|
3461
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfnetlink_osf: validate individual option lengths in fingerprints
nfnl_osf_add_callback() validates opt_num bounds and string
NUL…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-23397
|
2026-04-25 00:18 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3462
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
nfnetlink_osf: validar longitudes de opciones individuales en huellas digitales
nfnl_osf_add_callback() valida los límites de op…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-23397
|
2026-04-25 00:18 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3463
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
icmp: fix NULL pointer dereference in icmp_tag_validation()
icmp_tag_validation() unconditionally dereferences the result of
rcu_…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-23398
|
2026-04-25 00:17 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3464
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
icmp: soluciona la desreferencia de puntero NULL en icmp_tag_validation()
icmp_tag_validation() desreferencia incondicionalmente…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-23398
|
2026-04-25 00:17 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3465
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nf_tables: nft_dynset: fix possible stateful expression memleak in error path
If cloning the second stateful expression in the el…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-23399
|
2026-04-25 00:17 |
2026-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3466
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
nf_tables: nft_dynset: corregir posible fuga de memoria de expresión con estado en la ruta de error
Si la clonación de la segund…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-23399
|
2026-04-25 00:17 |
2026-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3467
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
rust_binder: call set_notification_done() without proc lock
Consider the following sequence of events on a death listener:
1. The…
|
CWE-667
Improper Locking
|
CVE-2026-23400
|
2026-04-25 00:17 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3468
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
rust_binder: llamar a set_notification_done() sin el bloqueo de proc
Considere la siguiente secuencia de eventos en un oyente de…
|
CWE-667
Improper Locking
|
CVE-2026-23400
|
2026-04-25 00:17 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3469
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE
When installing an emulated MMIO SPTE, do so *after*…
|
NVD-CWE-noinfo
|
CVE-2026-23401
|
2026-04-25 00:17 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3470
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE
Adjust KVM's sanity check against overwriting a shado…
|
NVD-CWE-noinfo
|
CVE-2026-23402
|
2026-04-25 00:17 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
