|
1561
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
apparmor: fix: limit the number of levels of policy namespaces
Currently the number of policy namespaces is not bounded relying o…
|
NVD-CWE-noinfo
|
CVE-2026-23405
|
2026-04-25 03:40 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1562
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
apparmor: replace recursive profile removal with iterative approach
The profile removal code uses recursion when removing nested …
|
NVD-CWE-noinfo
|
CVE-2026-23404
|
2026-04-25 03:40 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1563
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
apparmor: fix memory leak in verify_header
The function sets `*ns = NULL` on every call, leaking the namespace
string allocated i…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-23403
|
2026-04-25 03:39 |
2026-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1564
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bridge: cfm: Fix race condition in peer_mep deletion
When a peer MEP is being deleted, cancel_delayed_work_sync() is called
on cc…
|
CWE-362
Race Condition
|
CVE-2026-23393
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1565
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad:
bridge: cfm: Corrección de condición de carrera en la eliminación de peer_mep
Cuando se está eliminando un MEP par, se llama a can…
|
CWE-362
Race Condition
|
CVE-2026-23393
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1566
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: release flowtable after rcu grace period on error
Call synchronize_rcu() after unregistering the hooks from…
|
CWE-416
Use After Free
|
CVE-2026-23392
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1567
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
netfilter: nf_tables: liberar la tabla de flujos después del período de gracia de RCU en caso de error
Llamar a synchronize_rcu(…
|
CWE-416
Use After Free
|
CVE-2026-23392
|
2026-04-25 03:39 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1568
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_CT: drop pending enqueued packets on template removal
Templates refer to objects that can go away while packets are…
|
NVD-CWE-noinfo
|
CVE-2026-23391
|
2026-04-25 03:38 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1569
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
netfilter: xt_CT: descartar paquetes pendientes encolados al eliminar la plantilla
Las plantillas se refieren a objetos que pued…
|
NVD-CWE-noinfo
|
CVE-2026-23391
|
2026-04-25 03:38 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1570
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow
The dma_map_sg tracepoint can trigger a perf buffer over…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-23390
|
2026-04-25 03:32 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
