|
661
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
crypto: caam - fix DMA corruption on long hmac keys
When a key longer than block size is supplied, it is copied and then
hashed i…
|
NVD-CWE-noinfo
|
CVE-2026-43044
|
2026-05-9 03:58 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
662
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
crypto: af-alg - fix NULL pointer dereference in scatterwalk
The AF_ALG interface fails to unmark the end of a Scatter/Gather Lis…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-43043
|
2026-05-9 03:57 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
663
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mpls: add seqcount to protect the platform_label{,s} pair
The RCU-protected codepaths (mpls_forward, mpls_dump_routes) can have
a…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-43042
|
2026-05-9 03:55 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
664
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak
__radix_tree_create() allocates and links intermediate …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-43041
|
2026-05-9 03:54 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
665
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak
When processing Router…
|
CWE-909
Missing Initialization of Resource
|
CVE-2026-43040
|
2026-05-9 03:53 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
666
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
auxdisplay: line-display: fix NULL dereference in linedisp_release
linedisp_release() currently retrieves the enclosing struct li…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-31753
|
2026-05-9 03:52 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
667
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
usb: cdns3: gadget: fix state inconsistency on gadget init failure
When cdns3_gadget_start() fails, the DRD hardware is left in g…
|
NVD-CWE-noinfo
|
CVE-2026-31754
|
2026-05-9 03:49 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
668
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch
emac_dispatch_skb_zc() allocates a new skb via n…
|
NVD-CWE-noinfo
|
CVE-2026-43039
|
2026-05-9 03:48 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
669
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach()
Sashiko AI-review observed:
In ip6_err_gen_icmpv6_unreach(), the …
|
NVD-CWE-noinfo
|
CVE-2026-43038
|
2026-05-9 03:47 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
670
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
usb: cdns3: gadget: fix NULL pointer dereference in ep_queue
When the gadget endpoint is disabled or not yet configured, the ep->…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-31755
|
2026-05-9 03:45 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
