linux

15,098 tracked vulnerabilities.

CVE-2026-31614 HIGH
Linux Kernel SMB Client - Out-of-Bounds Read
Apr 24, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-31613 HIGH
smb: client: fix OOB reads parsing symlink error response
Apr 24, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-31612 HIGH
ksmbd: validate EaNameLength in smb2_get_ea()
Apr 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-31611 HIGH
ksmbd: require 3 sub-authorities before reading sub_auth[2]
Apr 24, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-31610 MEDIUM
ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31609 CRITICAL
smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush()
Apr 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-31608 CRITICAL
smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list()
Apr 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-31607 CRITICAL
usbip: validate number_of_packets in usbip_pack_ret_submit()
Apr 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-31606 MEDIUM
usb: gadget: f_hid: don't call cdev_init while cdev in use
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31605 MEDIUM
fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31604 MEDIUM
wifi: rtw88: fix device leak on probe failure
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31603 MEDIUM
staging: sm750fb: fix division by zero in ps_to_hz()
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31602 HIGH
ALSA: ctxfi: Limit PTP to a single page
Apr 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-31601 MEDIUM
vfio/xe: Reorganize the init to decouple migration from reset
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31600 HIGH
arm64: mm: Handle invalid large leaf mappings correctly
Apr 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-31599 MEDIUM
media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31598 HIGH
ocfs2: fix possible deadlock between unlink and dio_end_io_write
Apr 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-31597 HIGH
ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY
Apr 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-31596 MEDIUM
ocfs2: handle invalid dinode in ocfs2_group_extend
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31595 MEDIUM
PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31594 MEDIUM
PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31593 MEDIUM
KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31592 MEDIUM
KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31591 MEDIUM
KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31590 MEDIUM
KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION
Apr 24, 2026
CVSS 5.5
EPSS 0.00
Products
linux_kernel 13,404 Linux 11,605 Kernel 8,359 tizen 12 kernel 10 acrn 7 Linux kernel 6 util-linux 4 mac80211 3 direct_connect 2 audit 1 dhcp6c 1 infiniband_hfi1_driver 1 ipsec_tools_racoon_daemon 1 layer_2_tunneling_protocol 1 linux_kernel-rt 1 linux_kernel_i40e\/i40evf 1 linux_kernel_ixgbe 1 systemd 1
Quick Filters
Critical CVEs With Exploits In CISA KEV