called after disconnect If a user writes to the chardev after disconnect has been called, the kernel panics with the following trace with CONFIGINITONFREEDEFAULTON=y: BUG: kernel NULL...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53025

In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free on cdev close This addresses a use-after-free bug when a raw bundle is disconnected but its chardev is still opened by an application. When the application releases the cdev, it causes the followi...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53026

In the Linux kernel, the following vulnerability has been resolved: NFSD: fix nfs4file access extra count in nfsd4addrdaccesstowrdeleg In nfsd4addrdaccesstowrdeleg, if fp-fifdsORDONLY is already set by another thread, nfs4filegetaccess should not be called to increment the nfs4file access count...

7.5CVSS5.8AI score0.00432EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53028

In the Linux kernel, the following vulnerability has been resolved: usb: typec: Fix error pointer dereference The variable tps-partner is checked for an error pointer and then if it is, it sends an error message but does not return and then immediately dereferenced a few lines below: tps-partner ...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53030

In the Linux kernel, the following vulnerability has been resolved: i3c: master: renesas: Fix memory leak in renesasi3ci3cxfers The xfer structure allocated by renesasi3callocxfer was never freed in the renesasi3ci3cxfers function. Use the freekfree cleanup attribute to automatically free the...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53032

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL deref in mapkptrmatchtype for scalar regs Commit ab6c637ad027 "bpf: Fix a bpfkptrxchg issue with local kptr" refactored mapkptrmatchtype to branch on btfiskernel before checking basetype. A scalar register stored in...

5.8AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•5 views

SUSE CVE-2026-53034

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix afunix null-ptr-deref in proto update unixstreamconnect sets skstate WRITEONCEsk-skstate, TCPESTABLISHED before it assigns a peer unixpeersk = newsk. skstate == TCPESTABLISHED makes sockmapskstateallowed believe...

5.5AI score0.0018EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53035

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix afunix iter deadlock bpfiterunixseqshow may deadlock when locksockfast takes the fast path and the iter prog attempts to update a sockmap. Which ends up spinning at sockmapupdateelem's bhlocksock: WARNING:...

5.7AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53037

In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix deadlock in hidpostreset You can build a USB device that includes a HID component and a storage or UAS component. The components can be reset only together. That means that hidprereset and hidpostreset are in the...

5.8AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 6 days ago•4 views

SUSE CVE-2026-53042

In the Linux kernel, the following vulnerability has been resolved: fwctl: Fix class init ordering to avoid NULL pointer dereference on device removal CXL is linked before fwctl in drivers/Makefile. Both use moduleinit, so cxlpcidriverinit runs first. When cxlpciprobe calls fwctlregister and then...

5.8AI score0.00166EPSS
Exploits0References3
Total number of security vulnerabilities59178