Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
12604
Total
849
Critical
3630
High
3947
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-31472 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: validate inner IPv4 header length in IPTFS payload Add validation of the inner … | Apr 22, 2026 |
| CVE-2026-31471 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: only publish mode_data after clone setup iptfs_clone_state() stores x->mode_data before allocating the reorder … | Apr 22, 2026 |
| CVE-2026-31470 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length Validate host controlled value `quote_buf->out_len` … | Apr 22, 2026 |
| CVE-2026-31469 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false A UAF … | Apr 22, 2026 |
| CVE-2026-31468 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Fix double free in dma-buf feature The error path through vfio_pci_core_feature_dma_buf() ignores its own … | Apr 22, 2026 |
| CVE-2026-31467 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: erofs: add GFP_NOIO in the bio completion if needed The bio completion path in the … | Apr 22, 2026 |
| CVE-2026-31466 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: fix folio isn't locked in softleaf_to_folio() On arm64 server, we found folio that get … | Apr 22, 2026 |
| CVE-2026-31465 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SB_I_NO_DATA_INTEGRITY superblock … | Apr 22, 2026 |
| CVE-2026-31464 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() A malicious or compromised VIO server can return … | Apr 22, 2026 |
| CVE-2026-31463 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: iomap: fix invalid folio access when i_blkbits differs from I/O granularity Commit aa35dd5cbc06 ("iomap: fix … | Apr 22, 2026 |
| CVE-2026-31462 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent immediate PASID reuse case PASID resue could cause interrupt issue when process immediately … | Apr 22, 2026 |
| CVE-2026-31461 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix drm_edid leak in amdgpu_dm [WHAT] When a sink is connected, aconnector->drm_edid was overwritten … | Apr 22, 2026 |
| CVE-2026-31460 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: check if ext_caps is valid in BL setup LVDS connectors don't have extended backlight … | Apr 22, 2026 |
| CVE-2026-31459 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix param_ctx leak on damon_sysfs_new_test_ctx() failure Patch series "mm/damon/sysfs: fix memory leak and NULL … | Apr 22, 2026 |
| CVE-2026-31458 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts->nr before accessing contexts_arr[0] Multiple sysfs command paths dereference contexts_arr[0] without first verifying … | Apr 22, 2026 |
| CVE-2026-31457 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts->nr in repeat_call_fn damon_sysfs_repeat_call_fn() calls damon_sysfs_upd_tuned_intervals(), damon_sysfs_upd_schemes_stats(), and damon_sysfs_upd_schemes_effective_quotas() without checking contexts->nr. If … | Apr 22, 2026 |
| CVE-2026-31456 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: mm/pagewalk: fix race between concurrent split and refault The splitting of a PUD entry in … | Apr 22, 2026 |
| CVE-2026-31455 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: xfs: stop reclaim before pushing AIL during unmount The unmount sequence in xfs_unmount_flush_inodes() pushed the … | Apr 22, 2026 |
| CVE-2026-31454 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In xfs_inode_item_push() and xfs_qm_dquot_logitem_push(), … | Apr 22, 2026 |
| CVE-2026-31453 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: xfs: avoid dereferencing log items after push callbacks After xfsaild_push_item() calls iop_push(), the log item … | Apr 22, 2026 |
| CVE-2026-31452 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ext4: convert inline data to extents when truncate exceeds inline size Add a check in … | Apr 22, 2026 |
| CVE-2026-31451 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ext4: replace BUG_ON with proper error handling in ext4_read_inline_folio Replace BUG_ON() with proper error handling … | Apr 22, 2026 |
| CVE-2026-31450 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ext4: publish jinode after initialization ext4_inode_attach_jinode() publishes ei->jinode to concurrent users. It used to set … | Apr 22, 2026 |
| CVE-2026-31449 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ext4: validate p_idx bounds in ext4_ext_correct_indexes ext4_ext_correct_indexes() walks up the extent tree correcting index entries … | Apr 22, 2026 |
| CVE-2026-31448 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical … | Apr 22, 2026 |