linux

16,061 tracked vulnerabilities.

CVE-2026-53265 HIGH
dm cache policy smq: check allocation under invalidate lock
Jun 25, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-53264 HIGH
net/sched: act_api: use RCU with deferred freeing for action lifecycle
Jun 25, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-53263 MEDIUM
6lowpan: fix off-by-one in multicast context address compression
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53262 HIGH
l2tp: pppol2tp: hold reference to session in pppol2tp_ioctl()
Jun 25, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-53261 MEDIUM
devlink: Release nested relation on devlink free
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53260 CRITICAL
tcp: Add preempt_{disable,enable}_nested() in reqsk_queue_hash_req().
Jun 25, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-53259 HIGH
ipv6: anycast: insert aca into global hash under idev->lock
Jun 25, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-53258 MEDIUM
wifi: fix leak if split 6 GHz scanning fails
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53257 MEDIUM
wifi: cfg80211: enforce HE/EHT cap/oper consistency
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53256 HIGH
Bluetooth: RFCOMM: hold listener socket in rfcomm_connect_ind()
Jun 25, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-53255 HIGH
Bluetooth: MGMT: validate advertising TLV before type checks
Jun 25, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-53254 HIGH
Bluetooth: RFCOMM: validate skb length in MCC handlers
Jun 25, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-53253 HIGH
Bluetooth: bnep: reject short frames before parsing
Jun 25, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-53252 MEDIUM
Bluetooth: fix memory leak in error path of hci_alloc_dev()
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53251 MEDIUM
Bluetooth: ISO: Fix not releasing hdev reference on iso_conn_big_sync
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53250 HIGH
xsk: cache csum_start/csum_offset to fix TOCTOU in xsk_skb_metadata()
Jun 25, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-53249 MEDIUM
ipv4: restrict IPOPT_SSRR and IPOPT_LSRR options
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53248 HIGH
net: airoha: Fix use-after-free in metadata dst teardown
Jun 25, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-53247 CRITICAL
Linux - Use After Free
Jun 25, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-53246 CRITICAL
sctp: validate cached peer INIT chunk length in COOKIE_ECHO processing
Jun 25, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-53245 MEDIUM
net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattr
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53244 HIGH
VFS: fix possible failure to unlock in nfsd4_create_file()
Jun 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-53243 MEDIUM
rseq: Fix using an uninitialized stack variable in rseq_exit_user_update()
Jun 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-53242 HIGH
ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams
Jun 25, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-53241 MEDIUM
ALSA: seq: dummy: fix UMP event stack overread
Jun 25, 2026
CVSS 5.5
EPSS 0.00