CVEs from 2026
Total
13,535
critical
critical 1,179
high
high 4,321
medium
medium 4,214
low
low 455
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 418
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 166
- commerce 104
- commerce_b2b 89
- magento 74
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-43409 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: kprobes: avoid crash when rmmod/insmod after ftrace killed After we hit ftrace is killed by some errors, the kernel crash if we r… | |||
| CVE-2026-43404 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: mm: Fix a hmm_range_fault() livelock / starvation problem If hmm_range_fault() fails a folio_trylock() in do_swap_page, trying to… | |||
| CVE-2026-43401 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: cpufreq: intel_pstate: Fix NULL pointer dereference in update_cpu_qos_request() The update_cpu_qos_request() function attempts to… | |||
| CVE-2026-43400 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add upper bound check on user inputs in signal ioctl Huge input values in amdgpu_userq_signal_ioctl can lead to a OOM… | |||
| CVE-2026-43399 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: Fix reference leak in amdgpu_userq_wait_ioctl Drop reference to syncobj and timeline fence when aborting the io… | |||
| CVE-2026-43398 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add upper bound check on user inputs in wait ioctl Huge input values in amdgpu_userq_wait_ioctl can lead to a OOM and… | |||
| CVE-2026-43397 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/bridge: samsung-dsim: Fix memory leak in error path In samsung_dsim_host_attach(), drm_bridge_add() is called to add the brid… | |||
| CVE-2026-43396 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/xe/sync: Fix user fence leak on alloc failure When dma_fence_chain_alloc() fails, properly release the user fence reference t… | |||
| CVE-2026-43395 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/xe/sync: Cleanup partially initialized sync on parse failure xe_sync_entry_parse() can allocate references (syncobj, fence, c… | |||
| CVE-2026-43394 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix cred ref leak in nfsd_nl_listener_set_doit(). nfsd_nl_listener_set_doit() uses get_current_cred() without put_cred(). … | |||
| CVE-2026-43393 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix chunk map leak in btrfs_map_block() after btrfs_chunk_map_num_copies() Fix a chunk map leak in btrfs_map_block(): if w… | |||
| CVE-2026-43392 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: sched_ext: Fix starvation of scx_enable() under fair-class saturation During scx_enable(), the READY -> ENABLED task switching lo… | |||
| CVE-2026-43390 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: nstree: tighten permission checks for listing Even privileged services should not necessarily be able to see other privileged ser… | |||
| CVE-2026-43389 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: mm: memfd_luo: always dirty all folios A dirty folio is one which has been written to. A clean folio is its opposite. Since a c… | |||
| CVE-2026-43387 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-… | |||
| CVE-2026-43382 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid double-rtnl_lock ELP metric worker batadv_v_elp_get_throughput() might be called when the RTNL lock is already … | |||
| CVE-2026-43381 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: nouveau/dpcd: return EBUSY for aux xfer if the device is asleep If we have runtime suspended, and userspace wants to use /dev/drm… | |||
| CVE-2026-43375 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: net: mctp: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while th… | |||
| CVE-2026-43372 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: net: dsa: microchip: Fix error path in PTP IRQ setup If request_threaded_irq() fails during the PTP message IRQ setup, the newly … | |||
| CVE-2026-43371 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: net: macb: Shuffle the tx ring before enabling tx Quanyang observed that when using an NFS rootfs on an AMD ZynqMp board, the roo… | |||
| CVE-2026-43369 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix NULL pointer dereference in device cleanup When GPU initialization fails due to an unsupported HW block IP blocks ma… | |||
| CVE-2026-43367 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix a few more NULL pointer dereference in device cleanup I found a few more paths that cleanup fails due to a NULL vers… | |||
| CVE-2026-43364 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: ublk: fix NULL pointer dereference in ublk_ctrl_set_size() ublk_ctrl_set_size() unconditionally dereferences ub->ub_disk via set_… | |||
| CVE-2026-43363 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: x86/apic: Disable x2apic on resume if the kernel expects so When resuming from s2ram, firmware may re-enable x2apic mode, which m… | |||
| CVE-2026-43361 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort when snapshotting received subvolumes Currently a user can trigger a transaction abort by snapshotti… | |||
| CVE-2026-43360 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort on file creation due to name hash collision If we attempt to create several files with names that re… | |||
| CVE-2026-43359 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort on set received ioctl due to item overflow If the set received ioctl fails due to an item overflow w… | |||
| CVE-2026-43358 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer() Call rcu_read_lock() before exiting the loop i… | |||
| CVE-2026-43357 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: iio: gyro: mpu3050-core: fix pm_runtime error handling The return value of pm_runtime_get_sync() is not checked, allowing the dri… | |||
| CVE-2026-43356 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: iio: imu: adis: Fix NULL pointer dereference in adis_init The adis_init() function dereferences adis->ops to check if the individ… | |||
| CVE-2026-43355 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: iio: light: bh1780: fix PM runtime leak on error path Move pm_runtime_put_autosuspend() before the error check to ensure the PM r… | |||
| CVE-2026-43354 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: iio: proximity: hx9023s: Protect against division by zero in set_samp_freq Avoid division by zero when sampling frequency is unsp… | |||
| CVE-2026-43351 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Eagerly init vgic dist/redist on vgic creation If vgic_allocate_private_irqs_locked() fails for any odd reason, we ex… | |||
| CVE-2026-43349 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid uninit-value access in f2fs_sanity_check_node_footer syzbot reported a f2fs bug as below: BUG: KMSAN: uninit-… | |||
| CVE-2026-43348 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: mshv_vtl: Fix vmemmap_shift exceeding MAX_FOLIO_ORDER When registering VTL0 memory via MSHV_ADD_VTL0_MEMORY, the kernel computes … | |||
| CVE-2026-43346 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is possible to pass through only a PF whic… | |||
| CVE-2026-43344 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix die ID init and look up bugs In snbep_pci2phy_map_init(), in the nr_node_ids > 8 path, uncore_device_t… | |||
| CVE-2026-43343 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_subset: Fix unbalanced refcnt in geth_free geth_alloc() increments the reference count, but geth_free() fails to d… | |||
| CVE-2026-43340 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: comedi: Reinit dev->spinlock between attachments to low-level drivers `struct comedi_device` is the main controlling structure fo… | |||
| CVE-2026-43338 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: reserve enough transaction items for qgroup ioctls Currently our qgroup ioctls don't reserve any space, they just do a tra… | |||
| CVE-2026-43337 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw() dcn401_init_hw() assumes that update_bw_bounding_box() is valid… | |||
| CVE-2026-43335 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: interconnect: qcom: sm8450: Fix NULL pointer dereference in icc_link_nodes() The change to dynamic IDs for SM8450 platform interc… | |||
| CVE-2026-43333 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: bpf: reject direct access to nullable PTR_TO_BUF pointers check_mem_access() matches PTR_TO_BUF via base_type() which strips PTR_… | |||
| CVE-2026-43331 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Disable KCOV instrumentation after load_segments() The load_segments() function changes segment registers, invalidatin… | |||
| CVE-2026-43327 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: USB: dummy-hcd: Fix locking/synchronization error Syzbot testing was able to provoke an addressing exception and crash in the usb… | |||
| CVE-2026-43326 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: sched_ext: Fix SCX_KICK_WAIT deadlock by deferring wait to balance callback SCX_KICK_WAIT busy-waits in kick_cpus_irq_workfn() us… | |||
| CVE-2026-43325 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't send a 6E related command when not supported MCC_ALLOWED_AP_TYPE_CMD is related to 6E support. Do not s… | |||
| CVE-2026-43323 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix zero_vruntime tracking fix John reported that stress-ng-yield could make his machine unhappy and managed to bisec… | |||
| CVE-2026-43320 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix dsc eDP issue [why] Need to add function hook check before use | |||
| CVE-2026-43319 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: spi: spidev: fix lock inversion between spi_lock and buf_lock The spidev driver previously used two mutexes, spi_lock and buf_loc… | |||
| CVE-2026-43318 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify Invalidating a dmabuf will impact other users of the shared BO. In th… | |||
| CVE-2026-43317 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: most: core: fix leak on early registration failure A recent commit fixed a resource leak on early registration failures but for s… | |||
| CVE-2026-43316 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: media: solo6x10: Check for out of bounds chip_id Clang with CONFIG_UBSAN_SHIFT=y noticed a condition where a signed type (literal… | |||
| CVE-2026-43315 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Remove a user-triggerable WARN on nested_svm_load_cr3() succeeding Drop the WARN in svm_set_nested_state() on nested_s… | |||
| CVE-2026-43314 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: dm: remove fake timeout to avoid leak request Since commit 15f73f5b3e59 ("blk-mq: move failure injection out of blk_mq_complete_r… | |||
| CVE-2026-43313 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4() In acpi_processor_errata_piix4(), the pointer dev … | |||
| CVE-2026-43312 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5647: Initialize subdev before controls In ov5647_init_controls() we call v4l2_get_subdevdata, but it is initialize… | |||
| CVE-2026-43311 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: soc/tegra: pmc: Fix unsafe generic_handle_irq() call Currently, when resuming from system suspend on Tegra platforms, the followi… | |||
| CVE-2026-43310 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC For the i.MX8MQ platform, there is a hardware limitation: th… | |||
| CVE-2026-43309 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: md raid: fix hang when stopping arrays with metadata through dm-raid When using device-mapper's dm-raid target, stopping a RAID a… | |||
| CVE-2026-43308 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: don't BUG() on unexpected delayed ref type in run_one_delayed_ref() There is no need to BUG(), we can just return an error… | |||
| CVE-2026-43306 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: bpf: crypto: Use the correct destructor kfunc type With CONFIG_CFI enabled, the kernel strictly enforces that indirect function c… | |||
| CVE-2026-43305 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix mismatched unlock for DMUB HW lock in HWSS fast path [Why] The evaluation for whether we need to use the DMU… | |||
| CVE-2026-43302 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Set DMA segment size to avoid debug warnings When using V3D rendering with CONFIG_DMA_API_DEBUG enabled, the kernel occa… | |||
| CVE-2026-43301 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix PM runtime usage count underflow Replace pm_runtime_put_sync() with pm_runtime_dont_use_autosuspen… | |||
| CVE-2026-43300 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove() In jdi_panel_dsi_remove(), jdi is explicitly checked… | |||
| CVE-2026-43299 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: do not ASSERT() when the fs flips RO inside btrfs_repair_io_failure() [BUG] There is a bug report that when btrfs hits ENO… | |||
| CVE-2026-43298 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Skip vcn poison irq release on VF VF doesn't enable VCN poison irq in VCNv2.5. Skip releasing it and avoid call trace… | |||
| CVE-2026-43297 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: media: rockchip: rga: Fix possible ERR_PTR dereference in rga_buf_init() rga_get_frame() can return ERR_PTR(-EINVAL) when buffer … | |||
| CVE-2026-43295 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net() When idtab allocation fails, net is not registered with rio_… | |||
| CVE-2026-43294 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm: renesas: rz-du: mipi_dsi: fix kernel panic when rebooting for some panels Since commit 56de5e305d4b ("clk: renesas: r9a07g04… | |||
| CVE-2026-43293 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix kthread worker destruction in polling mode Fix the cleanup order in polling mode (irq < 0) to prev… | |||
| CVE-2026-43292 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node When CONFIG_PAGE_OWNER is enabled, freeing KASAN shadow pages during… | |||
| CVE-2026-43289 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: kexec: derive purgatory entry from symbol kexec_load_purgatory() derives image->start by locating e_entry inside an SHF_EXECINSTR… | |||
| CVE-2026-43288 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: ext4: move ext4_percpu_param_init() before ext4_mb_init() When running `kvm-xfstests -c ext4/1k -C 1 generic/383` with the `DOUBL… | |||
| CVE-2026-43287 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: drm: Account property blob allocations to memcg DRM_IOCTL_MODE_CREATEPROPBLOB allows userspace to allocate arbitrary-sized proper… | |||
| CVE-2026-43286 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: restore failed global reservations to subpool Commit a833a693a490 ("mm: hugetlb: fix incorrect fallback for subpool")… | |||
| CVE-2026-43285 | medium | 5.5 | 5.5 | 24d ago | In the Linux kernel, the following vulnerability has been resolved: mm/slab: do not access current->mems_allowed_seq if !allow_spin Lockdep complains when get_from_any_partial() is called in an NMI… | |||
| CVE-2026-8149 | medium | — | 5.5 | 24d ago | Bouncy Castle has a vulnerability in program files gcm128w, gcm512w | |||
| CVE-2026-43942 | medium | 5.5 | 5.5 | 24d ago | Electerm's full process.env exposed to renderer via window.pre.env | |||
| CVE-2026-41646 | medium | 5.5 | 5.5 | 24d ago | Nuclei: Local File Read via require() Module Loader Bypass | |||
| CVE-2026-8124 | medium | 5.5 | 5.5 | 24d ago | A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidx_box_read of the file src/isomedia/box_code_base.c. The manipulation leads to allocation of resources. … | |||
| CVE-2026-8119 | medium | 5.5 | 5.5 | 25d ago | A vulnerability was detected in Open5GS up to 2.7.7. Impacted is the function ogs_sbi_stream_find_by_id in the library /lib/sbi/nghttp2-server.c of the component NSSF. Performing a manipulation resul… | |||
| CVE-2026-8088 | medium | 5.5 | 5.5 | 25d ago | A weakness has been identified in OSGeo gdal up to 3.13.0dev-4. The affected element is the function GDfieldinfo of the file frmts/hdf4/hdf-eos/GDapi.c. Executing a manipulation can lead to out-of-bo… | |||
| CVE-2026-42259 | medium | — | 5.5 | 25d ago | Saltcorn: Open Redirect in `POST /auth/login` due to incomplete `is_relative_url` validation (backslash bypass) | |||
| CVE-2026-8084 | medium | 5.5 | 5.5 | 25d ago | A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This… | |||
| CVE-2026-32686 | medium | — | 5.5 | 25d ago | Decimal: Unbounded exponent in `Decimal.new` enables unauthenticated DoS | |||
| CVE-2026-33554 | medium | — | 5.5 | 26d ago | Moderate: freeipmi security update | |||
| CVE-2026-3291 | medium | 5.5 | 5.5 | 26d ago | Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate … | |||
| CVE-2026-42458 | medium | — | 5.5 | 26d ago | Magento LTS: Reflected XSS - Import -> Data Flow (profiles) | |||
| CVE-2026-43282 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/ionic: Fix potential NULL pointer dereference in ionic_query_port The function ionic_query_port() calls ib_device_get_netdev… | |||
| CVE-2026-43277 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: APEI/GHES: ensure that won't go past CPER allocated record The logic at ghes_new() prevents allocating too large records, by chec… | |||
| CVE-2026-43273 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ceph: supply snapshot context in ceph_zero_partial_object() The ceph_zero_partial_object function was missing proper snapshot con… | |||
| CVE-2026-43272 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix possible dereference of uninitialized pointer There is a pointer head_page in rb_meta_validate_events() which is… | |||
| CVE-2026-43271 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: md-cluster: fix NULL pointer dereference in process_metadata_update The function process_metadata_update() blindly dereferences t… | |||
| CVE-2026-43270 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove() In mtk_mdp_probe(), vpu_get_plat_device() increases the reference co… | |||
| CVE-2026-43269 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/atmel-hlcdc: fix memory leak from the atomic_destroy_state callback After several commits, the slab memory increases. Some dr… | |||
| CVE-2026-43268 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: hfsplus: pretend special inodes as regular files Since commit af153bb63a33 ("vfs: catch invalid modes in may_open()") requires an… | |||
| CVE-2026-43267 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential zero beacon interval in beacon tracking During fuzz testing, it was discovered that bss_conf->beacon_i… | |||
| CVE-2026-43266 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the section_length is … |