CVEs from 2026
Total
14,035
critical
critical 1,231
high
high 4,634
medium
medium 4,444
low
low 484
% Critical
8.8%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 522
- firepower_threat_defense_software 300
- firepower_threat_defense 298
- gcp 239
- openclaw 172
- commerce 104
- commerce_b2b 89
- grafana 80
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-43148 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/smp: Add check for kcalloc() failure in parse_thread_groups() As kcalloc() may fail, check its return value to avoid a NU… | |||
| CVE-2026-43147 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: Revert "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV" This reverts commit 05703271c3cd ("PCI/IOV: Add PC… | |||
| CVE-2026-43146 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: media: iris: Add buffer to list only after successful allocation Move `list_add_tail()` to after `dma_alloc_attrs()` succeeds whe… | |||
| CVE-2026-43145 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: remoteproc: imx_rproc: Fix invalid loaded resource table detection imx_rproc_elf_find_loaded_rsc_table() may incorrectly report a… | |||
| CVE-2026-43144 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential kernel oops when probe fails When probe of the sdio brcmfmac device fails for some reasons (i.e. mi… | |||
| CVE-2026-43143 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: mfd: core: Add locking around 'mfd_of_node_list' Manipulating a list in the kernel isn't safe without some sort of mutual exclusi… | |||
| CVE-2026-43142 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: media: iris: gen1: Destroy internal buffers after FW releases After the firmware releases internal buffers, the driver was not de… | |||
| CVE-2026-43140 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc->input Fake USB devices can send their own report descriptors for which the input_ma… | |||
| CVE-2026-43137 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: Fix NULL pointer dereference If there's a mismatch between the DAI links in the machine driver and the top… | |||
| CVE-2026-43136 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Check maxfield in hidpp_get_report_length() Do not crash when a report has no fields. Fake USB gadgets can … | |||
| CVE-2026-43135 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: media: cx23885: Add missing unmap in snd_cx23885_hw_params() In error path, add cx23885_alsa_dma_unmap() to release the resource … | |||
| CVE-2026-43132 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: dm-verity: correctly handle dm_bufio_client_create() failure If either of the calls to dm_bufio_client_create() in verity_fec_ctr… | |||
| CVE-2026-43131 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix null pointer dereference issue If SMU is disabled, during RAS initialization, there will be null pointer derefere… | |||
| CVE-2026-43130 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush dev-IOTLB only when PCIe device is accessible in scalable mode Commit 4fc82cd907ac ("iommu/vt-d: Don't issue AT… | |||
| CVE-2026-43129 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: ima: verify the previous kernel's IMA buffer lies in addressable RAM Patch series "Address page fault in ima_restore_measurement_… | |||
| CVE-2026-43127 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix circular locking dependency in run_unpack_ex Syzbot reported a circular locking dependency between wnd->rw_lock (sbi->… | |||
| CVE-2026-43124 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix incorrect success return when vmap() fails In persistent_ram_vmap(), vmap() may return NULL on failure. If… | |||
| CVE-2026-43123 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: fbcon: check return value of con2fb_acquire_newinfo() If fbcon_open() fails when called from con2fb_acquire_newinfo() then info->… | |||
| CVE-2026-43122 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Update cpuidle driver check in __acpi_processor_start() Commit 7a8c994cbb2d ("ACPI: processor: idle: Optimize AC… | |||
| CVE-2026-43119 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: annotate data-races around hdev->req_status __hci_cmd_sync_sk() sets hdev->req_status under hdev->req_lock: … | |||
| CVE-2026-43118 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix zero size inode with non-zero size after log replay When logging that an inode exists, as part of logging a new name o… | |||
| CVE-2026-43115 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: srcu: Use irq_work to start GP in tiny SRCU Tiny SRCU's srcu_gp_start_if_needed() directly calls schedule_work(), which acquires … | |||
| CVE-2026-43109 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_… | |||
| CVE-2026-43108 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei It looks element length declared in servreg_loc_pfr_req_ei for… | |||
| CVE-2026-43107 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: xfrm: account XFRMA_IF_ID in aevent size calculation xfrm_get_ae() allocates the reply skb with xfrm_aevent_msgsize(), then build… | |||
| CVE-2026-43105 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix memory leak of BO array in hang state The hang state's BO array is allocated separately with kzalloc() in vc4_save_h… | |||
| CVE-2026-43104 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4_save_hang_state() encounters an early return condition, it returns w… | |||
| CVE-2026-43103 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: net: lapbether: handle NETDEV_PRE_TYPE_CHANGE lapbeth_data_transmit() expects the underlying device type to be ARPHRD_ETHER. Ret… | |||
| CVE-2026-43102 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix memory leak in airoha_qdma_rx_process() If an error occurs on the subsequents buffers belonging to the non-linea… | |||
| CVE-2026-43100 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: bridge: guard local VLAN-0 FDB helpers against NULL vlan group When CONFIG_BRIDGE_VLAN_FILTERING is not set, br_vlan_group() and … | |||
| CVE-2026-43098 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: nfc: s3fwrn5: allocate rx skb before consuming bytes s3fwrn82_uart_read() reports the number of accepted bytes to the serdev core… | |||
| CVE-2026-43096 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: mshv: Fix infinite fault loop on permission-denied GPA intercepts Prevent infinite fault loops when guests access memory regions … | |||
| CVE-2026-43095 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: Fix errors in IRQ cleanup IRQs are enabled through sdca_irq_populate() from component probe using devm_request_thread… | |||
| CVE-2026-43094 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: ixgbevf: add missing negotiate_features op to Hyper-V ops table Commit a7075f501bd3 ("ixgbevf: fix mailbox API compatibility by n… | |||
| CVE-2026-43092 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: xsk: validate MTU against usable frame size on bind AF_XDP bind currently accepts zero-copy pool configurations without verifying… | |||
| CVE-2026-43090 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: xfrm: fix refcount leak in xfrm_migrate_policy_find syzkaller reported a memory leak in xfrm_policy_alloc: BUG: memory leak … | |||
| CVE-2026-43089 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_mapping() struct xfrm_usersa_id has a one-byte padding hole after the proto field, which ends u… | |||
| CVE-2026-43088 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: net: af_key: zero aligned sockaddr tail in PF_KEY exports PF_KEY export paths use `pfkey_sockaddr_size()` when reserving sockaddr… | |||
| CVE-2026-43087 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Disable all pin interrupts during probe A chip being probed may have the interrupt-on-change feature enabled o… | |||
| CVE-2026-43086 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: ipvs: fix NULL deref in ip_vs_add_service error path When ip_vs_bind_scheduler() succeeds in ip_vs_add_service(), the local varia… | |||
| CVE-2026-43085 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator When batching multiple NFLOG messages (inst->qlen > 1), __… | |||
| CVE-2026-43082 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: net: txgbe: leave space for null terminators on property_entry Lists of struct property_entry are supposed to be terminated with … | |||
| CVE-2026-43081 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ Fix the field masks to match the hardware layout documented in downs… | |||
| CVE-2026-43080 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series [1]. The actual issue is an overflow of 16-bit … | |||
| CVE-2026-43079 | medium | 5.5 | 5.5 | 28d ago | In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Skip discovery table for offline dies This warning can be triggered if NUMA is disabled and the system boo… | |||
| CVE-2026-7572 | medium | 5.5 | 5.5 | 28d ago | An off-by-one error (CWE-193) in the ConsumeUnit16Array and ConsumeUnit64Array functions in Velocidex Velociraptor before version 0.76.5 on Windows and Linux allows a local attacker to cause a Denial… | |||
| CVE-2026-31893 | medium | 5.5 | 5.5 | 29d ago | Tunnelblick is an open source graphic user interface for OpenVPN on macOS. In versions 3.3beta26 through 9.0beta01, any local user can read arbitrary root-owned files by exploiting a symlink followin… | |||
| CVE-2026-43073 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: x86-64: rename misleadingly named '__copy_user_nocache()' function This function was a masterclass in bad naming, for various his… | |||
| CVE-2026-43072 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: drm/vc4: platform_get_irq_byname() returns an int platform_get_irq_byname() will return a negative value if an error happens, so … | |||
| CVE-2026-43069 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_ll: Fix firmware leak on error path Smatch reports: drivers/bluetooth/hci_ll.c:587 download_firmware() warn: 'fw'… | |||
| CVE-2026-43068 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocate block from corrupted group in ext4_mb_find_by_goal() There's issue as follows: ... EXT4-fs (mmcblk0p1): Dela… | |||
| CVE-2026-43066 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths During code review, Joseph found that ext4_fc_replay_inode() calls e… | |||
| CVE-2026-43065 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: ext4: always drain queued discard work in ext4_mb_release() While reviewing recent ext4 patch[1], Sashiko raised the following co… | |||
| CVE-2026-43064 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix not releasing workqueue on .release() The workqueue associated with an DSA/IAA device is not released when t… | |||
| CVE-2026-43061 | medium | 5.5 | 5.5 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix TX deadlock when using DMA `dmaengine_terminate_async` does not guarantee that the `__dma_tx_complete` callback… | |||
| CVE-2026-39103 | medium | 5.5 | 5.5 | 29d ago | Buffer Overflow vulnerability in GPAC before commit v391dc7f4d234988ea0bc3cc294eb725eddf8f702 allows an attacker to cause a denial of service via the src/scenegraph/svg_attributes.c, svg_parse_string… | |||
| CVE-2026-5247 | medium | 5.5 | 5.5 | 29d ago | The Schedule Post Changes With PublishPress Future plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wrapper' attribute of the [futureaction] shortcode in all versions up to,… | |||
| CVE-2026-31958 | medium | — | 5.5 | 29d ago | Moderate: python-tornado security update | |||
| CVE-2026-35536 | medium | — | 5.5 | 29d ago | Moderate: python-tornado security update | |||
| CVE-2026-29111 | medium | — | 5.5 | 29d ago | Moderate: systemd security update | |||
| CVE-2026-41891 | medium | — | 5.5 | 29d ago | CI4MS has a Deactivated User Session Bypass (active=0) | |||
| CVE-2026-41890 | medium | — | 5.5 | 29d ago | CI4MS Vulnerable to Arbitrary Database Table Drop via Theme deleteProcess | |||
| CVE-2026-42309 | medium | 5.5 | 5.5 | 1mo ago | Pillow has a heap buffer overflow with nested list coordinates | |||
| CVE-2026-42146 | medium | 5.5 | 5.5 | 1mo ago | CImg Library is a C++ library for image processing. Prior to commit c3aacf5, the nb_colors field read from the BMP file header is used directly to compute an allocation size without validating it aga… | |||
| CVE-2026-6501 | medium | — | 5.5 | 1mo ago | jOpenDocument has an improper restriction of XML external entity reference vulnerability | |||
| CVE-2026-43077 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Fix minimum RX size check for decryption The check for the minimum receive buffer size did not take the tag … | |||
| CVE-2026-6525 | medium | 5.5 | 5.5 | 1mo ago | IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 | |||
| CVE-2026-43058 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix pass-by-value structs causing MSAN warnings vidtv_ts_null_write_into() and vidtv_ts_pcr_write_into() take their… | |||
| CVE-2026-39805 | medium | — | 5.5 | 1mo ago | Bandit is vulnerable to CL.CL request smuggling via unrejected duplicate `Content-Length` header | |||
| CVE-2026-39807 | medium | — | 5.5 | 1mo ago | Bandit trusts client-supplied URI scheme on plaintext connections | |||
| CVE-2026-42788 | medium | — | 5.5 | 1mo ago | Bandit HTTP/2 Frame Size Limit Bypass via Late Buffer Check Enables Memory Exhaustion | |||
| CVE-2026-21996 | medium | 5.5 | 5.5 | 1mo ago | An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious ELF binary due to an integer Divide-by-Zero in Pbuild_file_symtab() | |||
| CVE-2026-42481 | medium | 5.5 | 5.5 | 1mo ago | Open CASCADE Technology (OCCT) V8_0_0_rc5 contains multiple vulnerabilities in its IGES and STEP file parsers that can be triggered by crafted IGES or STEP files. These issues include an out-of-bound… | |||
| CVE-2026-42480 | medium | 5.5 | 5.5 | 1mo ago | A stack-based out-of-bounds read vulnerability in VrmlData_Scene::ReadLine in the VRML parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows attackers to cause a denial of service via a crafted … | |||
| CVE-2026-43054 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcm_loop: Drain commands in target_reset handler tcm_loop_target_reset() violates the SCSI EH contract: it returns … | |||
| CVE-2026-43046 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: reject root items with drop_progress and zero drop_level [BUG] When recovering relocation at mount time, merge_reloc_root(… | |||
| CVE-2026-43045 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: mshv: Fix error handling in mshv_region_pin The current error handling has two issues: First, pin_user_pages_fast() can return a… | |||
| CVE-2026-43043 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: crypto: af-alg - fix NULL pointer dereference in scatterwalk The AF_ALG interface fails to unmark the end of a Scatter/Gather Lis… | |||
| CVE-2026-43041 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak __radix_tree_create() allocates and links intermediate … | |||
| CVE-2026-43036 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: net: use skb_header_pointer() for TCPv4 GSO frag_off check Syzbot reported a KMSAN uninit-value warning in gso_features_check() c… | |||
| CVE-2026-43035 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak When building netlink messages… | |||
| CVE-2026-43034 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: bnxt_en: set backing store type from query type bnxt_hwrm_func_backing_store_qcaps_v2() stores resp->type from the firmware respo… | |||
| CVE-2026-43032 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: NFC: pn533: bound the UART receive buffer pn532_receive_buf() appends every incoming byte to dev->recv_skb and only resets the bu… | |||
| CVE-2026-43026 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent ctnetlink_alloc_expect() allocates expectations from a no… | |||
| CVE-2026-43024 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject immediate NF_QUEUE verdict nft_queue is always used from userspace nftables to deliver the NF_QUEUE … | |||
| CVE-2026-43022 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists hci_cmd_sync_queue_once() needs to indicate whether a que… | |||
| CVE-2026-43021 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: fix leaks when hci_cmd_sync_queue_once fails When hci_cmd_sync_queue_once() returns with error, the destroy … | |||
| CVE-2026-43017 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate mesh send advertising payload length mesh_send() currently bounds MGMT_OP_MESH_SEND by total command le… | |||
| CVE-2026-43014 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: net: macb: properly unregister fixed rate clocks The additional resources allocated with clk_register_fixed_rate() need to be rel… | |||
| CVE-2026-43013 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5: lag: Check for LAG device before creating debugfs __mlx5_lag_dev_add_mdev() may return 0 (success) even when an error o… | |||
| CVE-2026-43012 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix switchdev mode rollback in case of failure If for some internal reason switchdev mode fails, we rollback to legacy … | |||
| CVE-2026-43010 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: bpf: Reject sleepable kprobe_multi programs at attach time kprobe.multi programs run in atomic/RCU context and cannot sleep. Howe… | |||
| CVE-2026-43008 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: gpio: qixis-fpga: Fix error handling for devm_regmap_init_mmio() devm_regmap_init_mmio() returns an ERR_PTR() on failure, not NUL… | |||
| CVE-2026-43004 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: spi: stm32-ospi: Fix resource leak in remove() callback The remove() callback returned early if pm_runtime_resume_and_get() faile… | |||
| CVE-2026-42479 | medium | 5.5 | 5.5 | 1mo ago | An out-of-bounds read vulnerability in VrmlData_IndexedLineSet::TShape in the VRML parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows attackers to cause a denial of service via a crafted VRML… | |||
| CVE-2026-31785 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: drm/xe/xe_pagefault: Disallow writes to read-only VMAs The page fault handler should reject write/atomic access to read only VMAs… | |||
| CVE-2026-31784 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: drm/xe/pxp: Clear restart flag in pxp_start after jumping back If we don't clear the flag we'll keep jumping back at the beginnin… | |||
| CVE-2026-31783 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: spi: amlogic: spifc-a4: unregister ECC engine on probe failure and remove() callback aml_sfc_probe() registers the on-host NAND E… | |||
| CVE-2026-31781 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: drm/ioc32: stop speculation on the drm_compat_ioctl path The drm compat ioctl path takes a user controlled pointer, and then dere… | |||
| CVE-2026-31777 | medium | 5.5 | 5.5 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Check the error for index mapping The ctxfi driver blindly assumed a proper value returned from daio_device_index(),… |