|
1381
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bridge: cfm: Fix race condition in peer_mep deletion
When a peer MEP is being deleted, cancel_delayed_work_sync() is called
on cc…
|
CWE-362
Race Condition
|
CVE-2026-23393
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1382
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad:
bridge: cfm: Corrección de condición de carrera en la eliminación de peer_mep
Cuando se está eliminando un MEP par, se llama a can…
|
CWE-362
Race Condition
|
CVE-2026-23393
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1383
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: release flowtable after rcu grace period on error
Call synchronize_rcu() after unregistering the hooks from…
|
CWE-416
Use After Free
|
CVE-2026-23392
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1384
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
netfilter: nf_tables: liberar la tabla de flujos después del período de gracia de RCU en caso de error
Llamar a synchronize_rcu(…
|
CWE-416
Use After Free
|
CVE-2026-23392
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1385
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_CT: drop pending enqueued packets on template removal
Templates refer to objects that can go away while packets are…
|
NVD-CWE-noinfo
|
CVE-2026-23391
|
2026-04-25 03:38 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1386
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
netfilter: xt_CT: descartar paquetes pendientes encolados al eliminar la plantilla
Las plantillas se refieren a objetos que pued…
|
NVD-CWE-noinfo
|
CVE-2026-23391
|
2026-04-25 03:38 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1387
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow
The dma_map_sg tracepoint can trigger a perf buffer over…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-23390
|
2026-04-25 03:32 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1388
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
tracing/dma: Limitar los arrays del tracepoint dma_map_sg para prevenir el desbordamiento de búfer
El tracepoint dma_map_sg pued…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-23390
|
2026-04-25 03:32 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1389
|
9.1 |
CRITICAL
Network
|
openssl
|
openssl
|
Issue summary: Applications using AES-CFB128 encryption or decryption on
systems with AVX-512 and VAES support can trigger an out-of-bounds read
of up to 15 bytes when processing partial cipher block…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-28386
|
2026-04-25 03:28 |
2026-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1390
|
7.5 |
HIGH
Network
|
apache
|
log4j
|
Apache Log4j's JsonTemplateLayout https://logging.apache.org/log4j/2.x/manual/json-template-layout.html , in versions up to and including 2.25.3, produces invalid JSON output when log events contain…
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2026-34481
|
2026-04-25 03:24 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
