Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
20735
Total
1498
Critical
6296
High
6574
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-53171 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma_length() dma_length() derives DMA region usage from command stream values … | Jun 25, 2026 |
| CVE-2026-53170 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uninitialized length cmd_state_init() initializes the command state with memset(0xff), leaving … | Jun 25, 2026 |
| CVE-2026-53169 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject NPU_OP_RESIZE commands from userspace NPU_OP_RESIZE is a U85-only command that the driver does … | Jun 25, 2026 |
| CVE-2026-53168 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: fuse: reject fuse_notify() pagecache ops on directories The operations FUSE_NOTIFY_STORE and FUSE_NOTIFY_RETRIEVE allow the FUSE … | Jun 25, 2026 |
| CVE-2026-53167 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: fuse: limit FUSE_NOTIFY_RETRIEVE to uptodate folios FUSE_NOTIFY_RETRIEVE must be limited to uptodate folios; !uptodate folios … | Jun 25, 2026 |
| CVE-2026-53166 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: futex/requeue: Prevent NULL pointer dereference in remove_waiter() on self-deadlock When FUTEX_CMP_REQUEUE_PI requeues a non-top waiter … | Jun 25, 2026 |
| CVE-2026-53165 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping deref during error reporting When a buffered read fails, iomap_finish_folio_read() … | Jun 25, 2026 |
| CVE-2026-53164 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: iommu/dma: Do not try to iommu_map a 0 length region in swiotlb iommu_dma_iova_link_swiotlb() processes a … | Jun 25, 2026 |
| CVE-2026-53163 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: locking/rtmutex: Skip remove_waiter() when waiter is not enqueued syzbot triggered the following splat in remove_waiter() … | Jun 25, 2026 |
| CVE-2026-53162 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: memcg: use round-robin victim selection in refill_stock Harry Yoo reported that get_random_u32_below() is not safe … | Jun 25, 2026 |
| CVE-2026-53161 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context There is a race between fastrpc_device_release() … | Jun 25, 2026 |
| CVE-2026-53160 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in fastrpc_map_create fastrpc_map_lookup returns a raw pointer after releasing fl->lock. … | Jun 25, 2026 |
| CVE-2026-53159 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix DMA address corruption due to find_vma misuse fastrpc_get_args() uses find_vma() to look … | Jun 25, 2026 |
| CVE-2026-53158 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix NULL pointer dereference in rpmsg callback A NULL pointer dereference was observed … | Jun 25, 2026 |
| CVE-2026-53157 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU grace period phonet_device_destroy() removes a phonet_device from the per-net … | Jun 25, 2026 |
| CVE-2026-53156 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after-free bugs in error paths Fix several instances of error paths in … | Jun 25, 2026 |
| CVE-2026-53155 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: use correct flags for device private PMD entry Commit 65edfda6f3f2 ("mm/rmap: extend rmap and … | Jun 25, 2026 |
| CVE-2026-53154 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: restore reservation on error in hugetlb folio copy paths Two sites in mm/hugetlb.c allocate … | Jun 25, 2026 |
| CVE-2026-53153 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/list_lru: drain before clearing xarray entry on reparent memcg_reparent_list_lrus() clears the dying memcg's xarray entry … | Jun 25, 2026 |
| CVE-2026-53152 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mmc: dw_mmc-rockchip: Add missing private data for very old controllers The really old controllers (rk2928, … | Jun 25, 2026 |
| CVE-2026-53151 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the SACK table for parsing Fix modification of … | Jun 25, 2026 |
| CVE-2026-53150 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Reject zero-length property entries in validator tb_property_entry_valid() accepts entries with length == 0 for … | Jun 25, 2026 |
| CVE-2026-53149 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Bound root directory content to block size __tb_property_parse_dir() does not check that content_offset + … | Jun 25, 2026 |
| CVE-2026-53148 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data copy to allocation size tb_xdp_properties_request() derives the per-packet copy length … | Jun 25, 2026 |
| CVE-2026-53147 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tb_xdp_handle_request() casts the received packet buffer … | Jun 25, 2026 |