[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 6 20:13:49 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a151a31c by security tracker role at 2026-05-06T19:13:43+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,1102 +1,1512 @@
-CVE-2026-40562
+CVE-2026-8031 (A vulnerability was detected in PicoTronica e-Clinic Healthcare System ...)
+ TODO: check
+CVE-2026-8028 (A vulnerability was detected in FlowiseAI Flowise up to 3.0.12. This a ...)
+ TODO: check
+CVE-2026-8027 (A weakness has been identified in FlowiseAI Flowise up to 3.0.12. Affe ...)
+ TODO: check
+CVE-2026-8026 (A security flaw has been discovered in FlowiseAI Flowise up to 3.0.12. ...)
+ TODO: check
+CVE-2026-8022 (Inappropriate implementation in MHTML in Google Chrome prior to 148.0. ...)
+ TODO: check
+CVE-2026-8021 (Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-8020 (Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.77 ...)
+ TODO: check
+CVE-2026-8019 (Insufficient policy enforcement in WebApp in Google Chrome prior to 14 ...)
+ TODO: check
+CVE-2026-8018 (Insufficient policy enforcement in DevTools in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-8017 (Side-channel information leakage in Media in Google Chrome prior to 14 ...)
+ TODO: check
+CVE-2026-8016 (Use after free in WebRTC in Google Chrome prior to 148.0.7778.96 allow ...)
+ TODO: check
+CVE-2026-8015 (Inappropriate implementation in Media in Google Chrome prior to 148.0. ...)
+ TODO: check
+CVE-2026-8014 (Inappropriate implementation in Preload in Google Chrome prior to 148. ...)
+ TODO: check
+CVE-2026-8013 (Insufficient validation of untrusted input in FedCM in Google Chrome p ...)
+ TODO: check
+CVE-2026-8012 (Inappropriate implementation in MHTML in Google Chrome prior to 148.0. ...)
+ TODO: check
+CVE-2026-8011 (Insufficient policy enforcement in Search in Google Chrome prior to 14 ...)
+ TODO: check
+CVE-2026-8010 (Insufficient validation of untrusted input in SiteIsolation in Google ...)
+ TODO: check
+CVE-2026-8009 (Inappropriate implementation in Cast in Google Chrome prior to 148.0.7 ...)
+ TODO: check
+CVE-2026-8008 (Inappropriate implementation in DevTools in Google Chrome prior to 148 ...)
+ TODO: check
+CVE-2026-8007 (Insufficient validation of untrusted input in Cast in Google Chrome pr ...)
+ TODO: check
+CVE-2026-8006 (Insufficient policy enforcement in DevTools in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-8005 (Insufficient validation of untrusted input in Cast in Google Chrome pr ...)
+ TODO: check
+CVE-2026-8004 (Insufficient policy enforcement in DevTools in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-8003 (Insufficient validation of untrusted input in TabGroups in Google Chro ...)
+ TODO: check
+CVE-2026-8002 (Use after free in Audio in Google Chrome on Mac prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-8001 (Use After Free in Printing in Google Chrome on Linux, Mac, ChromeOS pr ...)
+ TODO: check
+CVE-2026-8000 (Insufficient validation of untrusted input in ChromeDriver in Google C ...)
+ TODO: check
+CVE-2026-7999 (Inappropriate implementation in V8 in Google Chrome prior to 148.0.777 ...)
+ TODO: check
+CVE-2026-7998 (Insufficient validation of untrusted input in Dialog in Google Chrome ...)
+ TODO: check
+CVE-2026-7997 (Insufficient validation of untrusted input in Updater in Google Chrome ...)
+ TODO: check
+CVE-2026-7996 (Insufficient validation of untrusted input in SSL in Google Chrome pri ...)
+ TODO: check
+CVE-2026-7995 (Out of bounds read in AdFilter in Google Chrome prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-7994 (Inappropriate implementation in Chromoting in Google Chrome on Windows ...)
+ TODO: check
+CVE-2026-7993 (Insufficient validation of untrusted input in Payments in Google Chrom ...)
+ TODO: check
+CVE-2026-7992 (Insufficient validation of untrusted input in UI in Google Chrome on L ...)
+ TODO: check
+CVE-2026-7991 (Use after free in UI in Google Chrome prior to 148.0.7778.96 allowed a ...)
+ TODO: check
+CVE-2026-7990 (Insufficient validation of untrusted input in Updater in Google Chrome ...)
+ TODO: check
+CVE-2026-7989 (Insufficient data validation in DataTransfer in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-7988 (Type Confusion in WebRTC in Google Chrome prior to 148.0.7778.96 allow ...)
+ TODO: check
+CVE-2026-7987 (Use after free in WebRTC in Google Chrome prior to 148.0.7778.96 allow ...)
+ TODO: check
+CVE-2026-7986 (Insufficient policy enforcement in Autofill in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-7985 (Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7984 (Use after free in ReadingMode in Google Chrome prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-7983 (Out of bounds read in Dawn in Google Chrome prior to 148.0.7778.96 all ...)
+ TODO: check
+CVE-2026-7982 (Uninitialized Use in WebCodecs in Google Chrome prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-7981 (Out of bounds read in Codecs in Google Chrome prior to 148.0.7778.96 a ...)
+ TODO: check
+CVE-2026-7980 (Use after free in WebAudio in Google Chrome prior to 148.0.7778.96 all ...)
+ TODO: check
+CVE-2026-7979 (Inappropriate implementation in Media in Google Chrome prior to 148.0. ...)
+ TODO: check
+CVE-2026-7978 (Inappropriate implementation in Companion in Google Chrome on Mac prio ...)
+ TODO: check
+CVE-2026-7977 (Inappropriate implementation in Canvas in Google Chrome prior to 148.0 ...)
+ TODO: check
+CVE-2026-7976 (Use after free in Views in Google Chrome prior to 148.0.7778.96 allowe ...)
+ TODO: check
+CVE-2026-7975 (Use after free in DevTools in Google Chrome prior to 148.0.7778.96 all ...)
+ TODO: check
+CVE-2026-7974 (Use after free in Blink in Google Chrome prior to 148.0.7778.96 allowe ...)
+ TODO: check
+CVE-2026-7973 (Integer overflow in Dawn in Google Chrome on Windows prior to 148.0.77 ...)
+ TODO: check
+CVE-2026-7972 (Uninitialized Use in GPU in Google Chrome prior to 148.0.7778.96 allow ...)
+ TODO: check
+CVE-2026-7971 (Inappropriate implementation in ORB in Google Chrome prior to 148.0.77 ...)
+ TODO: check
+CVE-2026-7970 (Use after free in TopChrome in Google Chrome prior to 148.0.7778.96 al ...)
+ TODO: check
+CVE-2026-7969 (Integer overflow in Network in Google Chrome prior to 148.0.7778.96 al ...)
+ TODO: check
+CVE-2026-7968 (Insufficient validation of untrusted input in CORS in Google Chrome pr ...)
+ TODO: check
+CVE-2026-7967 (Insufficient validation of untrusted input in Navigation in Google Chr ...)
+ TODO: check
+CVE-2026-7966 (Insufficient validation of untrusted input in SiteIsolation in Google ...)
+ TODO: check
+CVE-2026-7965 (Insufficient validation of untrusted input in DevTools in Google Chrom ...)
+ TODO: check
+CVE-2026-7964 (Insufficient validation of untrusted input in FileSystem in Google Chr ...)
+ TODO: check
+CVE-2026-7963 (Inappropriate implementation in ServiceWorker in Google Chrome prior t ...)
+ TODO: check
+CVE-2026-7962 (Insufficient policy enforcement in DirectSockets in Google Chrome prio ...)
+ TODO: check
+CVE-2026-7961 (Insufficient validation of untrusted input in Permissions in Google Ch ...)
+ TODO: check
+CVE-2026-7960 (Race in Speech in Google Chrome prior to 148.0.7778.96 allowed a remot ...)
+ TODO: check
+CVE-2026-7959 (Inappropriate implementation in Navigation in Google Chrome prior to 1 ...)
+ TODO: check
+CVE-2026-7958 (Inappropriate implementation in ServiceWorker in Google Chrome prior t ...)
+ TODO: check
+CVE-2026-7957 (Out of bounds write in Media in Google Chrome on Mac, iOS prior to 148 ...)
+ TODO: check
+CVE-2026-7956 (Use after free in Navigation in Google Chrome prior to 148.0.7778.96 a ...)
+ TODO: check
+CVE-2026-7955 (Uninitialized Use in GPU in Google Chrome prior to 148.0.7778.96 allow ...)
+ TODO: check
+CVE-2026-7954 (Race in Shared Storage in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7953 (Insufficient validation of untrusted input in Omnibox in Google Chrome ...)
+ TODO: check
+CVE-2026-7952 (Insufficient policy enforcement in Extensions in Google Chrome prior t ...)
+ TODO: check
+CVE-2026-7951 (Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-7950 (Out of bounds read and write in GFX in Google Chrome prior to 148.0.77 ...)
+ TODO: check
+CVE-2026-7949 (Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 all ...)
+ TODO: check
+CVE-2026-7948 (Race in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-7947 (Insufficient validation of untrusted input in Network in Google Chrome ...)
+ TODO: check
+CVE-2026-7946 (Insufficient policy enforcement in WebUI in Google Chrome on Linux, Ma ...)
+ TODO: check
+CVE-2026-7945 (Insufficient validation of untrusted input in COOP in Google Chrome pr ...)
+ TODO: check
+CVE-2026-7944 (Insufficient validation of untrusted input in Persistent Cache in Goog ...)
+ TODO: check
+CVE-2026-7943 (Insufficient validation of untrusted input in ANGLE in Google Chrome p ...)
+ TODO: check
+CVE-2026-7942 (Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.96 allo ...)
+ TODO: check
+CVE-2026-7941 (Insufficient validation of untrusted input in Mobile in Google Chrome ...)
+ TODO: check
+CVE-2026-7940 (Use after free in V8 in Google Chrome prior to 148.0.7778.96 allowed a ...)
+ TODO: check
+CVE-2026-7939 (Inappropriate implementation in SanitizerAPI in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-7938 (Use after free in CSS in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7937 (Insufficient policy enforcement in DevTools in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-7936 (Object lifecycle issue in V8 in Google Chrome prior to 148.0.7778.96 a ...)
+ TODO: check
+CVE-2026-7935 (Inappropriate implementation in Speech in Google Chrome prior to 148.0 ...)
+ TODO: check
+CVE-2026-7934 (Insufficient validation of untrusted input in Popup Blocker in Google ...)
+ TODO: check
+CVE-2026-7933 (Out of bounds read in WebCodecs in Google Chrome prior to 148.0.7778.9 ...)
+ TODO: check
+CVE-2026-7932 (Insufficient policy enforcement in Downloads in Google Chrome prior to ...)
+ TODO: check
+CVE-2026-7931 (Insufficient validation of untrusted input in iOS in Google Chrome on ...)
+ TODO: check
+CVE-2026-7930 (Insufficient validation of untrusted input in Cookies in Google Chrome ...)
+ TODO: check
+CVE-2026-7929 (Use after free in MediaRecording in Google Chrome prior to 148.0.7778. ...)
+ TODO: check
+CVE-2026-7928 (Use after free in WebRTC in Google Chrome on Windows prior to 148.0.77 ...)
+ TODO: check
+CVE-2026-7927 (Type Confusion in Runtime in Google Chrome prior to 148.0.7778.96 allo ...)
+ TODO: check
+CVE-2026-7926 (Use after free in PresentationAPI in Google Chrome prior to 148.0.7778 ...)
+ TODO: check
+CVE-2026-7925 (Use after free in Chromoting in Google Chrome on Windows prior to 148. ...)
+ TODO: check
+CVE-2026-7924 (Uninitialized Use in Dawn in Google Chrome prior to 148.0.7778.96 allo ...)
+ TODO: check
+CVE-2026-7923 (Out of bounds write in Skia in Google Chrome prior to 148.0.7778.96 al ...)
+ TODO: check
+CVE-2026-7922 (Use after free in ServiceWorker in Google Chrome prior to 148.0.7778.9 ...)
+ TODO: check
+CVE-2026-7921 (Use after free in Passwords in Google Chrome prior to 148.0.7778.96 al ...)
+ TODO: check
+CVE-2026-7920 (Use after free in Skia in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7919 (Use after free in Aura in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7918 (Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7917 (Use after free in Fullscreen in Google Chrome on Windows prior to 148. ...)
+ TODO: check
+CVE-2026-7916 (Insufficient data validation in InterestGroups in Google Chrome prior ...)
+ TODO: check
+CVE-2026-7915 (Insufficient data validation in DevTools in Google Chrome on Android p ...)
+ TODO: check
+CVE-2026-7914 (Type Confusion in Accessibility in Google Chrome on Windows prior to 1 ...)
+ TODO: check
+CVE-2026-7913 (Insufficient policy enforcement in DevTools in Google Chrome on Androi ...)
+ TODO: check
+CVE-2026-7912 (Integer overflow in GPU in Google Chrome on Android prior to 148.0.777 ...)
+ TODO: check
+CVE-2026-7911 (Use after free in Aura in Google Chrome on Windows prior to 148.0.7778 ...)
+ TODO: check
+CVE-2026-7910 (Use after free in Views in Google Chrome prior to 148.0.7778.96 allowe ...)
+ TODO: check
+CVE-2026-7909 (Inappropriate implementation in ServiceWorker in Google Chrome prior t ...)
+ TODO: check
+CVE-2026-7908 (Use after free in Fullscreen in Google Chrome prior to 148.0.7778.96 a ...)
+ TODO: check
+CVE-2026-7907 (Use after free in DOM in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7906 (Use after free in SVG in Google Chrome prior to 148.0.7778.96 allowed ...)
+ TODO: check
+CVE-2026-7905 (Insufficient validation of untrusted input in Media in Google Chrome o ...)
+ TODO: check
+CVE-2026-7904 (Out of bounds read in Fonts in Google Chrome prior to 148.0.7778.96 al ...)
+ TODO: check
+CVE-2026-7903 (Integer overflow in ANGLE in Google Chrome on Mac,Windows prior to 148 ...)
+ TODO: check
+CVE-2026-7902 (Out of bounds memory access in V8 in Google Chrome prior to 148.0.7778 ...)
+ TODO: check
+CVE-2026-7901 (Use after free in ANGLE in Google Chrome on Mac prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-7900 (Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.96 ...)
+ TODO: check
+CVE-2026-7899 (Out of bounds read and write in V8 in Google Chrome prior to 148.0.777 ...)
+ TODO: check
+CVE-2026-7898 (Use after free in Chromoting in Google Chrome on Linux prior to 148.0. ...)
+ TODO: check
+CVE-2026-7897 (Use after free in Mobile in Google Chrome on iOS prior to 148.0.7778.9 ...)
+ TODO: check
+CVE-2026-7896 (Integer overflow in Blink in Google Chrome prior to 148.0.7778.96 allo ...)
+ TODO: check
+CVE-2026-7875 (NanoClaw contains a host/container filesystem boundary vulnerability i ...)
+ TODO: check
+CVE-2026-7841 (A remote code execution vulnerability exists in Notification Settings ...)
+ TODO: check
+CVE-2026-7457 (The LatePoint plugin for WordPress is vulnerable to Stored Cross-Site ...)
+ TODO: check
+CVE-2026-7448 (The LatePoint \u2013 Calendar Booking Plugin for Appointments and Even ...)
+ TODO: check
+CVE-2026-7332 (The LatePoint \u2013 Calendar Booking Plugin for Appointments and Even ...)
+ TODO: check
+CVE-2026-6863 (Velociraptor versions prior to 0.76.4 contain a cross organization aut ...)
+ TODO: check
+CVE-2026-6860 (A TCP client can perform a TLS handshake and present the server name e ...)
+ TODO: check
+CVE-2026-6788 (Uncontrolled Search Path Element vulnerabilityin WatchGuard Agent on W ...)
+ TODO: check
+CVE-2026-6787 (Use of Hard-coded Cryptographic Key vulnerability in WatchGuard Agent ...)
+ TODO: check
+CVE-2026-6672 (The Affiliate Program Suite \u2014 SliceWP Affiliates plugin for WordP ...)
+ TODO: check
+CVE-2026-6420 (A flaw was found in Keylime. An attacker with root access on an enroll ...)
+ TODO: check
+CVE-2026-6344 (The Fluent Forms plugin for WordPress is vulnerable to Arbitrary File ...)
+ TODO: check
+CVE-2026-6210 (A type confusion vulnerability in Qt SVG allows an attacker to cause a ...)
+ TODO: check
+CVE-2026-43975 (FolderUploadsFileManager in Apache Wicket does not validate or sanitiz ...)
+ TODO: check
+CVE-2026-43646 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
+ TODO: check
+CVE-2026-42509 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2026-42503 (gopls by default communicates via pipe. However, -port and -listen fla ...)
+ TODO: check
+CVE-2026-41938 (Vvveb before version 1.0.8.2 contains an unrestricted file upload vuln ...)
+ TODO: check
+CVE-2026-41936 (Vvveb before version 1.0.8.2 contains an XML external entity (XXE) inj ...)
+ TODO: check
+CVE-2026-41934 (Vvveb before version 1.0.8.2 contains an authenticated remote code exe ...)
+ TODO: check
+CVE-2026-41931 (Vvveb before version 1.0.8.2 contains an information disclosure vulner ...)
+ TODO: check
+CVE-2026-41930 (Vvveb before version 1.0.8.2 contains a hard-coded credentials vulnera ...)
+ TODO: check
+CVE-2026-41288 (Incorrect permission assignment for a resource in the patch management ...)
+ TODO: check
+CVE-2026-41287 (Stack-based Buffer Overflow vulnerability in the WatchGuard Agent disc ...)
+ TODO: check
+CVE-2026-41286 (Stack-based Buffer Overflow vulnerability in the WatchGuard Agent disc ...)
+ TODO: check
+CVE-2026-40010 (Missing invocation of Servlet http web request method changeSessionId ...)
+ TODO: check
+CVE-2026-40001 (There is a local privilege escalation vulnerability in the ZTE PROCESS ...)
+ TODO: check
+CVE-2026-36358 (Cross Site Scripting vulnerability in Juzaweb CMS v.5.0.0 allows a rem ...)
+ TODO: check
+CVE-2026-35255 (Vulnerability in the OracleCloud Native Environment Command Line Inter ...)
+ TODO: check
+CVE-2026-35254 (Vulnerability in the Oracle OCI CLI product of Oracle Open Source Proj ...)
+ TODO: check
+CVE-2026-35253 (Vulnerability in the Oracle Macoron Tool product of Oracle Open Source ...)
+ TODO: check
+CVE-2026-34474 (Sensitive data exposure leading to admin/WLAN credential leak in ZTE Z ...)
+ TODO: check
+CVE-2026-34473 (Unauthenticated DoS in ZTE H8102E, H168N, H167A, H199A, H288A, H198A, ...)
+ TODO: check
+CVE-2026-33079 (In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regula ...)
+ TODO: check
+CVE-2026-29090 (### Summary A SQL injection vulnerability exists in Rucio versions 1. ...)
+ TODO: check
+CVE-2026-29080 (A SQL injection vulnerability in `FilterEngine.create_sqla_query()` al ...)
+ TODO: check
+CVE-2026-23928 (The Item history widget (in Zabbix 7.0+) or the Plain text widget (in ...)
+ TODO: check
+CVE-2026-23927 (A user able to connect to Agent 2 can inject an Oracle TNS connection ...)
+ TODO: check
+CVE-2026-23926 (An authenticated (non-super) administrator can create a maintenance pe ...)
+ TODO: check
+CVE-2026-23870 (A denial of service vulnerability could be triggered by sending specia ...)
+ TODO: check
+CVE-2026-21661 (Uncontrolled Search Path Element vulnerability in JohnsonControls AC20 ...)
+ TODO: check
+CVE-2026-20219 (A vulnerability in the REST API of Cisco Slido could have allowed an a ...)
+ TODO: check
+CVE-2026-20195 (A vulnerability in an identity management API endpoint of Cisco ISE co ...)
+ TODO: check
+CVE-2026-20193 (A vulnerability in the RADIUS Policy API endpoints of Cisco ISE could ...)
+ TODO: check
+CVE-2026-20189 (A vulnerability in the log file download functionality of Cisco Prime ...)
+ TODO: check
+CVE-2026-20188 (A vulnerability in the connection-handling mechanism of Cisco Crosswor ...)
+ TODO: check
+CVE-2026-20185 (A vulnerability in the Simple Network Management Protocol (SNMP) subsy ...)
+ TODO: check
+CVE-2026-20172 (A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and ...)
+ TODO: check
+CVE-2026-20169 (A vulnerability in the web-based management interface of Cisco IoT Fie ...)
+ TODO: check
+CVE-2026-20168 (A vulnerability in the web-based management interface of Cisco IoT Fie ...)
+ TODO: check
+CVE-2026-20167 (A vulnerability in the web-based management interface of Cisco IoT Fie ...)
+ TODO: check
+CVE-2026-20035 (A vulnerability in the web UI of Cisco Unity Connection Web Inbox coul ...)
+ TODO: check
+CVE-2026-20034 (A vulnerability in the web-based management interface of Cisco Unity C ...)
+ TODO: check
+CVE-2026-1719 (The Gravity Bookings Premium plugin for WordPress is vulnerable to SQL ...)
+ TODO: check
+CVE-2026-0300 (A buffer overflow vulnerability in the User-ID\u2122 Authentication Po ...)
+ TODO: check
+CVE-2025-62345 (HCL BigFix RunBookAI is affected by a Continued availability of Less-S ...)
+ TODO: check
+CVE-2025-59854 (HCL DFXAnalytics is affected by an Insecure Security Header Configurat ...)
+ TODO: check
+CVE-2025-59853 (HCL DFXAnalytics is affected by an Improper Error Handling vulnerabili ...)
+ TODO: check
+CVE-2025-59852 (HCL DFXAnalytics is affected by an Insufficient Transport Layer Prot ...)
+ TODO: check
+CVE-2025-59851 (HCL DFXAnalytics is affected by a Using Components with Known Vulnerab ...)
+ TODO: check
+CVE-2025-52613 (HCL BigFix Service Management (SM) is affected by use of a vulnerable ...)
+ TODO: check
+CVE-2025-31984 (HCL BigFix Service Management (SM) is affected by a security misconfig ...)
+ TODO: check
+CVE-2025-31983 (HCL BigFix Service Management (SM) is affected by a security misconfig ...)
+ TODO: check
+CVE-2025-31982 (HCL BigFix Service Management (SM) had directories that were not linke ...)
+ TODO: check
+CVE-2025-31978 (HCL BigFix Service Management (SM) does not adequately sanitize or saf ...)
+ TODO: check
+CVE-2025-31976 (HCL BigFix Service Management (SM) is vulnerable to insufficiently pro ...)
+ TODO: check
+CVE-2025-31975 (HCL BigFix Service Management (SM) is affected by an Information Discl ...)
+ TODO: check
+CVE-2025-31974 (HCL BigFix Service Management (SM) is susceptible to a Root File Syste ...)
+ TODO: check
+CVE-2025-31970 (HCL DFXAnalytics is affected by an Insecure Security Header configurat ...)
+ TODO: check
+CVE-2025-31960 (HCL BigFix Service Management (SM) is vulnerable to information exposu ...)
+ TODO: check
+CVE-2025-31959 (HCL BigFix Service Management (SM) application fails to strip EXIF met ...)
+ TODO: check
+CVE-2025-31957 (HHCL BigFix Service Management (SM) is affected by a Cross\u2011Site R ...)
+ TODO: check
+CVE-2025-31951 (HCL BigFix RunBookAI is affected by a Unvalidated Command Input / Pote ...)
+ TODO: check
+CVE-2024-30151 (HCL BigFix Service Management (SX) is affected by a Broken Access Con ...)
+ TODO: check
+CVE-2026-40562 (Gazelle versions through 0.49 for Perl allows HTTP Request Smuggling v ...)
NOTE: Perl Gazelle
NOTE: https://lists.security.metacpan.org/cve-announce/msg/39783440/
-CVE-2026-5081
+CVE-2026-5081 (Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 ...)
- libapache-session-perl <unfixed> (unimportant)
NOTE: https://lists.security.metacpan.org/cve-announce/msg/39783104/
NOTE: CVE exists to document that Apache::Session::Generate::ModUniqueId is
NOTE: to use e.g. for where session id might be used for authentication or
NOTE: provides access to restricted data and to use Apache::Session::Generate::Random
NOTE: in such cases.
-CVE-2025-71288 [memory: mtk-smi: fix device leaks on common probe]
+CVE-2025-71288 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6cfa038bddd710f544076ea2ef7792fc82fbedd6 (7.0-rc1)
-CVE-2025-71286 [ASoC: SOF: ipc4-topology: Correct the allocation size for bytes controls]
+CVE-2025-71286 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/a653820700b81c9e6f05ac23b7969ecec1a18e85 (7.0-rc1)
-CVE-2025-71295 [fs/buffer: add alert in try_to_free_buffers() for folios without buffers]
+CVE-2025-71295 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/b68f91ef3b3fe82ad78c417de71b675699a8467c (7.0-rc1)
-CVE-2025-71294 [drm/amdgpu: fix NULL pointer issue buffer funcs]
+CVE-2025-71294 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/9877a865d62c9c3e0f4cc369dc9ca9f7f24f5ee9 (7.0-rc1)
-CVE-2025-71293 [drm/amdgpu/ras: Move ras data alloc before bad page check]
+CVE-2025-71293 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/bd68a1404b6fa2e7e9957b38ba22616faba43e75 (7.0-rc1)
-CVE-2025-71292 [jfs: nlink overflow in jfs_rename]
+CVE-2025-71292 (In the Linux kernel, the following vulnerability has been resolved: j ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/9218dc26fd922b09858ecd3666ed57dfd8098da8 (7.0-rc1)
-CVE-2025-71291 [misc: bcm_vk: Fix possible null-pointer dereferences in bcm_vk_read()]
+CVE-2025-71291 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/ba75ecb97d3f4e95d59002c13afb6519205be6cb (7.0-rc1)
-CVE-2025-71290 [misc: ti_fpc202: fix a potential memory leak in probe function]
+CVE-2025-71290 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/dad9f13d967b4e53e8eaf5f9c690f8e778ad9802 (7.0-rc1)
-CVE-2025-71289 [fs/ntfs3: handle attr_set_size() errors when truncating files]
+CVE-2025-71289 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/576248a34b927e93b2fd3fff7df735ba73ad7d01 (7.0-rc1)
-CVE-2025-71287 [memory: mtk-smi: fix device leak on larb probe]
+CVE-2025-71287 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/9dae65913b32d05dbc8ff4b8a6bf04a0e49a8eb6 (7.0-rc1)
-CVE-2025-71285 [net: qrtr: Drop the MHI auto_queue feature for IPCR DL channels]
+CVE-2025-71285 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/51731792a25cb312ca94cdccfa139eb46de1b2ef (7.0-rc1)
-CVE-2026-43282 [RDMA/ionic: Fix potential NULL pointer dereference in ionic_query_port]
+CVE-2026-43282 (In the Linux kernel, the following vulnerability has been resolved: R ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/fd80bd7105f88189f47d465ca8cb7d115570de30 (7.0-rc2)
-CVE-2026-43280 [drm/xe: Add bounds check on pat_index to prevent OOB kernel read in madvise]
+CVE-2026-43280 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/fbbe32618e97eff81577a01eb7d9adcd64a216d7 (7.0-rc1)
-CVE-2026-43276 [net: mana: Fix double destroy_workqueue on service rescan PCI path]
+CVE-2026-43276 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/f975a0955276579e2176a134366ed586071c7c6a (7.0-rc2)
-CVE-2026-43265 [KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block()]
+CVE-2026-43265 (In the Linux kernel, the following vulnerability has been resolved: K ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/ead63640d4e72e6f6d464f4e31f7fecb79af8869 (7.0-rc1)
-CVE-2026-43260 [bnxt_en: Fix RSS context delete logic]
+CVE-2026-43260 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/e123d9302d223767bd910bfbcfe607bae909f8ac (7.0-rc2)
-CVE-2026-43259 [phy: fsl-imx8mq-usb: set platform driver data]
+CVE-2026-43259 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/debf8326a435ac746f48173e4742a574810f1ff4 (7.0-rc1)
-CVE-2026-43256 [media: qcom: camss: vfe: Fix out-of-bounds access in vfe_isr_reg_update()]
+CVE-2026-43256 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/d965919af524e68cb2ab1a685872050ad2ee933d (7.0-rc1)
-CVE-2026-43254 [ovpn: tcp - fix packet extraction from stream]
+CVE-2026-43254 (In the Linux kernel, the following vulnerability has been resolved: o ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/d4f687fbbce45b5e88438e89b5e26c0c15847992 (7.0-rc2)
-CVE-2026-43252 [mptcp: pm: in-kernel: always set ID as avail when rm endp]
+CVE-2026-43252 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/d191101dee25567c2af3b28565f45346c33d65f5 (7.0-rc1)
-CVE-2026-43247 [media: chips-media: wave5: Fix SError of kernel panic when closed]
+CVE-2026-43247 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/cbb9c0d50e471483cced55f5b7db4569dcd959a6 (7.0-rc1)
-CVE-2026-43240 [x86/kexec: add a sanity check on previous kernel's ima kexec buffer]
+CVE-2026-43240 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/c5489d04337b47e93c0623e8145fcba3f5739efd (7.0-rc1)
-CVE-2026-43238 [net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash()]
+CVE-2026-43238 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/be054cc66f739a9ba615dba9012a07fab8e7dd6f (7.0-rc1)
-CVE-2026-43235 [media: iris: Add missing platform data entries for SM8750]
+CVE-2026-43235 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/bbef55f414100853d5bcea56a41f8b171bac8fcb (7.0-rc1)
-CVE-2026-43229 [media: chips-media: wave5: Fix device cleanup order to prevent kernel panic]
+CVE-2026-43229 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b74cedac643b02aefa7da881b58a3792859d9748 (7.0-rc1)
-CVE-2026-43224 [io_uring/zcrx: fix sgtable leak on mapping failures]
+CVE-2026-43224 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/a983aae397767e9da931128ff2b5bf9066513ce3 (7.0-rc1)
-CVE-2026-43222 [media: verisilicon: AV1: Fix tile info buffer size]
+CVE-2026-43222 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/a505ca2db89ad92a8d8d27fa68ebafb12e04a679 (7.0-rc1)
-CVE-2026-43221 [ipmi: ipmb: initialise event handler read bytes]
+CVE-2026-43221 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/9f235ccecd03c436cb1683eac16b12f119e54aa9 (7.0-rc2)
-CVE-2026-43217 [media: iris: gen2: Add sanity check for session stop]
+CVE-2026-43217 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/9aa8d63d09cfc44d879427cc5ba308012ca4ab8e (7.0-rc1)
-CVE-2026-43214 [KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2()]
+CVE-2026-43214 (In the Linux kernel, the following vulnerability has been resolved: K ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/95d848dc7e639988dbb385a8cba9b484607cf98c (7.0-rc1)
-CVE-2026-43210 [tracing: ring-buffer: Fix to check event length before using]
+CVE-2026-43210 (In the Linux kernel, the following vulnerability has been resolved: t ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/912b0ee248c529a4f45d1e7f568dc1adddbf2a4a (7.0-rc1)
-CVE-2026-43208 [net: do not pass flow_id to set_rps_cpu()]
+CVE-2026-43208 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/8a8a9fac9efa6423fd74938b940cb7d731780718 (7.0-rc2)
-CVE-2026-43205 [dpaa2-switch: validate num_ifs to prevent out-of-bounds write]
+CVE-2026-43205 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/8a5752c6dcc085a3bfc78589925182e4e98468c5 (7.0-rc2)
-CVE-2026-43200 [PCI: endpoint: Fix swapped parameters in pci_{primary/secondary}_epc_epf_unlink() functions]
+CVE-2026-43200 (In the Linux kernel, the following vulnerability has been resolved: P ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/8754dd7639ab0fd68c3ab9d91c7bdecc3e5740a8 (7.0-rc1)
-CVE-2026-43193 [nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg()]
+CVE-2026-43193 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/789477b849394afdb60507924d65f7ef18f078ce (7.0-rc1)
-CVE-2026-43192 [dm mpath: Add missing dm_put_device when failing to get scsi dh name]
+CVE-2026-43192 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/787bd63ee661b0148ce8e1fde92b7afddd85c446 (7.0-rc1)
-CVE-2026-43188 [ceph: do not propagate page array emplacement errors as batch errors]
+CVE-2026-43188 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/707104682e3c163f7c14cdd6b07a3e95fb374759 (7.0-rc1)
-CVE-2026-43186 [ipv6: ioam: fix heap buffer overflow in __ioam6_fill_trace_data()]
+CVE-2026-43186 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6db8b56eed62baacaf37486e83378a72635c04cc (7.0-rc1)
-CVE-2026-43181 [gpio: sysfs: fix chip removal with GPIOs exported over sysfs]
+CVE-2026-43181 (In the Linux kernel, the following vulnerability has been resolved: g ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6766f59012301f1bf3f46c6e7149caca45d92309 (7.0-rc1)
-CVE-2026-43179 [erofs: fix incorrect early exits for invalid metabox-enabled images]
+CVE-2026-43179 (In the Linux kernel, the following vulnerability has been resolved: e ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/643575d5a4f24b23b0c54aa20aa74a4abed8ff5e (7.0-rc1)
-CVE-2026-43178 [procfs: fix possible double mmput() in do_procmap_query()]
+CVE-2026-43178 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/61dc9f776705d6db6847c101b98fa4f0e9eb6fa3 (7.0-rc1)
-CVE-2026-43177 [media: ipu6: Fix RPM reference leak in probe error paths]
+CVE-2026-43177 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6099f78e4c9223f4de4169d2fd1cded01279da1a (7.0-rc1)
-CVE-2026-43175 [clk: rs9: Reserve 8 struct clk_hw slots for for 9FGV0841]
+CVE-2026-43175 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/5ec820fc28d0b8a0f3890d476b1976f20e8343cc (7.0-rc1)
-CVE-2026-43173 [net: ethernet: xscale: Check for PTP support properly]
+CVE-2026-43173 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/594163ea88a03bdb412063af50fc7177ef3cbeae (7.0-rc2)
-CVE-2026-43169 [drm/buddy: Prevent BUG_ON by validating rounded allocation]
+CVE-2026-43169 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/5488a29596cdba93a60a79398dc9b69d5bdadf92 (7.0-rc1)
-CVE-2026-43166 [erofs: fix interlaced plain identification for encoded extents]
+CVE-2026-43166 (In the Linux kernel, the following vulnerability has been resolved: e ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4a2d046e4b13202a6301a993961f5b30ae4d7119 (7.0-rc2)
-CVE-2026-43164 [udplite: Fix null-ptr-deref in __udp_enqueue_schedule_skb().]
+CVE-2026-43164 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/470c7ca2b4c3e3a51feeb952b7f97a775b5c49cd (7.0-rc2)
-CVE-2026-43160 [mfd: macsmc: Initialize mutex]
+CVE-2026-43160 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/414f65d6736342c77d4ec5e7373039f4a09250dd (7.0-rc1)
-CVE-2026-43157 [octeontx2-af: CGX: fix bitmap leaks]
+CVE-2026-43157 (In the Linux kernel, the following vulnerability has been resolved: o ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/3def995c4ede842adf509c410e92d09a0cedc965 (7.0-rc1)
-CVE-2026-43155 [mux: mmio: fix regmap leak on probe failure]
+CVE-2026-43155 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/3c4ae63073d84abee5d81ce46d86a94e9dae9c89 (7.0-rc1)
-CVE-2026-43154 [erofs: fix incorrect early exits in volume label handling]
+CVE-2026-43154 (In the Linux kernel, the following vulnerability has been resolved: e ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/3afa4da38802a4cba1c23848a32284e7e57b831b (7.0-rc1)
-CVE-2026-43151 [Revert "media: iris: Add sanity check for stop streaming"]
+CVE-2026-43151 (In the Linux kernel, the following vulnerability has been resolved: R ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/370e19042fb8ac68109f8bdb0fdd8118baf39318 (7.0-rc1)
-CVE-2026-43150 [perf/arm-cmn: Reject unsupported hardware configurations]
+CVE-2026-43150 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/36c0de02575ce59dfd879eb4ef63d53a68bbf9ce (7.0-rc1)
-CVE-2026-43148 [powerpc/smp: Add check for kcalloc() failure in parse_thread_groups()]
+CVE-2026-43148 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/33c1c6d8a28a2761ac74b0380b2563cf546c2a3a (7.0-rc1)
-CVE-2026-43146 [media: iris: Add buffer to list only after successful allocation]
+CVE-2026-43146 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/2d0bbd982dfdd67da488a772f7a8a1bdca7642bf (7.0-rc1)
-CVE-2026-43145 [remoteproc: imx_rproc: Fix invalid loaded resource table detection]
+CVE-2026-43145 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/26aa5295010ffaebcf8f1991c53fa7cf2ee1b20d (7.0-rc1)
-CVE-2026-43144 [wifi: brcmfmac: Fix potential kernel oops when probe fails]
+CVE-2026-43144 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/243307a0d1b0d01538e202c00454c28b21d4432e (7.0-rc2)
-CVE-2026-43142 [media: iris: gen1: Destroy internal buffers after FW releases]
+CVE-2026-43142 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1dabf00ee206eceb0f08a1fe5d1ce635f9064338 (7.0-rc1)
-CVE-2026-43138 [reset: gpio: suppress bind attributes in sysfs]
+CVE-2026-43138 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/16de4c6a8fe9ff497ca1aba33ef0dbee09f11952 (7.0-rc1)
-CVE-2026-43133 [KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation]
+CVE-2026-43133 (In the Linux kernel, the following vulnerability has been resolved: K ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/127ccae2c185f62e6ecb4bf24f9cb307e9b9c619 (7.0-rc1)
-CVE-2026-43128 [RDMA/umem: Fix double dma_buf_unpin in failure path]
+CVE-2026-43128 (In the Linux kernel, the following vulnerability has been resolved: R ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/104016eb671e19709721c1b0048dd912dc2e96be (7.0-rc2)
-CVE-2026-43122 [ACPI: processor: Update cpuidle driver check in __acpi_processor_start()]
+CVE-2026-43122 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.18.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/0089ce1c056aee547115bdc25c223f8f88c08498 (7.0-rc1)
-CVE-2026-43121 [io_uring/zcrx: fix user_ref race between scrub and refill paths]
+CVE-2026-43121 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/003049b1c4fb8aabb93febb7d1e49004f6ad653b (7.0-rc1)
-CVE-2025-71271 [hfsplus: ensure sb->s_fs_info is always cleaned up]
+CVE-2025-71271 (In the Linux kernel, the following vulnerability has been resolved: h ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/126fb0ce99431126b44a6c360192668c818f641f (7.0-rc1)
-CVE-2026-43283 [net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle]
+CVE-2026-43283 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/ffe68c3766997d82e9ccaf1cdbd47eba269c4aa2 (7.0-rc1)
-CVE-2026-43281 [mailbox: Prevent out-of-bounds access in fw_mbox_index_xlate()]
+CVE-2026-43281 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/fcd7f96c783626c07ee3ed75fa3739a8a2052310 (7.0-rc1)
-CVE-2026-43279 [ALSA: usb-audio: Add sanity check for OOB writes at silencing]
+CVE-2026-43279 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/fba2105a157fffcf19825e4eea498346738c9948 (7.0-rc1)
-CVE-2026-43278 [dm: clear cloned request bio pointer when last clone bio completes]
+CVE-2026-43278 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/fb8a6c18fb9a6561f7a15b58b272442b77a242dd (7.0-rc1)
-CVE-2026-43277 [APEI/GHES: ensure that won't go past CPER allocated record]
+CVE-2026-43277 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/fa2408a24f8f0db14d9cfc613ef162dc267d7ad4 (7.0-rc1)
-CVE-2026-43275 [scsi: ufs: core: Flush exception handling work when RPM level is zero]
+CVE-2026-43275 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f8ef441811ec413717f188f63d99182f30f0f08e (7.0-rc1)
-CVE-2026-43274 [mailbox: mchp-ipc-sbi: fix out-of-bounds access in mchp_ipc_get_cluster_aggr_irq()]
+CVE-2026-43274 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/f7c330a8c83c9b0332fd524097eaf3e69148164d (7.0-rc1)
-CVE-2026-43273 [ceph: supply snapshot context in ceph_zero_partial_object()]
+CVE-2026-43273 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f16bd3fa74a2084ee7e16a8a2be7e7399b970907 (7.0-rc1)
-CVE-2026-43272 [ring-buffer: Fix possible dereference of uninitialized pointer]
+CVE-2026-43272 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.6-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/f1547779402c4cd67755c33616b7203baa88420b (7.0-rc1)
-CVE-2026-43271 [md-cluster: fix NULL pointer dereference in process_metadata_update]
+CVE-2026-43271 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/f150e753cb8dd756085f46e86f2c35ce472e0a3c (7.0-rc1)
-CVE-2026-43270 [media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove()]
+CVE-2026-43270 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f128bab57b8018e526b7eda854ca20069863af47 (7.0-rc1)
-CVE-2026-43269 [drm/atmel-hlcdc: fix memory leak from the atomic_destroy_state callback]
+CVE-2026-43269 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f12352471061df83a36edf54bbb16284793284e4 (7.0-rc1)
-CVE-2026-43268 [hfsplus: pretend special inodes as regular files]
+CVE-2026-43268 (In the Linux kernel, the following vulnerability has been resolved: h ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/ed8889ca21b6ab37bc1435c4009ce37a79acb9e6 (7.0-rc1)
-CVE-2026-43267 [wifi: rtw89: fix potential zero beacon interval in beacon tracking]
+CVE-2026-43267 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/eb57be32f438c57c88d6ce756101c1dfbcc03bba (7.0-rc1)
-CVE-2026-43266 [EFI/CPER: don't go past the ARM processor CPER record buffer]
+CVE-2026-43266 (In the Linux kernel, the following vulnerability has been resolved: E ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/eae21beecb95a3b69ee5c38a659f774e171d730e (7.0-rc1)
-CVE-2026-43264 [fbdev: of: display_timing: fix refcount leak in of_get_display_timings()]
+CVE-2026-43264 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/eacf9840ae1285a1ef47eb0ce16d786e542bd4d7 (7.0-rc1)
-CVE-2026-43263 [media: chips-media: wave5: Fix Null reference while testing fluster]
+CVE-2026-43263 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/e66ff2b08e4ee1c4d3b84f24818e5bcc178cc3a4 (7.0-rc1)
-CVE-2026-43262 [gfs2: fiemap page fault fix]
+CVE-2026-43262 (In the Linux kernel, the following vulnerability has been resolved: g ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/e411d74cc5ba290f85d0dd5e4d1df8f1d6d975d2 (7.0-rc1)
-CVE-2026-43261 [arm64: Add support for TSV110 Spectre-BHB mitigation]
+CVE-2026-43261 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/e3baa5d4b361276efeb87b20d8beced451a7dbd5 (7.0-rc1)
-CVE-2026-43258 [alpha: fix user-space corruption during memory compaction]
+CVE-2026-43258 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/dd5712f3379cfe760267cdd28ff957d9ab4e51c7 (7.0-rc1)
-CVE-2026-43257 [media: cx88: Add missing unmap in snd_cx88_hw_params()]
+CVE-2026-43257 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/dbc527d980f7ba8559de38f8c1e4158c71a78915 (7.0-rc1)
-CVE-2026-43255 [wifi: libertas: fix WARNING in usb_tx_block]
+CVE-2026-43255 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/d66676e6ca96bf8680f869a9bd6573b26c634622 (7.0-rc1)
-CVE-2026-43253 [iommu/amd: move wait_on_sem() out of spinlock]
+CVE-2026-43253 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/d2a0cac10597068567d336e85fa3cbdbe8ca62bf (7.0-rc1)
-CVE-2026-43251 [HID: prodikeys: Check presence of pm->input_ep82]
+CVE-2026-43251 (In the Linux kernel, the following vulnerability has been resolved: H ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/cee8337e1bad168136aecfe6416ecd7d3aa7529a (7.0-rc1)
-CVE-2026-43250 [usb: chipidea: udc: fix DMA and SG cleanup in _ep_nuke()]
+CVE-2026-43250 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/cea2a1257a3b5ea3e769a445b34af13e6aa5a123 (7.0-rc1)
-CVE-2026-43249 [9p/xen: protect xen_9pfs_front_free against concurrent calls]
+CVE-2026-43249 (In the Linux kernel, the following vulnerability has been resolved: 9 ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/ce8ded2e61f47747e31eeefb44dc24a2160a7e32 (7.0-rc1)
-CVE-2026-43248 [vhost: move vdpa group bound check to vhost_vdpa]
+CVE-2026-43248 (In the Linux kernel, the following vulnerability has been resolved: v ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/cd025c1e876b4e262e71398236a1550486a73ede (7.0-rc1)
-CVE-2026-43246 [media: i2c/tw9906: Fix potential memory leak in tw9906_probe()]
+CVE-2026-43246 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/cad237b6c875fbee5d353a2b289e98d240d17ec8 (7.0-rc1)
-CVE-2026-43245 [ntfs: ->d_compare() must not block]
+CVE-2026-43245 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/ca2a04e84af79596e5cd9cfe697d5122ec39c8ce (7.0-rc1)
-CVE-2026-43244 [kcm: fix zero-frag skb in frag_list on partial sendmsg error]
+CVE-2026-43244 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/ca220141fa8ebae09765a242076b2b77338106b0 (7.0-rc2)
-CVE-2026-43243 [drm/amd/display: Add signal type check for dcn401 get_phyd32clk_src]
+CVE-2026-43243 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/c979d8db7b0f293111f2e83795ea353c8ed75de9 (7.0-rc1)
-CVE-2026-43242 [soc: ti: k3-socinfo: Fix regmap leak on probe failure]
+CVE-2026-43242 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/c933138d45176780fabbbe7da263e04d5b3e525d (7.0-rc1)
-CVE-2026-43241 [ntb: ntb_hw_switchtec: Fix array-index-out-of-bounds access]
+CVE-2026-43241 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/c8ba7ad2cc1c7b90570aa347b8ebbe279f1eface (7.0-rc1)
-CVE-2026-43239 [smb: client: prevent races in ->query_interfaces()]
+CVE-2026-43239 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/c3c06e42e1527716c54f3ad2ced6a034b5f3a489 (7.0-rc1)
-CVE-2026-43237 [drm/amdgpu: Refactor amdgpu_gem_va_ioctl for Handling Last Fence Update and Timeline Management v4]
+CVE-2026-43237 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/bd8150a1b3370a9f7761c5814202a3fe5a79f44f (7.0-rc1)
-CVE-2026-43236 [drm/atmel-hlcdc: fix use-after-free of drm_crtc_commit after release]
+CVE-2026-43236 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/bc847787233277a337788568e90a6ee1557595eb (7.0-rc1)
-CVE-2026-43234 [team: avoid NETDEV_CHANGEMTU event when unregistering slave]
+CVE-2026-43234 (In the Linux kernel, the following vulnerability has been resolved: t ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/bb4c698633c0e19717586a6524a33196cff01a32 (7.0-rc2)
-CVE-2026-43233 [netfilter: nf_conntrack_h323: fix OOB read in decode_choice()]
+CVE-2026-43233 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/baed0d9ba91d4f390da12d5039128ee897253d60 (7.0-rc2)
-CVE-2026-43232 [net: wan: farsync: Fix use-after-free bugs caused by unfinished tasklets]
+CVE-2026-43232 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/bae8a5d2e759da2e0cba33ab2080deee96a09373 (7.0-rc2)
-CVE-2026-43231 [media: radio-keene: fix memory leak in error path]
+CVE-2026-43231 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/b8bf939d77c0cd01118e953bbf554e0fa15e9006 (7.0-rc1)
-CVE-2026-43230 [net/rds: Clear reconnect pending bit]
+CVE-2026-43230 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/b89fc7c2523b2b0750d91840f4e52521270d70ed (7.0-rc1)
-CVE-2026-43228 [hfs: Replace BUG_ON with error handling for CNID count checks]
+CVE-2026-43228 (In the Linux kernel, the following vulnerability has been resolved: h ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/b226804532a875c10276168dc55ce752944096bd (7.0-rc1)
-CVE-2026-43227 [clocksource/drivers/sh_tmu: Always leave device running after probe]
+CVE-2026-43227 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/b1278972b08e480990e2789bdc6a7c918bc349be (7.0-rc1)
-CVE-2026-43226 [net/rds: No shortcut out of RDS_CONN_ERROR]
+CVE-2026-43226 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/ad22d24be635c6beab6a1fdd3f8b1f3c478d15da (7.0-rc1)
-CVE-2026-43225 [staging: rtl8723bs: fix memory leak on failure path]
+CVE-2026-43225 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/abe850d82c8cb72d28700673678724e779b1826e (7.0-rc1)
-CVE-2026-43223 [media: pvrusb2: fix URB leak in pvr2_send_request_ex]
+CVE-2026-43223 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/a8333c8262aed2aedf608c18edd39cf5342680a7 (7.0-rc1)
-CVE-2026-43220 [iommu/amd: serialize sequence allocation under concurrent TLB invalidations]
+CVE-2026-43220 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/
-CVE-2026-43219 [net: cpsw_new: Fix potential unregister of netdev that has not been registered yet]
+CVE-2026-43219 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/9d724b34fbe13b71865ad0906a4be97571f19cf5 (7.0-rc1)
-CVE-2026-43218 [media: i2c/tw9903: Fix potential memory leak in tw9903_probe()]
+CVE-2026-43218 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/9cea16fea47e5553f51d10957677ff735b1eff03 (7.0-rc1)
-CVE-2026-43216 [net: Drop the lock in skb_may_tx_timestamp()]
+CVE-2026-43216 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/983512f3a87fd8dc4c94dfa6b596b6e57df5aad7 (7.0-rc2)
-CVE-2026-43215 [cifs: Fix locking usage for tcon fields]
+CVE-2026-43215 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/96c4af418586ee9a6aab61738644366426e05316 (7.0-rc1)
-CVE-2026-43213 [wifi: rtw89: pci: validate sequence number of TX release report]
+CVE-2026-43213 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/957eda596c7665f2966970fd1dcc35fe299b38e8 (7.0-rc1)
-CVE-2026-43212 [LoongArch: Make cpumask_of_node() robust against NUMA_NO_NODE]
+CVE-2026-43212 (In the Linux kernel, the following vulnerability has been resolved: L ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/94b0c831eda778ae9e4f2164a8b3de485d8977bb (7.0-rc1)
-CVE-2026-43211 [PCI: Fix pci_slot_trylock() error handling]
+CVE-2026-43211 (In the Linux kernel, the following vulnerability has been resolved: P ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/9368d1ee62829b08aa31836b3ca003803caf0b72 (7.0-rc1)
-CVE-2026-43209 [minix: Add required sanity checking to minix_check_superblock()]
+CVE-2026-43209 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8c97a6ddc95690a938ded44b4e3202f03f15078c (7.0-rc1)
-CVE-2026-43207 [media: mtk-mdp: Fix error handling in probe function]
+CVE-2026-43207 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8a8a3232abac5b972058a5f2cb3e33199d2a8648 (7.0-rc1)
-CVE-2026-43206 [drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set()]
+CVE-2026-43206 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8a70a26c9f34baea6c3199a9862ddaff4554a96d (7.0-rc1)
-CVE-2026-43204 [ASoC: qcom: q6asm: drop DSP responses for closed data streams]
+CVE-2026-43204 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/8a066a81ee0c1b6cdbd81393536c3b2d19ccef25 (7.0-rc1)
-CVE-2026-43203 [atm: fore200e: fix use-after-free in tasklets during device removal]
+CVE-2026-43203 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8930878101cd40063888a68af73b1b0f8b6c79bc (7.0-rc1)
-CVE-2026-43202 [fbdev: vt8500lcdfb: fix missing dma_free_coherent()]
+CVE-2026-43202 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/88b3b9924337336a31cefbe99a22ed09401be74a (7.0-rc1)
-CVE-2026-43201 [APEI/GHES: ARM processor Error: don't go past allocated memory]
+CVE-2026-43201 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/87880af2d24e62a84ed19943dbdd524f097172f2 (7.0-rc1)
-CVE-2026-43199 [net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query]
+CVE-2026-43199 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/859380694f434597407632c29f30fdb5e763e6cc (7.0-rc2)
-CVE-2026-43198 [tcp: fix potential race in tcp_v6_syn_recv_sock()]
+CVE-2026-43198 (In the Linux kernel, the following vulnerability has been resolved: t ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/858d2a4f67ff69e645a43487ef7ea7f28f06deae (7.0-rc2)
-CVE-2026-43197 [netconsole: avoid OOB reads, msg is not nul-terminated]
+CVE-2026-43197 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/82aec772fca2223bc5774bd9af486fd95766e578 (7.0-rc2)
-CVE-2026-43196 [soc: ti: pruss: Fix double free in pruss_clk_mux_setup()]
+CVE-2026-43196 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/80db65d4acfb9ff12d00172aed39ea8b98261aad (7.0-rc1)
-CVE-2026-43195 [drm/amdgpu: validate user queue size constraints]
+CVE-2026-43195 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/8079b87c02e531cc91601f72ea8336dd2262fdf1 (7.0-rc1)
-CVE-2026-43194 [net: consume xmit errors of GSO frames]
+CVE-2026-43194 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/7aa767d0d3d04e50ae94e770db7db8197f666970 (7.0-rc2)
-CVE-2026-43191 [drm/amd/display: Adjust PHY FSM transition to TX_EN-to-PLL_ON for TMDS on DCN35]
+CVE-2026-43191 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/75372d75a4e23783583998ed99d5009d555850da (7.0-rc1)
-CVE-2026-43190 [netfilter: xt_tcpmss: check remaining length before reading optlen]
+CVE-2026-43190 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/735ee8582da3d239eb0c7a53adca61b79fb228b3 (7.0-rc1)
-CVE-2026-43189 [media: v4l2-async: Fix error handling on steps after finding a match]
+CVE-2026-43189 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/7345d6d356336c448d6b9230ed8704f39679fd12 (7.0-rc1)
-CVE-2026-43187 [xfs: delete attr leaf freemap entries when empty]
+CVE-2026-43187 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/6f13c1d2a6271c2e73226864a0e83de2770b6f34 (7.0-rc1)
-CVE-2026-43185 [ksmbd: fix signededness bug in smb_direct_prepare_negotiation()]
+CVE-2026-43185 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.6-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6b4f875aac344cdd52a1f34cc70ed2f874a65757 (7.0-rc2)
-CVE-2026-43184 [rnbd-srv: Zero the rsp buffer before using it]
+CVE-2026-43184 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/69d26698e4fd44935510553809007151b2fe4db5 (7.0-rc1)
-CVE-2026-43183 [media: cx25821: Fix a resource leak in cx25821_dev_setup()]
+CVE-2026-43183 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/68cd8ac994cac38a305200f638b30e13c690753b (7.0-rc1)
-CVE-2026-43182 [media: ccs: Avoid possible division by zero]
+CVE-2026-43182 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/679f0b7b6a409750a25754c8833e268e5fdde742 (7.0-rc1)
-CVE-2026-43180 [net: usb: kaweth: remove TX queue manipulation in kaweth_set_rx_mode]
+CVE-2026-43180 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/64868f5ecadeb359a49bc4485bfa7c497047f13a (7.0-rc2)
-CVE-2026-43176 [wifi: rtw89: pci: validate release report content before using for RTL8922DE]
+CVE-2026-43176 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/5f93d611b33a05bd03d6843c8efe8cb6a1992620 (7.0-rc1)
-CVE-2026-43174 [io_uring/zcrx: fix post open error handling]
+CVE-2026-43174 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/5d540e4508950c674d6feef1d95463d039bbf4f5 (7.0-rc1)
-CVE-2026-43172 [wifi: iwlwifi: fix 22000 series SMEM parsing]
+CVE-2026-43172 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/58192b9ce09b0f0f86e2036683bd542130b91a98 (7.0-rc1)
-CVE-2026-43171 [EFI/CPER: don't dump the entire memory region]
+CVE-2026-43171 (In the Linux kernel, the following vulnerability has been resolved: E ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/55cc6fe5716f678f06bcb95140882dfa684464ec (7.0-rc1)
-CVE-2026-43170 [usb: dwc3: gadget: Move vbus draw to workqueue context]
+CVE-2026-43170 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/54aaa3b387c2f580a99dc86a9cc2eb6dfaf599a7 (7.0-rc1)
-CVE-2026-43168 [ocfs2: fix reflink preserve cleanup issue]
+CVE-2026-43168 (In the Linux kernel, the following vulnerability has been resolved: o ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/5138c936c2c82c9be8883921854bc6f7e1177d8c (7.0-rc1)
-CVE-2026-43167 [xfrm: always flush state and policy upon NETDEV_UNREGISTER event]
+CVE-2026-43167 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/4efa91a28576054aae0e6dad9cba8fed8293aef8 (7.0-rc2)
-CVE-2026-43165 [hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin]
+CVE-2026-43165 (In the Linux kernel, the following vulnerability has been resolved: h ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/4923bbff0bcffe488b3aa76829c829bd15b02585 (7.0-rc1)
-CVE-2026-43163 [md/bitmap: fix GPF in write_page caused by resize race]
+CVE-2026-43163 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/46ef85f854dfa9d5226b3c1c46493d79556c9589 (7.0-rc1)
-CVE-2026-43162 [media: tegra-video: Fix memory leak in __tegra_channel_try_format()]
+CVE-2026-43162 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/43e5302d22334f1183dec3e0d5d8007eefe2817c (7.0-rc1)
-CVE-2026-43161 [iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode]
+CVE-2026-43161 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/42662d19839f34735b718129ea200e3734b07e50 (7.0-rc1)
-CVE-2026-43159 [staging: rtl8723bs: fix null dereference in find_network]
+CVE-2026-43159 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/41460a19654c32d39fd0e3a3671cd8d4b7b8479f (7.0-rc1)
-CVE-2026-43158 [xfs: fix freemap adjustments when adding xattrs to leaf blocks]
+CVE-2026-43158 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/3eefc0c2b78444b64feeb3783c017d6adc3cd3ce (7.0-rc1)
-CVE-2026-43156 [net: usb: pegasus: enable basic endpoint checking]
+CVE-2026-43156 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/3d7e6ce34f4fcc7083510c28b17a7c36462a25d4 (7.0-rc2)
-CVE-2026-43153 [xfs: remove xfs_attr_leaf_hasname]
+CVE-2026-43153 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/3a65ea768b8094e4699e72f9ab420eb9e0f3f568 (7.0-rc1)
-CVE-2026-43152 [HID: hid-pl: handle probe errors]
+CVE-2026-43152 (In the Linux kernel, the following vulnerability has been resolved: H ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/3756a272d2cf356d2203da8474d173257f5f8521 (7.0-rc1)
-CVE-2026-43149 [net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean()]
+CVE-2026-43149 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/36bd7d5deef936c4e1e3cd341598140e5c14c1d3 (7.0-rc1)
-CVE-2026-43147 [Revert "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV"]
+CVE-2026-43147 (In the Linux kernel, the following vulnerability has been resolved: R ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/2fa119c0e5e528453ebae9e70740e8d2d8c0ed5a (7.0-rc1)
-CVE-2026-43143 [mfd: core: Add locking around 'mfd_of_node_list']
+CVE-2026-43143 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/20117c92bcf9c11afd64d7481d8f94fdf410726e (7.0-rc1)
-CVE-2026-43141 [ntb: ntb_hw_switchtec: Fix shift-out-of-bounds for 0 mw lut]
+CVE-2026-43141 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/186615f8855a0be4ee7d3fcd09a8ecc10e783b08 (7.0-rc1)
-CVE-2026-43140 [HID: magicmouse: Do not crash on missing msc->input]
+CVE-2026-43140 (In the Linux kernel, the following vulnerability has been resolved: H ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/17abd396548035fbd6179ee1a431bd75d49676a7 (7.0-rc1)
-CVE-2026-43139 [xfrm6: fix uninitialized saddr in xfrm6_get_saddr()]
+CVE-2026-43139 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/1799d8abeabc68ec05679292aaf6cba93b343c05 (7.0-rc2)
-CVE-2026-43137 [ASoC: SOF: Intel: hda: Fix NULL pointer dereference]
+CVE-2026-43137 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/16c589567a956d46a7c1363af3f64de3d420af20 (7.0-rc1)
-CVE-2026-43136 [HID: logitech-hidpp: Check maxfield in hidpp_get_report_length()]
+CVE-2026-43136 (In the Linux kernel, the following vulnerability has been resolved: H ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/1547d41f9f19d691c2c9ce4c29f746297baef9e9 (7.0-rc1)
-CVE-2026-43135 [media: cx23885: Add missing unmap in snd_cx23885_hw_params()]
+CVE-2026-43135 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/141c81849fab2ad4d6e3fdaff7cbaa873e8b5eb2 (7.0-rc1)
-CVE-2026-43134 [Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ]
+CVE-2026-43134 (In the Linux kernel, the following vulnerability has been resolved: B ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/138d7eca445ef37a0333425d269ee59900ca1104 (7.0-rc2)
-CVE-2026-43132 [dm-verity: correctly handle dm_bufio_client_create() failure]
+CVE-2026-43132 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/119f4f04186fa4f33ee6bd39af145cdaff1ff17f (7.0-rc1)
-CVE-2026-43131 [drm/amd/pm: Fix null pointer dereference issue]
+CVE-2026-43131 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/1197366cca89a4c44c541ddedb8ce8bf0757993d (7.0-rc1)
-CVE-2026-43130 [iommu/vt-d: Flush dev-IOTLB only when PCIe device is accessible in scalable mode]
+CVE-2026-43130 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/10e60d87813989e20eac1f3eda30b3bae461e7f9 (7.0-rc1)
-CVE-2026-43129 [ima: verify the previous kernel's IMA buffer lies in addressable RAM]
+CVE-2026-43129 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/10d1c75ed4382a8e79874379caa2ead8952734f9 (7.0-rc1)
-CVE-2026-43127 [ntfs3: fix circular locking dependency in run_unpack_ex]
+CVE-2026-43127 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/08ce2fee1b869ecbfbd94e0eb2630e52203a2e03 (7.0-rc1)
-CVE-2026-43126 [ALSA: mixer: oss: Add card disconnect checkpoints]
+CVE-2026-43126 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/084d5d44418148662365eced3e126ad1a81ee3e2 (7.0-rc1)
-CVE-2026-43125 [dlm: validate length in dlm_search_rsb_tree]
+CVE-2026-43125 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/080e5563f878c64e697b89e7439d730d0daad882 (7.0-rc1)
-CVE-2026-43124 [pstore: ram_core: fix incorrect success return when vmap() fails]
+CVE-2026-43124 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/05363abc7625cf18c96e67f50673cd07f11da5e9 (7.0-rc1)
-CVE-2026-43123 [fbcon: check return value of con2fb_acquire_newinfo()]
+CVE-2026-43123 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/011a0502801c8536f64141a2b61362c14f456544 (7.0-rc1)
-CVE-2025-71274 [rpmsg: core: fix race in driver_override_show() and use core helper]
+CVE-2025-71274 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/42023d4b6d2661a40ee2dcf7e1a3528a35c638ca (7.0-rc1)
-CVE-2025-71273 [wifi: rtw88: Use devm_kmemdup() in rtw_set_supported_band()]
+CVE-2025-71273 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/2ba12401cc1f2d970fa2e7d5b15abde3f5abd40d (7.0-rc1)
-CVE-2025-71272 [most: core: fix resource leak in most_register_interface error paths]
+CVE-2025-71272 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/1f4c9d8a1021281750c6cda126d6f8a40cc24e71 (7.0-rc1)
-CVE-2026-43108 [soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei]
+CVE-2026-43108 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/641f6fda143b879da1515f821ee475073678cf2a (7.0)
-CVE-2026-43106 [cachefiles: fix incorrect dentry refcount in cachefiles_cull()]
+CVE-2026-43106 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1635c2acdde86c4f555b627aec873c8677c421ed (7.0)
-CVE-2026-43102 [net: airoha: Fix memory leak in airoha_qdma_rx_process()]
+CVE-2026-43102 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/285fa6b1e03cff78ead0383e1b259c44b95faf90 (7.0)
-CVE-2026-43100 [bridge: guard local VLAN-0 FDB helpers against NULL vlan group]
+CVE-2026-43100 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1979645e1842cb7017525a61a0e0e0beb924d02a (7.0)
-CVE-2026-43097 [PCI: hv: Fix double ida_free in hv_pci_probe error path]
+CVE-2026-43097 (In the Linux kernel, the following vulnerability has been resolved: P ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b6422dff0e518245019233432b6bccfc30b73e2f (7.0)
-CVE-2026-43096 [mshv: Fix infinite fault loop on permission-denied GPA intercepts]
+CVE-2026-43096 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/16cbec24897624051b324aa3a85859c38ca65fde (7.0)
-CVE-2026-43092 [xsk: validate MTU against usable frame size on bind]
+CVE-2026-43092 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/36ee60b569ba0dfb6f961333b90d19ab5b323fa9 (7.0)
-CVE-2026-43090 [xfrm: fix refcount leak in xfrm_migrate_policy_find]
+CVE-2026-43090 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/83317cce60a032c49480dcdabe146435bd689d03 (7.0)
-CVE-2026-43087 [pinctrl: mcp23s08: Disable all pin interrupts during probe]
+CVE-2026-43087 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/db5b8cecbdf479ad13156af750377e5b43853fab (7.0)
-CVE-2026-43086 [ipvs: fix NULL deref in ip_vs_add_service error path]
+CVE-2026-43086 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/9a91797e61d286805ae10a92cc48959c30800556 (7.0)
-CVE-2026-43084 [netfilter: nfnetlink_queue: make hash table per queue]
+CVE-2026-43084 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/936206e3f6ff411581e615e930263d6f8b78df9d (7.0)
-CVE-2026-43082 [net: txgbe: leave space for null terminators on property_entry]
+CVE-2026-43082 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/5a37d228799b0ec2c277459c83c814a59d310bc3 (7.0)
-CVE-2026-43081 [net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+]
+CVE-2026-43081 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/9709b56d908acc120fe8b4ae250b3c9d749ea832 (7.0)
-CVE-2026-43120 [RDMA/irdma: Fix double free related to rereg_user_mr]
+CVE-2026-43120 (In the Linux kernel, the following vulnerability has been resolved: R ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/29a3edd7004bb635d299fb9bc6f0ea4ef13ed5a2 (7.0-rc6)
-CVE-2026-43119 [Bluetooth: hci_sync: annotate data-races around hdev->req_status]
+CVE-2026-43119 (In the Linux kernel, the following vulnerability has been resolved: B ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/b6807cfc195ef99e1ac37b2e1e60df40295daa8c (7.0-rc6)
-CVE-2026-43118 [btrfs: fix zero size inode with non-zero size after log replay]
+CVE-2026-43118 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.14-1
NOTE: https://git.kernel.org/linus/5254d4181add9dfaa5e3519edd71cc8f752b2f85 (7.0-rc6)
-CVE-2026-43117 [btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file()]
+CVE-2026-43117 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/a85b46db143fda5869e7d8df8f258ccef5fa1719 (7.0-rc6)
-CVE-2026-43116 [netfilter: ctnetlink: ensure safe access to master conntrack]
+CVE-2026-43116 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
NOTE: https://git.kernel.org/linus/bffcaad9afdfe45d7fc777397d3b83c1e3ebffe5 (7.0-rc6)
-CVE-2026-43115 [srcu: Use irq_work to start GP in tiny SRCU]
+CVE-2026-43115 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.14-1
NOTE: https://git.kernel.org/linus/a6fc88b22bc8d12ad52e8412c667ec0f5bf055af (7.0-rc6)
-CVE-2026-43114 [netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry]
+CVE-2026-43114 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/d3c0037ffe1273fa1961e779ff6906234d6cf53c (7.0-rc6)
-CVE-2026-43113 [wifi: wl1251: validate packet IDs before indexing tx_frames]
+CVE-2026-43113 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/0fd56fad9c56356e7fa7a7c52e7ecbf807a44eb0 (7.0-rc7)
-CVE-2026-43112 [fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath]
+CVE-2026-43112 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/78ec5bf2f589ec7fd8f169394bfeca541b077317 (7.0-rc7)
-CVE-2026-43111 [HID: roccat: fix use-after-free in roccat_report_event]
+CVE-2026-43111 (In the Linux kernel, the following vulnerability has been resolved: H ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/d802d848308b35220f21a8025352f0c0aba15c12 (7.0)
-CVE-2026-43110 [wifi: brcmfmac: validate bsscfg indices in IF events]
+CVE-2026-43110 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/304950a467d83678bd0b0f46331882e2ac23b12d (7.0)
-CVE-2026-43109 [x86: shadow stacks: proper error handling for mmap lock]
+CVE-2026-43109 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.14-1
NOTE: https://git.kernel.org/linus/52f657e34d7b21b47434d9d8b26fa7f6778b63a0 (7.0)
-CVE-2026-43107 [xfrm: account XFRMA_IF_ID in aevent size calculation]
+CVE-2026-43107 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/7081d46d32312f1a31f0e0e99c6835a394037599 (7.0)
-CVE-2026-43105 [drm/vc4: Fix memory leak of BO array in hang state]
+CVE-2026-43105 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/f4dfd6847b3e5d24e336bca6057485116d17aea4 (7.0)
-CVE-2026-43104 [drm/vc4: Fix a memory leak in hang state error path]
+CVE-2026-43104 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/9525d169e5fd481538cf8c663cc5839e54f2e481 (7.0)
-CVE-2026-43103 [net: lapbether: handle NETDEV_PRE_TYPE_CHANGE]
+CVE-2026-43103 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/b120e4432f9f56c7103133d6a11245e617695adb (7.0)
-CVE-2026-43101 [ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data()]
+CVE-2026-43101 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.14-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4e65a8b8daa18d63255ec58964dd192c7fdd9f8b (7.0)
-CVE-2026-43099 [ipv4: icmp: fix null-ptr-deref in icmp_build_probe()]
+CVE-2026-43099 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/fde29fd9349327acc50d19a0b5f3d5a6c964dfd8 (7.0)
-CVE-2026-43098 [nfc: s3fwrn5: allocate rx skb before consuming bytes]
+CVE-2026-43098 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/5c14a19d5b1645cce1cb1252833d70b23635b632 (7.0)
-CVE-2026-43095 [ASoC: SDCA: Fix errors in IRQ cleanup]
+CVE-2026-43095 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4e53116437e919c4b9a9d95fb73ae14fe0cfc8f9 (7.0)
-CVE-2026-43094 [ixgbevf: add missing negotiate_features op to Hyper-V ops table]
+CVE-2026-43094 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4821d563cd7f251ae728be1a6d04af82a294a5b9 (7.0)
-CVE-2026-43093 [xsk: tighten UMEM headroom validation to account for tailroom and min frame]
+CVE-2026-43093 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/a315e022a72d95ef5f1d4e58e903cb492b0ad931 (7.0)
-CVE-2026-43091 [xfrm: Wait for RCU readers during policy netns exit]
+CVE-2026-43091 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/069daad4f2ae9c5c108131995529d5f02392c446 (7.0)
-CVE-2026-43089 [xfrm_user: fix info leak in build_mapping()]
+CVE-2026-43089 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/1beb76b2053b68c491b78370794b8ff63c8f8c02 (7.0)
-CVE-2026-43088 [net: af_key: zero aligned sockaddr tail in PF_KEY exports]
+CVE-2026-43088 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
NOTE: https://git.kernel.org/linus/426c355742f02cf743b347d9d7dbdc1bfbfa31ef (7.0)
-CVE-2026-43085 [netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator]
+CVE-2026-43085 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/1f3083aec8836213da441270cdb1ab612dd82cf4 (7.0)
-CVE-2026-43083 [net: ioam6: fix OOB and missing lock]
+CVE-2026-43083 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b30b1675aa2bcf0491fd3830b051df4e08a7c8ca (7.0)
-CVE-2026-43080 [l2tp: Drop large packets with UDP encap]
+CVE-2026-43080 (In the Linux kernel, the following vulnerability has been resolved: l ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/ebe560ea5f54134279356703e73b7f867c89db13 (7.0)
-CVE-2026-43079 [perf/x86/intel/uncore: Skip discovery table for offline dies]
+CVE-2026-43079 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/7b568e9eba2fad89a696f22f0413d44cf4a1f892 (7.0)
-CVE-2026-43078 [crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl]
+CVE-2026-43078 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/31d00156e50ecad37f2cb6cbf04aaa9a260505ef (7.0)
-CVE-2026-43077 [crypto: algif_aead - Fix minimum RX size check for decryption]
+CVE-2026-43077 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/3d14bd48e3a77091cbce637a12c2ae31b4a1687c (7.0)
-CVE-2026-43076 [ocfs2: validate inline data i_size during inode read]
+CVE-2026-43076 (In the Linux kernel, the following vulnerability has been resolved: o ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/1524af3685b35feac76662cc551cbc37bd14775f (7.0-rc1)
-CVE-2026-43075 [ocfs2: fix out-of-bounds write in ocfs2_write_end_inline]
+CVE-2026-43075 (In the Linux kernel, the following vulnerability has been resolved: o ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/7bc5da4842bed3252d26e742213741a4d0ac1b14 (7.0)
-CVE-2026-43074 [eventpoll: defer struct eventpoll free to RCU grace period]
+CVE-2026-43074 (In the Linux kernel, the following vulnerability has been resolved: e ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
@@ -1212,6 +1622,7 @@ CVE-2024-52911 (Bitcoin Core through 28.x has a security issue, the details of w
CVE-2026-39852 (Quarkus is a Java framework for building cloud-native applications. In ...)
NOT-FOR-US: Quarkus
CVE-2026-28780 (Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HT ...)
+ {DSA-6248-1}
- apache2 2.4.67-1
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-28780
CVE-2026-7865 (A hidden console command is vulnerable to command injection flaw when ...)
@@ -1353,6 +1764,7 @@ CVE-2026-30923 (ModSecurity is an open source, cross platform web application fi
CVE-2026-30246 (Fiber is a web framework for Go. In github.com/gofiber/fiber/v3 versio ...)
NOT-FOR-US: Fiber
CVE-2026-29168 (Allocation of Resources Without Limits or Throttling vulnerability in ...)
+ {DSA-6248-1}
- apache2 2.4.67-1
NOTE: https://www.openwall.com/lists/oss-security/2026/05/05/6
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-29168
@@ -1820,31 +2232,37 @@ CVE-2026-35228 (Vulnerability in the Oracle MCP Server Helper Tool product of Or
CVE-2026-34882
REJECTED
CVE-2026-34059 (Buffer Over-read vulnerability in Apache HTTP Server. This issue affe ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/17
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-34059
NOTE: https://github.com/apache/httpd/commit/a3d32288317a87b1398825f2167e0ae083ed43da (2.4.67-rc1-candidate)
CVE-2026-34032 (Improper Null Termination, Out-of-bounds Read vulnerability in Apache ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/16
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-34032
NOTE: https://github.com/apache/httpd/commit/b8def8fe323f7f67d0e03bb83c67d66bd8d7fcb2 (2.4.67-rc1-candidate)
CVE-2026-33857 (Out-of-bounds Read vulnerability in mod_proxy_ajp of Apache HTTP Ser ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/15
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33857
NOTE: https://github.com/apache/httpd/commit/493eb23e5cc18c3a7be53977c182ff5d1360c64c (2.4.67-rc1-candidate)
CVE-2026-33523 (HTTP response splitting vulnerability in multiple Apache HTTP Server m ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/23
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33523
NOTE: https://github.com/apache/httpd/commit/0218d4b9c1c0706df4bd7a3e3b15f71d4b66126a (2.4.67-rc1-candidate)
CVE-2026-33007 (A NULL pointer dereference in the mod_authn_socache in Apache HTTP Ser ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/22
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33007
NOTE: https://github.com/apache/httpd/commit/d80685a9e0241d99e94aa2fc0aa491d90c4ae9e8 (2.4.67-rc1-candidate)
CVE-2026-33006 (A timing attack against mod_auth_digest in Apache HTTP Server 2.4.66 a ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/21
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33006
@@ -1864,6 +2282,7 @@ CVE-2026-2729 (The Forminator plugin for WordPress is vulnerable to authorizatio
CVE-2026-29514 (NetBox versions 4.3.5 through 4.5.4 contain a remote code execution vu ...)
- netbox <itp> (bug #1017079)
CVE-2026-29169 (A NULL pointer dereference in mod_dav_lock in Apache HTTP Server 2.4.6 ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: http://www.openwall.com/lists/oss-security/2026/05/04/20
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-29169
@@ -1891,6 +2310,7 @@ CVE-2026-24118 (vm2 is an open source vm/sandbox for Node.js. Prior to version 3
CVE-2026-24082 (Memory Corruption when copying data from a freed source while executin ...)
NOT-FOR-US: Qualcomm
CVE-2026-24072 (An escalation of privilege bug in various modules in Apache HTTP 2.4.6 ...)
+ {DSA-6248-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/18
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-24072
@@ -4928,7 +5348,7 @@ CVE-2024-54012 (Penetration Testing engineers at Amazon discovered a vulnerabili
NOT-FOR-US: Hanwha Vision
CVE-2024-54011 (Penetration Testing engineers at Amazon have discovered a flaw where t ...)
NOT-FOR-US: Hanwha Vision
-CVE-2026-6691
+CVE-2026-6691 (The MongoDB C Driver's Cyrus SASL integration performs unsafe string c ...)
- mongo-c-driver 2.2.0-1
[trixie] - mongo-c-driver <no-dsa> (Minor issue)
[bookworm] - mongo-c-driver <no-dsa> (Minor issue)
@@ -9020,7 +9440,7 @@ CVE-2026-34284 (Vulnerability in the Oracle Business Process Management Suite pr
CVE-2026-34283 (Vulnerability in the Oracle Identity Manager product of Oracle Fusion ...)
NOT-FOR-US: Oracle
CVE-2026-34282 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- {DSA-6246-1 DSA-6237-1 DSA-6231-1}
+ {DSA-6246-1 DSA-6237-1 DSA-6231-1 DLA-4566-1 DLA-4565-1}
- openjdk-11 11.0.31+11-1
- openjdk-17 17.0.19+10-1
- openjdk-21 21.0.11+10-1
@@ -9053,7 +9473,7 @@ CVE-2026-34270 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2026-34269 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
NOT-FOR-US: Oracle
CVE-2026-34268 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- {DSA-6246-1 DSA-6237-1 DSA-6231-1}
+ {DSA-6246-1 DSA-6237-1 DSA-6231-1 DLA-4566-1 DLA-4565-1}
- openjdk-8 <unfixed> (bug #1134894)
- openjdk-11 11.0.31+11-1
- openjdk-17 17.0.19+10-1
@@ -9100,7 +9520,7 @@ CVE-2026-22746 (Vulnerability in Spring Spring Security. If an application is us
- libspring-security-2.0-java <removed>
NOTE: https://spring.io/security/cve-2026-22746
CVE-2026-22021 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- {DSA-6246-1 DSA-6237-1 DSA-6231-1}
+ {DSA-6246-1 DSA-6237-1 DSA-6231-1 DLA-4566-1 DLA-4565-1}
- openjdk-8 <unfixed> (bug #1134894)
- openjdk-11 11.0.31+11-1
- openjdk-17 17.0.19+10-1
@@ -9110,7 +9530,7 @@ CVE-2026-22021 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
CVE-2026-22019 (Vulnerability in the PeopleSoft Enterprise HCM Shared Components produ ...)
NOT-FOR-US: Oracle
CVE-2026-22018 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- {DSA-6246-1 DSA-6237-1 DSA-6231-1}
+ {DSA-6246-1 DSA-6237-1 DSA-6231-1 DLA-4566-1 DLA-4565-1}
- openjdk-8 <unfixed> (bug #1134894)
- openjdk-11 11.0.31+11-1
- openjdk-17 17.0.19+10-1
@@ -9120,7 +9540,7 @@ CVE-2026-22018 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
CVE-2026-22017 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-22016 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- {DSA-6246-1 DSA-6237-1 DSA-6231-1}
+ {DSA-6246-1 DSA-6237-1 DSA-6231-1 DLA-4566-1 DLA-4565-1}
- openjdk-8 <unfixed> (bug #1134894)
- openjdk-11 11.0.31+11-1
- openjdk-17 17.0.19+10-1
@@ -9132,7 +9552,7 @@ CVE-2026-22015 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2026-22014 (Vulnerability in the Oracle User Management product of Oracle E-Busine ...)
NOT-FOR-US: Oracle
CVE-2026-22013 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- {DSA-6246-1 DSA-6237-1 DSA-6231-1}
+ {DSA-6246-1 DSA-6237-1 DSA-6231-1 DLA-4566-1 DLA-4565-1}
- openjdk-8 <unfixed> (bug #1134894)
- openjdk-11 11.0.31+11-1
- openjdk-17 17.0.19+10-1
@@ -9150,7 +9570,7 @@ CVE-2026-22008 (Vulnerability in Oracle Java SE (component: Libraries). The su
- openjdk-25 25.0.3+9-1
NOTE: https://openjdk.org/groups/vulnerability/advisories/2026-04-21
CVE-2026-22007 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- {DSA-6246-1 DSA-6237-1 DSA-6231-1}
+ {DSA-6246-1 DSA-6237-1 DSA-6231-1 DLA-4566-1 DLA-4565-1}
- openjdk-8 <unfixed> (bug #1134894)
- openjdk-11 11.0.31+11-1
- openjdk-17 17.0.19+10-1
@@ -10239,6 +10659,7 @@ CVE-2026-5250
CVE-2026-4801 (The Page Builder Gutenberg Blocks \u2013 CoBlocks plugin for WordPress ...)
NOT-FOR-US: WordPress plugin
CVE-2026-41254 (Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in ...)
+ {DLA-4568-1}
- lcms2 2.17-1.1 (bug #1134335)
NOTE: https://www.openwall.com/lists/oss-security/2026/04/17/16
NOTE: https://abhinavagarwal07.github.io/posts/lcms2-cubesize-overflow/
@@ -44306,6 +44727,7 @@ CVE-2025-15571 (A security vulnerability has been detected in ckolivas lrzip up
[bullseye] - lrzip <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/ckolivas/lrzip/issues/263
CVE-2025-15570 (A vulnerability was found in ckolivas lrzip up to 0.651. This impacts ...)
+ {DLA-4567-1}
- lrzip 0.660-1 (bug #1128069)
NOTE: https://github.com/ckolivas/lrzip/issues/262
NOTE: Fixed by: https://github.com/ckolivas/lrzip/commit/96931e7019c8cde6b5f2d3286a5470a67ed9a8f6 (v0.660)
@@ -173878,9 +174300,9 @@ CVE-2025-21087 (When Client or Server SSL profiles are configured on a Virtual S
NOT-FOR-US: F5
CVE-2025-20207 (A vulnerability in Simple Network Management Protocol (SNMP) polling f ...)
NOT-FOR-US: Cisco
-CVE-2025-20205 (A vulnerability in the web-based management interface of Cisco Identit ...)
+CVE-2025-20205 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
NOT-FOR-US: Cisco
-CVE-2025-20204 (A vulnerability in the web-based management interface of Cisco Identit ...)
+CVE-2025-20204 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
NOT-FOR-US: Cisco
CVE-2025-20185 (A vulnerability in the implementation of the remote access functionali ...)
NOT-FOR-US: Cisco
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a151a31ca1967fb3554470f76458df9095909820
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a151a31ca1967fb3554470f76458df9095909820
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260506/8e80ad5c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list