Lucene search
+L
UbuntucveRecent

71772 matches found

UbuntuCve
UbuntuCve
•added 2026/06/24 6:17 p.m.•3 views

CVE-2026-49851

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, Mistune is vulnerable to a CPU exhaustion DoS due to superlinear approximately On² behavior in parselinktext. When parsing Markdown containing many consecutive characters, parselinktext repeatedly scans the input usin...

8.7CVSS7AI score0.0035EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53052

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: qdsp6: topology: check widget type before accessing data Check widget type before accessing the private data, as this could a virtual widget which is no associated with a dsp graph, container and module. Accessing...

6AI score0.00172EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53116

In the Linux kernel, the following vulnerability has been resolved: s390/ap: use generic driveroverride infrastructure When the AP masks are updated via apmaskstore or aqmaskstore, apbusrevisebindings is called after apattrmutex has been released. This calls aprevisereserved, which accesses the...

6AI score0.00145EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53047

In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect sizeof in phys array reallocation The krealloc call for capinfo-phys in eficapsulesetupinfo uses sizeofphysaddrt instead of sizeofphysaddrt, which might be causing an undersized allocation. The...

6.1AI score0.00195EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53099

In the Linux kernel, the following vulnerability has been resolved: bpf: Switch CONFIGCFICLANG to CONFIGCFI This was renamed in commit 23ef9d439769 "kcfi: Rename CONFIGCFICLANG to CONFIGCFI" as it is now a compiler-agnostic option. Using the wrong name results in the code getting compiled out...

6AI score0.00156EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53082

In the Linux kernel, the following vulnerability has been resolved: net: hamradio: 6pack: fix uninit-value in sixpackreceivebuf sixpackreceivebuf does not properly skip bytes with TTY error flags. The while loop iterates through the flags buffer but never advances the data pointer cp, and passes...

6AI score0.00164EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53000

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

7.8CVSS6AI score0.00129EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52979

In the Linux kernel, the following vulnerability has been resolved: net: psp: check for device unregister when creating assoc pspassocdevicegetlocked obtains a pspdev reference via pspdevgetforsock which uses pspdevtryget under RCU; it then acquires psd-lock and drops the reference. Before the lo...

5.5CVSS6AI score0.00093EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52986

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntracksip: don't use simplestrtoul Replace unsafe port parsing in epaddrlen, ctsipparseheaderuri, and ctsipparserequest with a new sipparseport helper that validates each digit against the buffer limit, eliminatin...

9.8CVSS6AI score0.00559EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53120

In the Linux kernel, the following vulnerability has been resolved: PCI: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which can cause ...

6AI score0.00157EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53008

In the Linux kernel, the following vulnerability has been resolved: ice: fix race condition in TX timestamp ring cleanup Fix a race condition between icefreetxtstampring and icetxmap that can cause a NULL pointer dereference. icefreetxtstampring currently clears the ICETXFLAGSTXTIME flag after...

4.7CVSS6AI score0.00077EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53025

In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free on cdev close This addresses a use-after-free bug when a raw bundle is disconnected but its chardev is still opened by an application. When the application releases the cdev, it causes the followi...

7.8CVSS6AI score0.00129EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53111

In the Linux kernel, the following vulnerability has been resolved: bpf: testrun: Fix the null pointer dereference issue in bpflwtxmitpushencap The bpflwtxmitpushencap helper needs to access skbdstskb-dev to calculate the needed headroom: err = skbcowheadskb, len + LLRESERVEDSPACEskbdstskb-dev; B...

6AI score0.00176EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52970

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: fix missing expect put in obj eval nftctexpectobjeval allocates an expectation and may call nfctexpectrelated, but never drops its local reference. Add nfctexpectputexp before return to balance allocation...

5.5CVSS6AI score0.00128EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52981

In the Linux kernel, the following vulnerability has been resolved: neigh: let neighxmit take skb ownership neighxmit always releases the skb, except when no neighbour table is found. But even the first added user of neighxmit mpls relied on neighxmit to release the skb or queue it for tx. sashik...

7.5CVSS6AI score0.00539EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52964

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans The USB MIDI 2.0 endpoint parser has the same descriptor walking pattern as the legacy MIDI parser. It validates bLength against bNumGrpTrmBlock before reading...

5.5CVSS6AI score0.00127EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52988

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...

7.1CVSS6AI score0.00122EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53086

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix racing timeout handler The bcmgenettimeout handler tries to take down all tx queues when a single queue times out. This is over zealous and causes many race conditions with queues that are still chugging along...

9.8CVSS6AI score0.00386EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52974

In the Linux kernel, the following vulnerability has been resolved: net: tls: fix strparser anchor skb leak on offload RX setup failure When tlssetdeviceoffloadrx fails at tlsdevadd, the error path calls tlsswfreeresourcesrx to clean up the SW context that was initialized by tlssetswoffload. This...

7.5CVSS6AI score0.00506EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52948

In the Linux kernel, the following vulnerability has been resolved: i2c: dev: prevent integer overflow in I2CTIMEOUT ioctl While fuzzing with Syzkaller, a persistent scheduletimeout: wrong timeout value warning was observed, accompanied by SMBus controller state machine corruption. The I2CTIMEOUT...

5.5CVSS6AI score0.00129EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52982

In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: fix use-after-free in rtl8150startxmit syzbot reported a KASAN slab-use-after-free read in rtl8150startxmit when accessing skb-len for tx statistics after usbsubmiturb has been called: BUG: KASAN:...

9.8CVSS6AI score0.00543EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53113

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix memory leaks in beacon template setup The functions ath11kmacsetupbcntmplema and ath11kmacsetupbcntmplmbssid allocate memory for beacon templates but fail to free it when parameter setup returns an error. Since...

6AI score0.00159EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53078

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix same-register dst/src OOB read and pointer leak in sockops When a BPF sockops program accesses ctx fields with dstreg == srcreg, the SOCKOPSGETSK and SOCKOPSGETFIELD macros fail to zero the destination register in the...

7.8CVSS6AI score0.00112EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•5 views

CVE-2026-52958

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in osdmapdecode When decoding osdstate and osdweight from an incoming osdmap in osdmapdecode, both are decoded for each osd, i.e., map-maxosd times. The cephdecodeneed check only accoun...

9.1CVSS6AI score0.00544EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53087

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix leaking freebds While reclaiming the tx queue we fast forward the write pointer to drop any data in flight. These dropped frames are not added back to the pool of free bds. We also need to tell the netdev that ...

7.5CVSS6AI score0.00376EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53085

In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded taskvma iterator The open-coded taskvma iterator reads task-mm locklessly and acquires mmapreadtrylock but never calls mmget. If the task exits concurrently, the mmstruct can be freed as it is...

7.8CVSS6AI score0.00113EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53012

In the Linux kernel, the following vulnerability has been resolved: nexthop: fix IPv6 route referencing IPv4 nexthop syzbot reported a panic 1 2. When an IPv6 nexthop is replaced with an IPv4 nexthop, the hasv4 flag of all groups containing this nexthop is not updated. This is because...

5.5CVSS6AI score0.0013EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52946

In the Linux kernel, the following vulnerability has been resolved: fs/fcntl: fix SOFTIRQ-unsafe lock order in fasync signaling A SOFTIRQ-safe to SOFTIRQ-unsafe lock order deadlock can occur in sendsigio and sendsigurg when a process group receives a signal. When FASYNC is configured for a proces...

7.5CVSS6AI score0.00461EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53064

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix null-deref with concurrent writes in passthrough mode In passthrough mode, when dm-cache starts to invalidate a cache entry and bio prison cell lock fails due to concurrent write to the same cached block, mg-cell...

6AI score0.00176EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53048

In the Linux kernel, the following vulnerability has been resolved: gfs2: prevent NULL pointer dereference during unmount When flushing out outstanding glock work during an unmount, gfs2logflush can be called when sdp-sdjdesc has already been deallocated and sdp-sdjdesc is NULL. Commit 35264909e9...

6AI score0.00172EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53007

In the Linux kernel, the following vulnerability has been resolved: ice: fix potential NULL pointer deref in error path of icesetringparam icesetringparam nullifies tstampring of temporary txrings, without clearing ICETXRINGFLAGSTXTIME bit. When ICETXRINGFLAGSTXTIME is set and the subsequent...

5.5CVSS6AI score0.00107EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53029

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: prevent uninitialized lcn caused by zero len syzbot reported a uninit-value in ntfsiomapbegin 1. Since runs was not touched yet, runlookupentry immediately fails and returns false, which makes the value of "len" 0...

5.5CVSS6AI score0.00107EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•4 views

CVE-2026-53106

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not allow deleting local storage in NMI Currently, local storage may deadlock when deferring freeing selem or local storage through kfreercu, callrcu or callrcutaskstrace in NMI or reentrant. Since deleting selem in NMI i...

6AI score0.00145EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53101

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix potential deadlock in mt7921rocabortsync rocabortsync can deadlock with rocwork. rocwork holds dev-mt76.mutex, while cancelworksync waits for rocwork to finish. If the caller already owns the same mutex,...

6AI score0.00168EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53102

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix memory leak after mt76connacmcuallocstareq mt76connacmcuallocstareq allocates an skb which is expected to be freed eventually by mt76mcuskbsendmsg. However, currently if an intermediate function fails before...

6AI score0.00156EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53005

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AFUNIX GC. When a socket in SOCKMAP receives skb with inflight fd, skpsockverdictdataready looks up the mapped socket and enqueue skb to its...

7.8CVSS6AI score0.00129EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53051

In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Fix CBB timeout caused by DBI access before core power-on When PERST is deasserted twice assert - deassert - assert - deassert, a CBB Control Backbone timeout occurs at DBI register offset 0x8bc PCIEMISCCONTROL1OFF...

6AI score0.00175EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53056

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: fix mismatch between power and frequency During DPU runtime suspend, calling devpmoppsetratedev, 0 drops the MMCX rail to MINSVS while the core clock frequency remains at its original highest rate. When runtime resum...

6AI score0.0018EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52967

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

8.1CVSS6AI score0.00398EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53105

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL vif dereference in mt7925macwritetxwi Check for a NULL vif before accessing ieee80211vifismldvif to avoid a potential kernel panic in scenarios where vif might not be initialized...

6AI score0.00168EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53089

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in offloaded map/prog info fill When querying info for an offloaded BPF map or program, bpfmapoffloadinfofillns and bpfprogoffloadinfofillns obtain the network namespace with getnetdevnetoffmap-netdev...

6AI score0.00145EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52949

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttmboshrink infinite LRU walk on backup failure Apply the same fix as b2ed01e7ad "drm/ttm: Fix ttmboswapout infinite LRU walk on swapout failure" to the ttmboshrink path. Move delbulkmove from before the backup to...

5.5CVSS6AI score0.00112EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•4 views

CVE-2026-53010

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2open during durable reconnect In smb2open, the call to ksmbdputdurablefdfp drops the reference to the durable file descriptor early during the durable reconnect process. If an error occurs...

9.8CVSS5.9AI score0.00435EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53065

In the Linux kernel, the following vulnerability has been resolved: ASoC: sti: use managed regmapfield allocations The regmapfield objects allocated at player init are never freed and may leak resources if the driver is removed. Switch to devmregmapfieldalloc to automatically limit the lifetime o...

6AI score0.00172EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53076

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix OOB in pcpuinitvalue An out-of-bounds read occurs when copying element from a BPFMAPTYPECGROUPSTORAGE map to another pcpu map with the same valuesize that is not rounded up to 8 bytes. The issue happens when: 1. A...

7.1CVSS6AI score0.00116EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53109

In the Linux kernel, the following vulnerability has been resolved: powerpc/pgtable-frag: Fix bad page state in ptefragdestroy powerpc uses ptfragrefcount as a reference counter for tracking it's pte and pmd page table fragments. For PTE table, in case of Hash with 64K pagesize, we have 16...

6AI score0.00161EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52963

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI endpoint descriptor scans sndusbmidigetmsinfo validates the internal MIDIStreaming endpoint descriptor size before using baAssocJackID, but the descriptor walker can still return a class-specific...

5.5CVSS6AI score0.00128EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52991

In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release and pressure write A potential race condition exists between pressure write and cgroup file release regarding the priv member of struct kernfsopenfile, which triggers the uaf reported in 1...

7.8CVSS6.1AI score0.00107EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-52976

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xeexecqueuecreateioctl Two error handling issues exist in xeexecqueuecreateioctl: 1. When xehwenginegroupaddexecqueue fails, the error path jumps to putexecqueue which skips xeexecqueuekill. If the VM...

7.8CVSS6AI score0.00134EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/06/24 5:17 p.m.•3 views

CVE-2026-53093

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix error pointer dereference The function brcmfchipaddcore can return an error pointer and is not checked. Add checks for error pointer. Detected by Smatch:...

6AI score0.00176EPSS
Exploits0References2
Total number of security vulnerabilities71772