CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST - in English

CISA KEV catalog updated: (v2026.07.15)

CVE-2026-46022
High

A vulnerability has been identified in the Linux kernel that allows for out-of-bounds read in the ibmasm_handle_mouse_interrupt() function. The issue occurs when the reader or writer indices exceed the allowed queue size, potentially leading to unintended reads from device registers.

CVE-2026-46020
High

A vulnerability has been identified in the Linux kernel that allows improper memory access due to lack of validation of the node identifier in the si_meminfo_node() function. Privileged users can exploit the DAMON tool to trigger this error.

CVE-2026-46015
High

A vulnerability has been identified in the Linux kernel related to socket migration in the SO_REUSEPORT group, which may lead to blocking of waiting threads. After socket migration, the new listener does not notify waiters about the availability of a connection, potentially causing them to remain asleep indefinitely.

CVE-2026-46011
High

A vulnerability has been identified in the Linux kernel affecting the mtk_jpeg_release() function. The issue arises from freeing the context (ctx) without first canceling any pending or running work, leading to race conditions and potential access to freed memory.

CVE-2026-46010
High

A vulnerability in the Linux kernel related to error handling in the rxgk_extract_token() function has been fixed. If rxgk_decrypt_skb() returns -ENOMEM, the function should return that error instead of continuing, which could lead to an abort.

CVE-2026-46006
High

A vulnerability has been identified in the Linux kernel related to a u32 overflow in the relocation bounds check in drm/nouveau. The issue occurs during offset validation, potentially leading to system instability.

CVE-2026-46004
High

A vulnerability has been identified in the Linux kernel within the caiaq driver, concerning improper error handling during the probe procedure in the setup_card() function. Errors are not handled correctly, potentially leading to a use-after-free (UAF) situation in further calls.

CVE-2026-46001
High

A vulnerability in the Linux kernel has been fixed in the pt5161l_read_block_data() function, which could lead to buffer overrun and incorrect return values on length mismatch.

CVE-2026-45999
High

A vulnerability has been identified in the Linux kernel within the z_erofs_lz4_handle_overlap() function, which may lead to improper memory access during LZ4 decompression. Specifically crafted images can cause out-of-bounds access, resulting in data access errors.

CVE-2026-45998
High

In the Linux kernel, a use-after-free (UAF) vulnerability was found in the rxrpc module after a failed skb_unshare() call. If skb_unshare() fails to duplicate a packet due to an allocation error, the skb pointer in the parent function (rxrpc_io_thread()) is set to NULL, which may cause a system crash when trace_rxrpc_rx_done() is called.

CVE-2026-45996
High

A vulnerability related to use-after-free in the SPI subsystem has been fixed in the Linux kernel. The issue occurred during the deregistration of the controller, which could lead to improper freeing of driver data.

CVE-2026-45995
High

A vulnerability related to the use of the user_struct in the io_free_rbuf_ring() function has been fixed in the Linux kernel. The issue was that this structure was being freed before the ring was destroyed, which could lead to improper memory management.

CVE-2026-45994
High

A vulnerability has been identified in the Linux kernel within the command_file_write function, leading to out-of-bounds reads due to missing size checks. An attacker can exploit this flaw to leak kernel memory.

CVE-2026-45991
High

A vulnerability has been identified in the Linux kernel related to improper management of partition descriptors in UDF images. Repeatedly appending the same descriptors can lead to out-of-bounds writes, potentially causing security issues.

CVE-2026-45989
High

A vulnerability has been identified in the Linux kernel within the testdrv_probe() function, leading to a use-after-free error. The issue arises from an incorrect release of the 'dn' pointer, which may result in the use of a freed object.

CVE-2026-45984
High

A use-after-free vulnerability was discovered in the Linux kernel's GFS2 filesystem inline data write path. The metadata buffer head (dibh) is released prematurely in gfs2_iomap_begin() while iomap->inline_data still points to its data, leading to a write to freed memory. This can compromise system integrity.

CVE-2026-45980
High

A vulnerability has been identified in the Linux kernel related to job scheduling in hardware context during resource release. This can lead to use-after-free errors and system crashes.

CVE-2026-45970
High

A use-after-free (UAF) vulnerability was identified in the Linux kernel's rlb_arp_recv function, which may lead to a null pointer dereference during rapid bond up/down cycles.

CVE-2026-45959
High

A vulnerability in the Linux kernel has been fixed that could lead to system crashes due to incorrect usage of the cleanup function kfree. The issue stemmed from incorrectly annotating a local pointer variable, resulting in the wrong address being passed to kfree.

CVE-2026-45958
High

A vulnerability has been identified in the Linux kernel that allows direct dereferencing of a user pointer in the vidi_connection_ioctl() function. This enables access to kernel memory from user space.

PreviousPage 265 of 3389Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS