Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-31641 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix RxGK token loading to check bounds rxrpc_preparse_xdr_yfs_rxgk() reads the raw key length and … | Apr 24, 2026 |
| CVE-2026-31640 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix use of wrong skb when comparing queued RESP challenge serial In rxrpc_post_response(), the … | Apr 24, 2026 |
| CVE-2026-31639 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key reference count leak from call->key When creating a client call in rxrpc_alloc_client_call(), … | Apr 24, 2026 |
| CVE-2026-31638 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Only put the call ref if one was acquired rxrpc_input_packet_on_conn() can process a to-client … | Apr 24, 2026 |
| CVE-2026-31637 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response tickets rxkad_decrypt_ticket() decrypts the RXKAD response ticket and then parses … | Apr 24, 2026 |
| CVE-2026-31636 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix RESPONSE authenticator parser OOB read rxgk_verify_authenticator() copies auth_len bytes into a temporary buffer … | Apr 24, 2026 |
| CVE-2026-31635 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgk_verify_response() decodes auth_len from the packet and is … | Apr 24, 2026 |
| CVE-2026-31634 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix reference count leak in rxrpc_server_keyring() This patch fixes a reference count leak in … | Apr 24, 2026 |
| CVE-2026-31633 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix integer overflow in rxgk_verify_response() In rxgk_verify_response(), there's a potential integer overflow due to … | Apr 24, 2026 |
| CVE-2026-31632 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix leak of rxgk context in rxgk_verify_response() Fix rxgk_verify_response() to clean up the rxgk … | Apr 24, 2026 |
| CVE-2026-31631 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix buffer overread in rxgk_do_verify_authenticator() Fix rxgk_do_verify_authenticator() to check the buffer size before checking … | Apr 24, 2026 |
| CVE-2026-31630 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AF_RXRPC procfs helpers format local and … | Apr 24, 2026 |
| CVE-2026-31629 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCP_CLOSED checks In nfc_llcp_recv_hdlc() and nfc_llcp_recv_disc(), when the socket … | Apr 24, 2026 |
| CVE-2026-31628 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results … | Apr 24, 2026 |
| CVE-2026-31627 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: i2c: s3c24xx: check the size of the SMBUS message before using it The first byte … | Apr 24, 2026 |
| CVE-2026-31626 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() Initialize le_tmp64 to zero in rtw_BIP_verify() to prevent using … | Apr 24, 2026 |
| CVE-2026-31625 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: HID: alps: fix NULL pointer dereference in alps_raw_event() Commit ecfa6f34492c ("HID: Add HID_CLAIMED_INPUT guards in … | Apr 24, 2026 |
| CVE-2026-31624 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: HID: core: clamp report_size in s32ton() to avoid undefined shift s32ton() shifts by n-1 where … | Apr 24, 2026 |
| CVE-2026-31623 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() A malicious USB device claiming to … | Apr 24, 2026 |
| CVE-2026-31622 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler The NFC-A anti-collision cascade … | Apr 24, 2026 |
| CVE-2026-31621 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: bnge: return after auxiliary_device_uninit() in error path When auxiliary_device_add() fails, the error block calls auxiliary_device_uninit() … | Apr 24, 2026 |
| CVE-2026-31620 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with … | Apr 24, 2026 |
| CVE-2026-31619 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ALSA: fireworks: bound device-supplied status before string array lookup The status field in an EFW … | Apr 24, 2026 |
| CVE-2026-31618 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divide … | Apr 24, 2026 |
| CVE-2026-31617 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() The block_len read from the host-supplied NTB … | Apr 24, 2026 |