CVEs from 2026
Total
14,088
critical
critical 1,231
high
high 4,632
medium
medium 4,444
low
low 484
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 522
- firepower_threat_defense_software 300
- firepower_threat_defense 298
- gcp 239
- openclaw 172
- commerce 104
- commerce_b2b 89
- grafana 80
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-46194 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix node_cnt race between extent node destroy and writeback f2fs_destroy_extent_node() does not set FI_NO_EXTENT before cle… | |||
| CVE-2026-46193 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: xfrm: ah: account for ESN high bits in async callbacks AH allocates its temporary auth/ICV layout differently when ESN is enabled… | |||
| CVE-2026-46192 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: don't attempt to transmit during emulated read-only dual/quad operations The core will deal with reads … | |||
| CVE-2026-46191 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in… | |||
| CVE-2026-46189 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path Sashiko points out that pvrdma_uar_free() is already calle… | |||
| CVE-2026-46188 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: octeon_ep_vf: add NULL check for napi_build_skb() napi_build_skb() can return NULL on allocation failure. In __octep_vf_oq_proces… | |||
| CVE-2026-46187 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: fix kthread lifetime race between self-exit and external-stop RSI driver use both self-exit(kthread_complete_and_exit)… | |||
| CVE-2026-46186 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: virtio_bt: validate rx pkt_type header length virtbt_rx_handle() reads the leading pkt_type byte from the RX skb and f… | |||
| CVE-2026-46184 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: sound: ua101: fix division by zero at probe Add a missing sanity check for bNrChannels in detect_usb_format() to prevent a divisi… | |||
| CVE-2026-46183 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: protect path kfree() with damon_sysfs_lock damon_sysfs_quot_goal->path can be read and written by users, … | |||
| CVE-2026-46182 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Prevent kernel stack memory leak to userspace The hdr variable is allocated on the stack and only hdr.versio… | |||
| CVE-2026-46180 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task Watchdog task might end between send_sig() and kth… | |||
| CVE-2026-46179 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Don't allow pointer operations on unconfigured streams When reporting the pointer for a compressed stream we report th… | |||
| CVE-2026-46172 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() xfrm6_rcv_encap() performs an IPv6 route lookup when the skb does not alre… | |||
| CVE-2026-46171 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: riscv: kvm: fix vector context allocation leak When the second kzalloc (host_context.vector.datap) fails in kvm_riscv_vcpu_alloc_… | |||
| CVE-2026-46170 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: free sk if last When an ADD_ADDR is retransmitted, the sk is held in sk_reset_timer(), and released at t… | |||
| CVE-2026-46169 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplus_strcasecmp(). T… | |||
| CVE-2026-46168 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: mptcp: fix scheduling with atomic in timestamp sockopt Using lock_sock_fast() (atomic context) around sock_set_timestamp() and so… | |||
| CVE-2026-46167 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl Just like in a previous problem in this driver, usblp_ctrl_msg() wi… | |||
| CVE-2026-46165 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: openvswitch: vport: fix self-deadlock on release of tunnel ports vports are used concurrently and protected by RCU, so netdev_put… | |||
| CVE-2026-46163 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: b43legacy: enforce bounds check on firmware key index in RX path Same fix as b43: the firmware-controlled key index in b43l… | |||
| CVE-2026-46162 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: ice: fix double free in ice_sf_eth_activate() error path When auxiliary_device_add() fails, ice_sf_eth_activate() jumps to aux_de… | |||
| CVE-2026-46161 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix divide-by-zero in setup_geo() with zero far_copies setup_geo() extracts near_copies (nc) and far_copies (fc) from … | |||
| CVE-2026-46160 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix missing last_unlink_trans update when removing a directory When removing a directory we are not updating its last_unli… | |||
| CVE-2026-46159 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak btrfs_ioctl_space_info() has a TOCTOU race betw… | |||
| CVE-2026-46158 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: always decrease sk refcount When an ADD_ADDR is retransmitted, the sk is held in sk_reset_timer(). It sh… | |||
| CVE-2026-46156 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongson_gpu_fixup_dma_hang() The switch case in loongson_gpu_fixup_dma_hang() may not DC2 or DC3… | |||
| CVE-2026-46153 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: 8021q: delete cleared egress QoS mappings vlan_dev_set_egress_priority() currently keeps cleared egress priority mappings in the … | |||
| CVE-2026-46151 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix heap leak in IEEE 1284 device ID via short response usblp_ctrl_msg() collapses the usb_control_msg() return value… | |||
| CVE-2026-46148 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: control built-in cs manually The coreQSPI IP supports only a single chip select, which is automagically… | |||
| CVE-2026-46147 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix pin leak and publication ordering in __pkvm_init_vcpu() Two bugs exist in the vCPU initialisation path: 1. If a … | |||
| CVE-2026-46146 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() The convert_chmap_v3() has a loop with its increment size of … | |||
| CVE-2026-46144 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() Sashiko points out that mana_ib_cfg_vport_steering() is leaked, the normal… | |||
| CVE-2026-46143 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens As prepare can be called mulitple times, this can result in multiple graph … | |||
| CVE-2026-46142 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: net: libwx: fix VF illegal register access Register WX_CFG_PORT_ST is a PF restricted register. When a VF is initialized, attempt… | |||
| CVE-2026-46141 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/xive: fix kmemleak caused by incorrect chip_data lookup The kmemleak reports the following memory leak: Unreferenced obj… | |||
| CVE-2026-46140 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btmtk: validate WMT event SKB length before struct access btmtk_usb_hci_wmt_sync() casts the WMT event response SKB da… | |||
| CVE-2026-46139 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: use kzalloc to zero-initialize security descriptor buffer Commit 62e7dd0a39c2d ("smb: common: change the data type o… | |||
| CVE-2026-46136 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix a potential clc buffer length underflow The buf_len is used to limit the iterations for retrieving the co… | |||
| CVE-2026-46134 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: platform/chrome: cros_ec_typec: Init mutex in Thunderbolt registration cros_typec_register_thunderbolt() missed initializing the … | |||
| CVE-2026-46132 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: net: rtnetlink: zero ifla_vf_broadcast to avoid stack infoleak in rtnl_fill_vfinfo rtnl_fill_vfinfo() declares struct ifla_vf_bro… | |||
| CVE-2026-46131 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: KVM: x86: check for nEPT/nNPT in slow flush hypercalls Checking is_guest_mode(vcpu) is incorrect, because translate_nested_gpa() … | |||
| CVE-2026-46130 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: dm-verity-fec: fix reading parity bytes split across blocks (take 3) fec_decode_bufs() assumes that the parity bytes of the first… | |||
| CVE-2026-46128 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: ipmi: Check event message buffer response for bad data The event message buffer response data size got checked later when process… | |||
| CVE-2026-46127 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/ocrdma: Don't NULL deref uctx on errors in ocrdma_copy_pd_uresp() Sashiko points out that pd->uctx isn't initialized until l… | |||
| CVE-2026-46126 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() Sashiko points out there are two bugs here in the error u… | |||
| CVE-2026-46122 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: b43: enforce bounds check on firmware key index in b43_rx() The firmware-controlled key index in b43_rx() can exceed the de… | |||
| CVE-2026-46121 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: protect memcg_path kfree() with damon_sysfs_lock Patch series "mm/damon/sysfs-schemes: fix use-after-free… | |||
| CVE-2026-46118 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix null ptr deref in papr_hvpipe_dev_create_handle() commit 6d3789d347a7 ("papr-hvpipe: convert papr_hvpipe… | |||
| CVE-2026-46109 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: fix memory leak on ulpi_register() error paths Commit 01af542392b5 ("usb: ulpi: fix double free in ulpi_register_inter… | |||
| CVE-2026-46108 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: ipmi:si: Return state to normal if message allocation fails There were places where nothing would get started if a message alloca… | |||
| CVE-2026-46106 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: eventfs: Hold eventfs_mutex and SRCU when remount walks events Commit 340f0c7067a9 ("eventfs: Update all the eventfs_inodes from … | |||
| CVE-2026-46104 | unknown | — | — | 6d ago | In the Linux kernel, the following vulnerability has been resolved: selinux: use sk blob accessor in socket permission helpers SELinux socket state lives in the composite LSM socket blob. sock_has… | |||
| CVE-2026-9806 | unknown | — | — | 6d ago | A stored cross-site scripting (XSS) vulnerability exists in the notification panel of CTI Transmute in versions prior to the patched release. Notification messages containing user-controlled convert … | |||
| CVE-2026-32998 | unknown | — | — | 6d ago | This vulnerability in Veeam Service Provider Console allows for remote code execution. | |||
| CVE-2026-32997 | unknown | — | — | 6d ago | A vulnerability allowing an authenticated user with the Backup Administrator role to write arbitrary files on Linux-based Veeam Backup & Replication server. | |||
| CVE-2026-32996 | unknown | — | — | 6d ago | This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation. | |||
| CVE-2026-9789 | unknown | — | — | 6d ago | A Local Privilege Escalation (LPE) vulnerability affects Acer NitroSense software versions prior to 3.01.3052. The vulnerability stems from the the PSAdminAgent service, which creates a Named Pipe wi… | |||
| CVE-2026-9739 | unknown | — | — | 6d ago | Vulnerable to DNS rebinding attacks when using SSE (http://b/499408790). During the beta phase, we implemented `allowed-origins` and `allowed-hosts` flags to align with MCP security guidelines. Howev… | |||
| CVE-2026-44886 | unknown | — | — | 6d ago | Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. From 2024-06-29 to before 2026-05-07, the web application endpoint is vulnerable to SQL injection. The /pialert/php/server/devi… | |||
| CVE-2026-47161 | unknown | — | — | 6d ago | RELATE is a web-based courseware package. Prior to commit d66ba5659b459bf1ba56b7109b5f9ecf197cbefb, RELATE LMS configures its Celery workers to accept and deserialize untrusted 'pickle' data. An atta… | |||
| CVE-2026-44839 | unknown | — | — | 7d ago | RabbitMQ is a messaging and streaming broker. From 3.7.0 to before 4.1.2 and 4.0.13, This vulnerability is fixed in 4.1.2 and 4.0.13. | |||
| CVE-2026-44838 | unknown | — | — | 7d ago | RabbitMQ is a messaging and streaming broker. From 4.2.0 to before 4.2.4, RabbitMQ's MQTT plugin allows for topic-level authorization using regular expressions with variable substitution. Administrat… | |||
| CVE-2026-46636 | unknown | — | — | 7d ago | Sandbox filter, tag and function allow-list bypass when sandbox state changes between renders | |||
| CVE-2026-48805 | unknown | — | — | 7d ago | Sandbox state regression in deprecated internal wrappers in `src/Resources/core.php` | |||
| CVE-2026-48808 | unknown | — | — | 7d ago | Sandbox property allowlist bypass via the `column` filter under `SourcePolicyInterface` | |||
| CVE-2026-48806 | unknown | — | — | 7d ago | Sandbox `__toString()` policy bypass via dynamic mapping keys | |||
| CVE-2026-48807 | unknown | — | — | 7d ago | Sandbox `__toString()` policy bypass via `Traversable` in `join`/`replace` and `in`/`not in` operators | |||
| CVE-2026-9712 | unknown | — | — | 7d ago | When creating an export through the pretix API, API clients are returned an UUID value for their export job (a long, random string like 35742818-c375-4d15-839f-d49aecce94d6). Using this UUID, the A… | |||
| CVE-2026-44830 | unknown | — | — | 7d ago | Nocturne Memory is a lightweight, rollbackable, and visual Long-Term Memory Server for MCP Agents. Prior to 2.4.1, when API_TOKEN is unset or empty, the BearerTokenAuthMiddleware bypasses authenticat… | |||
| CVE-2026-46103 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tie… | |||
| CVE-2026-46101 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: reject zero shift in nft_bitwise Reject zero shift operands for nft_bitwise left and right shift expressions during in… | |||
| CVE-2026-46098 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: net: caif: clear client service pointer on teardown `caif_connect()` can tear down an existing client after remote shutdown by ca… | |||
| CVE-2026-46097 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: Input: edt-ft5x06 - fix use-after-free in debugfs teardown The commit 68743c500c6e ("Input: edt-ft5x06 - use per-client debugfs d… | |||
| CVE-2026-46096 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: tpm2-sessions: Fix missing tpm_buf_destroy() in tpm2_read_public() tpm2_read_public() calls tpm_buf_init() but fails to call tpm_… | |||
| CVE-2026-46095 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: md/md-llbitmap: raise barrier before state machine transition Move the barrier raise operation before calling llbitmap_state_mach… | |||
| CVE-2026-46094 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix bounds check in check_xattrs() to prevent out-of-bounds access The bounds check for the next xattr entry in check_xattr… | |||
| CVE-2026-46092 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: check for PCI upstream bridge existence pci_upstream_bridge() returns NULL if the device is on a root bus. If 8821C… | |||
| CVE-2026-46091 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: media: rc: igorplugusb: heed coherency rules In a control request, the USB request structure can be subject to DMA on some HCs. H… | |||
| CVE-2026-46089 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: zram: do not forget to endio for partial discard requests As reported by Qu Wenruo and Avinesh Kumar, the following getconf PAG… | |||
| CVE-2026-46088 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() snd_ctl_elem_init_enum_names() advances pointe… | |||
| CVE-2026-46087 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: mm/damon/stat: fix memory leak on damon_start() failure in damon_stat_start() Destroy the DAMON context and reset the global poin… | |||
| CVE-2026-46086 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: net: bridge: use a stable FDB dst snapshot in RCU readers Local FDB entries can be rewritten in place by `fdb_delete_local()`, wh… | |||
| CVE-2026-46084 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/mana_ib: Disable RX steering on RSS QP destroy When an RSS QP is destroyed (e.g. DPDK exit), mana_ib_destroy_qp_rss() destro… | |||
| CVE-2026-46083 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: spi: fix resource leaks on device setup failure Make sure to call controller cleanup() if spi_setup() fails while registering a d… | |||
| CVE-2026-46082 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0 INVLPGA should cause a #UD when EFER.SVME is not set. Add a check to properly inj… | |||
| CVE-2026-46080 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: ocfs2: split transactions in dio completion to avoid credit exhaustion During ocfs2 dio operations, JBD2 may report warnings via … | |||
| CVE-2026-46079 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: rbd: fix null-ptr-deref when device_add_disk() fails do_rbd_add() publishes the device with device_add() before calling device_ad… | |||
| CVE-2026-46077 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-tdes - fix DMA sync direction Before DMA output is consumed by the CPU, ->dma_addr_out must be synced with dma_sync… | |||
| CVE-2026-46075 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path Unregister the hwrng to prevent new ->read() calls and f… | |||
| CVE-2026-46074 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix memory leaks on probe failures Make sure to deregister the controller, disable pins, and kill and free the RX URB… | |||
| CVE-2026-46073 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: hwmon: (powerz) Fix missing usb_kill_urb() on signal interrupt wait_for_completion_interruptible_timeout() returns -ERESTARTSYS w… | |||
| CVE-2026-46072 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: ntfs3: add buffer boundary checks to run_unpack() run_unpack() checks `run_buf < run_last` at the top of the while loop but then … | |||
| CVE-2026-46071 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Avoid clearing VMCB_LBR in vmcb12 svm_copy_lbrs() always marks VMCB_LBR dirty in the destination VMCB. However, nested… | |||
| CVE-2026-46069 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: fix use-after-free in mwifiex_adapter_cleanup() The mwifiex_adapter_cleanup() function uses timer_delete() (non-sy… | |||
| CVE-2026-46068 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx The bounce buffers are allocated with __get_free_pages() us… | |||
| CVE-2026-46067 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: validate damos_quota_goal->nid for node_memcg_{used,free}_bp Users can set damos_quota_goal->nid with arbitrary va… | |||
| CVE-2026-46066 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: ceph: fix num_ops off-by-one when crypto allocation fails move_dirty_folio_in_page_array() may fail if the file is encrypted, the… | |||
| CVE-2026-46064 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix heap over-read in ibmasm_send_i2o_message() The ibmasm_send_i2o_message() function uses get_dot_command_size() to com… | |||
| CVE-2026-46063 | unknown | — | — | 7d ago | In the Linux kernel, the following vulnerability has been resolved: x86/shstk: Prevent deadlock during shstk sigreturn During sigreturn the shadow stack signal frame is popped. The kernel does this… |