|
3861
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
apparmor: replace recursive profile removal with iterative approach
The profile removal code uses recursion when removing nested …
|
NVD-CWE-noinfo
|
CVE-2026-23404
|
2026-04-25 03:40 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3862
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
apparmor: fix memory leak in verify_header
The function sets `*ns = NULL` on every call, leaking the namespace
string allocated i…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-23403
|
2026-04-25 03:39 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3863
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bridge: cfm: Fix race condition in peer_mep deletion
When a peer MEP is being deleted, cancel_delayed_work_sync() is called
on cc…
|
CWE-362
Race Condition
|
CVE-2026-23393
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3864
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad:
bridge: cfm: Corrección de condición de carrera en la eliminación de peer_mep
Cuando se está eliminando un MEP par, se llama a can…
|
CWE-362
Race Condition
|
CVE-2026-23393
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3865
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: release flowtable after rcu grace period on error
Call synchronize_rcu() after unregistering the hooks from…
|
CWE-416
Use After Free
|
CVE-2026-23392
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3866
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
netfilter: nf_tables: liberar la tabla de flujos después del período de gracia de RCU en caso de error
Llamar a synchronize_rcu(…
|
CWE-416
Use After Free
|
CVE-2026-23392
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3867
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_CT: drop pending enqueued packets on template removal
Templates refer to objects that can go away while packets are…
|
NVD-CWE-noinfo
|
CVE-2026-23391
|
2026-04-25 03:38 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3868
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
netfilter: xt_CT: descartar paquetes pendientes encolados al eliminar la plantilla
Las plantillas se refieren a objetos que pued…
|
NVD-CWE-noinfo
|
CVE-2026-23391
|
2026-04-25 03:38 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3869
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow
The dma_map_sg tracepoint can trigger a perf buffer over…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-23390
|
2026-04-25 03:32 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3870
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
tracing/dma: Limitar los arrays del tracepoint dma_map_sg para prevenir el desbordamiento de búfer
El tracepoint dma_map_sg pued…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-23390
|
2026-04-25 03:32 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
