linux

16,062 tracked vulnerabilities.

CVE-2026-31617 MEDIUM
usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb()
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31616 MEDIUM
usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete()
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31615 MEDIUM
usb: gadget: renesas_usb3: validate endpoint index in standard request handlers
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31614 HIGH
Linux Kernel SMB Client - Out-of-Bounds Read
Apr 24, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-31613 HIGH
smb: client: fix OOB reads parsing symlink error response
Apr 24, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-31612 HIGH
ksmbd: validate EaNameLength in smb2_get_ea()
Apr 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-31611 HIGH
ksmbd: require 3 sub-authorities before reading sub_auth[2]
Apr 24, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-31610 MEDIUM
ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31609 CRITICAL
smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush()
Apr 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-31608 CRITICAL
smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list()
Apr 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-31607 CRITICAL
usbip: validate number_of_packets in usbip_pack_ret_submit()
Apr 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-31606 MEDIUM
usb: gadget: f_hid: don't call cdev_init while cdev in use
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31605 MEDIUM
fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31604 MEDIUM
wifi: rtw88: fix device leak on probe failure
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31603 MEDIUM
staging: sm750fb: fix division by zero in ps_to_hz()
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31602 HIGH
ALSA: ctxfi: Limit PTP to a single page
Apr 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-31601 MEDIUM
vfio/xe: Reorganize the init to decouple migration from reset
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31600 HIGH
arm64: mm: Handle invalid large leaf mappings correctly
Apr 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-31599 MEDIUM
media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31598 HIGH
ocfs2: fix possible deadlock between unlink and dio_end_io_write
Apr 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-31597 HIGH
ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY
Apr 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-31596 MEDIUM
ocfs2: handle invalid dinode in ocfs2_group_extend
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31595 MEDIUM
PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31594 MEDIUM
PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown
Apr 24, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31593 MEDIUM
KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU
Apr 24, 2026
CVSS 5.5
EPSS 0.00