CVEs from 2026
Total
13,538
critical
critical 1,179
high
high 4,324
medium
medium 4,219
low
low 455
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 418
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 166
- commerce 104
- commerce_b2b 89
- magento 74
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-43270 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove() In mtk_mdp_probe(), vpu_get_plat_device() increases the reference co… | |||
| CVE-2026-43269 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/atmel-hlcdc: fix memory leak from the atomic_destroy_state callback After several commits, the slab memory increases. Some dr… | |||
| CVE-2026-43268 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: hfsplus: pretend special inodes as regular files Since commit af153bb63a33 ("vfs: catch invalid modes in may_open()") requires an… | |||
| CVE-2026-43267 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential zero beacon interval in beacon tracking During fuzz testing, it was discovered that bss_conf->beacon_i… | |||
| CVE-2026-43266 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the section_length is … | |||
| CVE-2026-43265 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() Ignore -EBUSY when checking nested events after exiting a b… | |||
| CVE-2026-43264 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: fbdev: of: display_timing: fix refcount leak in of_get_display_timings() of_parse_phandle() returns a device_node with refcount i… | |||
| CVE-2026-43262 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: gfs2: fiemap page fault fix In gfs2_fiemap(), we are calling iomap_fiemap() while holding the inode glock. This can lead to recu… | |||
| CVE-2026-43261 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: arm64: Add support for TSV110 Spectre-BHB mitigation The TSV110 processor is vulnerable to the Spectre-BHB (Branch History Buffer… | |||
| CVE-2026-43259 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: phy: fsl-imx8mq-usb: set platform driver data Add missing platform_set_drvdata() as the data will be used in remove(). | |||
| CVE-2026-43257 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: cx88: Add missing unmap in snd_cx88_hw_params() In error path, add cx88_alsa_dma_unmap() to release resource acquired by c… | |||
| CVE-2026-43255 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix WARNING in usb_tx_block The function usb_tx_block() submits cardp->tx_urb without ensuring that any previous … | |||
| CVE-2026-43252 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: in-kernel: always set ID as avail when rm endp Syzkaller managed to find a combination of actions that was generating … | |||
| CVE-2026-43251 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: HID: prodikeys: Check presence of pm->input_ep82 Fake USB devices can send their own report descriptors for which the input_mappi… | |||
| CVE-2026-43247 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix SError of kernel panic when closed SError of kernel panic rarely happened while testing fluster. T… | |||
| CVE-2026-43246 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9906: Fix potential memory leak in tw9906_probe() In one of the error paths in tw9906_probe(), the memory allocated … | |||
| CVE-2026-43244 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: kcm: fix zero-frag skb in frag_list on partial sendmsg error Syzkaller reported a warning in kcm_write_msgs() when processing a m… | |||
| CVE-2026-43243 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add signal type check for dcn401 get_phyd32clk_src Trying to access link enc on a dpia link will cause a crash o… | |||
| CVE-2026-43242 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: soc: ti: k3-socinfo: Fix regmap leak on probe failure The mmio regmap allocated during probe is never freed. Switch to using the… | |||
| CVE-2026-43240 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: x86/kexec: add a sanity check on previous kernel's ima kexec buffer When the second-stage kernel is booted via kexec with a limit… | |||
| CVE-2026-43238 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() Commit 38a6f0865796 ("net: sched: support hash selecting tx queu… | |||
| CVE-2026-43235 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: iris: Add missing platform data entries for SM8750 Two platform-data fields for SM8750 were missed: - get_vpu_buffer_si… | |||
| CVE-2026-43234 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: team: avoid NETDEV_CHANGEMTU event when unregistering slave syzbot is reporting unregister_netdevice: waiting for netdevsim0 t… | |||
| CVE-2026-43231 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: radio-keene: fix memory leak in error path Fix a memory leak in usb_keene_probe(). The v4l2 control handler is initialized… | |||
| CVE-2026-43229 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix device cleanup order to prevent kernel panic Move video device unregistration to the beginning of … | |||
| CVE-2026-43228 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: hfs: Replace BUG_ON with error handling for CNID count checks In a06ec283e125 next_id, folder_count, and file_count in the super … | |||
| CVE-2026-43227 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: clocksource/drivers/sh_tmu: Always leave device running after probe The TMU device can be used as both a clocksource and a clocke… | |||
| CVE-2026-43225 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211_inform_bss_frame() may return NULL on failure. In that case, the all… | |||
| CVE-2026-43224 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: io_uring/zcrx: fix sgtable leak on mapping failures In an unlikely case when io_populate_area_dma() fails, which could only happe… | |||
| CVE-2026-43223 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix URB leak in pvr2_send_request_ex When pvr2_send_request_ex() submits a write URB successfully but fails to su… | |||
| CVE-2026-43221 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ipmi: ipmb: initialise event handler read bytes IPMB doesn't use i2c reads, but the handler needs to set a value. Otherwise an i2… | |||
| CVE-2026-43220 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: iommu/amd: serialize sequence allocation under concurrent TLB invalidations With concurrent TLB invalidations, completion wait ra… | |||
| CVE-2026-43219 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: net: cpsw_new: Fix potential unregister of netdev that has not been registered yet If an error occurs during register_netdev() fo… | |||
| CVE-2026-43218 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9903: Fix potential memory leak in tw9903_probe() In one of the error paths in tw9903_probe(), the memory allocated … | |||
| CVE-2026-43217 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: iris: gen2: Add sanity check for session stop In iris_kill_session, inst->state is set to IRIS_INST_ERROR and session_clos… | |||
| CVE-2026-43216 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: net: Drop the lock in skb_may_tx_timestamp() skb_may_tx_timestamp() may acquire sock::sk_callback_lock. The lock must not be take… | |||
| CVE-2026-43210 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in … | |||
| CVE-2026-43209 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: minix: Add required sanity checking to minix_check_superblock() The fs/minix implementation of the minix filesystem does not curr… | |||
| CVE-2026-43204 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6asm: drop DSP responses for closed data streams 'Commit a354f030dbce ("ASoC: qcom: q6asm: handle the responses afte… | |||
| CVE-2026-43202 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: fbdev: vt8500lcdfb: fix missing dma_free_coherent() fbi->fb.screen_buffer is allocated with dma_alloc_coherent() but is not freed… | |||
| CVE-2026-43201 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: APEI/GHES: ARM processor Error: don't go past allocated memory If the BIOS generates a very small ARM Processor Error, or an inco… | |||
| CVE-2026-43200 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Fix swapped parameters in pci_{primary/secondary}_epc_epf_unlink() functions struct configfs_item_operations callb… | |||
| CVE-2026-43195 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate user queue size constraints Add validation to ensure user queue sizes meet hardware requirements: - Size mus… | |||
| CVE-2026-43193 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg() Claude pointed out that there is a nfs4_file refcount leak in nfsd_get_… | |||
| CVE-2026-43192 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: dm mpath: Add missing dm_put_device when failing to get scsi dh name When commit fd81bc5cca8f ("scsi: device_handler: Return erro… | |||
| CVE-2026-43191 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adjust PHY FSM transition to TX_EN-to-PLL_ON for TMDS on DCN35 [Why] A backport of the change made for DCN401 th… | |||
| CVE-2026-43189 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: v4l2-async: Fix error handling on steps after finding a match Once an async connection is found to be matching with an fwn… | |||
| CVE-2026-43188 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ceph: do not propagate page array emplacement errors as batch errors When fscrypt is enabled, move_dirty_folio_in_page_array() ma… | |||
| CVE-2026-43183 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: cx25821: Fix a resource leak in cx25821_dev_setup() Add release_mem_region() if ioremap() fails to release the memory regi… | |||
| CVE-2026-43182 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: ccs: Avoid possible division by zero Calculating maximum M for scaler configuration involves dividing by MIN_X_OUTPUT_SIZE… | |||
| CVE-2026-43181 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: gpio: sysfs: fix chip removal with GPIOs exported over sysfs Currently if we export a GPIO over sysfs and unbind the parent GPIO … | |||
| CVE-2026-43179 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits for invalid metabox-enabled images Crafted EROFS images with metadata compression enabled can tr… | |||
| CVE-2026-43177 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: ipu6: Fix RPM reference leak in probe error paths Several error paths in ipu6_pci_probe() were jumping directly to out_ipu… | |||
| CVE-2026-43175 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: clk: rs9: Reserve 8 struct clk_hw slots for for 9FGV0841 The 9FGV0841 has 8 outputs and registers 8 struct clk_hw, make sure ther… | |||
| CVE-2026-43174 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: io_uring/zcrx: fix post open error handling Closing a queue doesn't guarantee that all associated page pools are terminated right… | |||
| CVE-2026-43173 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: net: ethernet: xscale: Check for PTP support properly In ixp4xx_get_ts_info() ixp46x_ptp_find() is called unconditionally despite… | |||
| CVE-2026-43171 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't dump the entire memory region The current logic at cper_print_fw_err() doesn't check if the error record length i… | |||
| CVE-2026-43170 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Move vbus draw to workqueue context Currently dwc3_gadget_vbus_draw() can be called from atomic context, which… | |||
| CVE-2026-43169 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Prevent BUG_ON by validating rounded allocation When DRM_BUDDY_CONTIGUOUS_ALLOCATION is set, the requested size is rou… | |||
| CVE-2026-43168 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix reflink preserve cleanup issue commit c06c303832ec ("ocfs2: fix xattr array entry __counted_by error") doesn't handle … | |||
| CVE-2026-43167 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: xfrm: always flush state and policy upon NETDEV_UNREGISTER event syzbot is reporting that "struct xfrm_state" refcount is leaking… | |||
| CVE-2026-43165 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin When calling of_parse_phandle_with_args(), the caller is respon… | |||
| CVE-2026-43162 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: tegra-video: Fix memory leak in __tegra_channel_try_format() The state object allocated by __v4l2_subdev_state_alloc() mus… | |||
| CVE-2026-43161 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode PCIe endpoints with ATS enabled and passed th… | |||
| CVE-2026-43160 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: mfd: macsmc: Initialize mutex Initialize struct apple_smc's mutex in apple_smc_probe(). Using the mutex uninitialized surprisingl… | |||
| CVE-2026-43159 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix null dereference in find_network The variable pwlan has the possibility of being NULL when passed into rt… | |||
| CVE-2026-43157 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: CGX: fix bitmap leaks The RX/TX flow-control bitmaps (rx_fc_pfvf_bmap and tx_fc_pfvf_bmap) are allocated by cgx_lma… | |||
| CVE-2026-43156 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: enable basic endpoint checking pegasus_probe() fills URBs with hardcoded endpoint pipes without verifying the … | |||
| CVE-2026-43155 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: mux: mmio: fix regmap leak on probe failure The mmio regmap that may be allocated during probe is never freed. Switch to using t… | |||
| CVE-2026-43154 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing valid volume labels can trigger incorre… | |||
| CVE-2026-43152 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: HID: hid-pl: handle probe errors Errors in init must be reported back or we'll follow a NULL pointer the first time FF is used. | |||
| CVE-2026-43151 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: Revert "media: iris: Add sanity check for stop streaming" This reverts commit ad699fa78b59241c9d71a8cafb51525f3dab04d4. Revert t… | |||
| CVE-2026-43149 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean() The priv->rx_buffer and priv->tx_buffer are alloc'd together a… | |||
| CVE-2026-43148 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/smp: Add check for kcalloc() failure in parse_thread_groups() As kcalloc() may fail, check its return value to avoid a NU… | |||
| CVE-2026-43147 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: Revert "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV" This reverts commit 05703271c3cd ("PCI/IOV: Add PC… | |||
| CVE-2026-43146 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: iris: Add buffer to list only after successful allocation Move `list_add_tail()` to after `dma_alloc_attrs()` succeeds whe… | |||
| CVE-2026-43145 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: remoteproc: imx_rproc: Fix invalid loaded resource table detection imx_rproc_elf_find_loaded_rsc_table() may incorrectly report a… | |||
| CVE-2026-43144 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential kernel oops when probe fails When probe of the sdio brcmfmac device fails for some reasons (i.e. mi… | |||
| CVE-2026-43143 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: mfd: core: Add locking around 'mfd_of_node_list' Manipulating a list in the kernel isn't safe without some sort of mutual exclusi… | |||
| CVE-2026-43142 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: iris: gen1: Destroy internal buffers after FW releases After the firmware releases internal buffers, the driver was not de… | |||
| CVE-2026-43140 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc->input Fake USB devices can send their own report descriptors for which the input_ma… | |||
| CVE-2026-43137 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: Fix NULL pointer dereference If there's a mismatch between the DAI links in the machine driver and the top… | |||
| CVE-2026-43136 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Check maxfield in hidpp_get_report_length() Do not crash when a report has no fields. Fake USB gadgets can … | |||
| CVE-2026-43135 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: media: cx23885: Add missing unmap in snd_cx23885_hw_params() In error path, add cx23885_alsa_dma_unmap() to release the resource … | |||
| CVE-2026-43132 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: dm-verity: correctly handle dm_bufio_client_create() failure If either of the calls to dm_bufio_client_create() in verity_fec_ctr… | |||
| CVE-2026-43131 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix null pointer dereference issue If SMU is disabled, during RAS initialization, there will be null pointer derefere… | |||
| CVE-2026-43130 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush dev-IOTLB only when PCIe device is accessible in scalable mode Commit 4fc82cd907ac ("iommu/vt-d: Don't issue AT… | |||
| CVE-2026-43129 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ima: verify the previous kernel's IMA buffer lies in addressable RAM Patch series "Address page fault in ima_restore_measurement_… | |||
| CVE-2026-43127 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix circular locking dependency in run_unpack_ex Syzbot reported a circular locking dependency between wnd->rw_lock (sbi->… | |||
| CVE-2026-43124 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix incorrect success return when vmap() fails In persistent_ram_vmap(), vmap() may return NULL on failure. If… | |||
| CVE-2026-43123 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: fbcon: check return value of con2fb_acquire_newinfo() If fbcon_open() fails when called from con2fb_acquire_newinfo() then info->… | |||
| CVE-2026-43122 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Update cpuidle driver check in __acpi_processor_start() Commit 7a8c994cbb2d ("ACPI: processor: idle: Optimize AC… | |||
| CVE-2026-43119 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: annotate data-races around hdev->req_status __hci_cmd_sync_sk() sets hdev->req_status under hdev->req_lock: … | |||
| CVE-2026-43118 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix zero size inode with non-zero size after log replay When logging that an inode exists, as part of logging a new name o… | |||
| CVE-2026-43115 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: srcu: Use irq_work to start GP in tiny SRCU Tiny SRCU's srcu_gp_start_if_needed() directly calls schedule_work(), which acquires … | |||
| CVE-2026-43109 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_… | |||
| CVE-2026-43108 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei It looks element length declared in servreg_loc_pfr_req_ei for… | |||
| CVE-2026-43107 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: xfrm: account XFRMA_IF_ID in aevent size calculation xfrm_get_ae() allocates the reply skb with xfrm_aevent_msgsize(), then build… | |||
| CVE-2026-43105 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix memory leak of BO array in hang state The hang state's BO array is allocated separately with kzalloc() in vc4_save_h… | |||
| CVE-2026-43104 | medium | 5.5 | 5.5 | 26d ago | In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4_save_hang_state() encounters an early return condition, it returns w… |