linux

16,061 tracked vulnerabilities.

CVE-2026-46140 HIGH
Bluetooth: btmtk: validate WMT event SKB length before struct access
May 28, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-46139 MEDIUM
smb: client: use kzalloc to zero-initialize security descriptor buffer
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46138 HIGH
Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt
May 28, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-46137 CRITICAL
mptcp: pm: ADD_ADDR rtx: fix potential data-race
May 28, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-46136 HIGH
wifi: mt76: mt7921: fix a potential clc buffer length underflow
May 28, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-46135 CRITICAL
nvmet-tcp: fix race between ICReq handling and queue teardown
May 28, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-46134 MEDIUM
platform/chrome: cros_ec_typec: Init mutex in Thunderbolt registration
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46133 HIGH
RDMA/rxe: Reject unknown opcodes before ICRC processing
May 28, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-46132 MEDIUM
net: rtnetlink: zero ifla_vf_broadcast to avoid stack infoleak in rtnl_fill_vfinfo
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46131 MEDIUM
KVM: x86: check for nEPT/nNPT in slow flush hypercalls
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46130 HIGH
dm-verity-fec: fix reading parity bytes split across blocks (take 3)
May 28, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-46129 HIGH
btrfs: fix double free in create_space_info() error path
May 28, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-46128 MEDIUM
ipmi: Check event message buffer response for bad data
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46127 MEDIUM
RDMA/ocrdma: Don't NULL deref uctx on errors in ocrdma_copy_pd_uresp()
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46126 MEDIUM
RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss()
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46125 HIGH
wifi: mac80211: remove station if connection prep fails
May 28, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-46124 HIGH
isofs: validate block number from NFS file handle in isofs_export_iget
May 28, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-46123 HIGH
Bluetooth: virtio_bt: clamp rx length before skb_put
May 28, 2026
CVSS 7.7
EPSS 0.00
CVE-2026-46122 HIGH
wifi: b43: enforce bounds check on firmware key index in b43_rx()
May 28, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-46121 HIGH
mm/damon/sysfs-schemes: protect memcg_path kfree() with damon_sysfs_lock
May 28, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-46120 HIGH
ip6_gre: Use cached t->net in ip6erspan_changelink().
May 28, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-46119 CRITICAL
libceph: Fix slab-out-of-bounds access in auth message processing
May 28, 2026
CVSS 9.1
EPSS 0.01
CVE-2026-46118 MEDIUM
pseries/papr-hvpipe: Fix null ptr deref in papr_hvpipe_dev_create_handle()
May 28, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-46117 HIGH
RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss()
May 28, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-46116 HIGH
xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete
May 28, 2026
CVSS 7.8
EPSS 0.00