Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
0.0 NA
CVE-2026-64047 — net: tls: fix off-by-one in sg_chain entry count for wrapped sk_msg ring

In the Linux kernel, the following vulnerability has been resolved: net: tls: fix off-by-one in sg_chain entry count for wrapped sk_msg ring When an sk_msg scatterlist ring wraps (sg.end < sg.start…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64046 — net: tls: prevent chain-after-chain in plain text SG

In the Linux kernel, the following vulnerability has been resolved: net: tls: prevent chain-after-chain in plain text SG Sashiko points out that if end = 0 (start != 0) the current code will create…

| Misconfiguration
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64045 — ovpn: tcp - use cached peer pointer in ovpn_tcp_close()

In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - use cached peer pointer in ovpn_tcp_close() ovpn_tcp_close() loads the ovpn_socket via rcu_dereference_sk_user_data()…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64044 — ovpn: respect peer refcount in CMD_NEW_PEER error path

In the Linux kernel, the following vulnerability has been resolved: ovpn: respect peer refcount in CMD_NEW_PEER error path ovpn_nl_peer_new_doit()'s error path calls ovpn_peer_release() directly ra…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64043 — ovpn: fix race between deleting interface and adding new peer

In the Linux kernel, the following vulnerability has been resolved: ovpn: fix race between deleting interface and adding new peer While deleting an existing ovpn interface, there is a very narrow w…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64042 — vfio/pci: Check BAR resources before exporting a DMABUF

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Check BAR resources before exporting a DMABUF A DMABUF exports access to BAR resources and, although they are requested…

Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64041 — ASoC: codecs: fs210x: fix possible buffer overflow

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: fs210x: fix possible buffer overflow In fs210x_effect_scene_info(), a string was copied like this: strscpy(DST…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64040 — cachefiles: Fix error return when vfs_mkdir() fails

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix error return when vfs_mkdir() fails When vfs_mkdir() fails, the error code is not extracted from the returned err…

| Misconfiguration
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64039 — drm/msm/snapshot: fix dumping of the unaligned regions

In the Linux kernel, the following vulnerability has been resolved: drm/msm/snapshot: fix dumping of the unaligned regions The snapshotting code internally aligns data segment to 16 bytes. This wor…

Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64038 — hwmon: (lm90) Stop work before releasing hwmon device

In the Linux kernel, the following vulnerability has been resolved: hwmon: (lm90) Stop work before releasing hwmon device Sashiko reports: In lm90_probe(), the devm action to cancel the alert_work…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64037 — wifi: iwlwifi: mld: fix TSO segmentation explosion when AMSDU is disabled

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: fix TSO segmentation explosion when AMSDU is disabled When the TLC notification disables AMSDU for a TID, the…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64036 — cgroup/rstat: validate cpu before css_rstat_cpu() access

In the Linux kernel, the following vulnerability has been resolved: cgroup/rstat: validate cpu before css_rstat_cpu() access css_rstat_updated() is exposed as a BPF kfunc and accepts a caller-provi…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64035 — igc: set tx buffer type for SMD frames

In the Linux kernel, the following vulnerability has been resolved: igc: set tx buffer type for SMD frames Sashiko pointed out that igc_fpe_init_smd_frame() initializes igc_tx_buffer fields for an …

| Misconfiguration
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64034 — net: mana: Fix TOCTOU double-fetch of hwc_msg_id from DMA buffer

In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix TOCTOU double-fetch of hwc_msg_id from DMA buffer In mana_hwc_rx_event_handler(), resp->response.hwc_msg_id is rea…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64033 — RDMA/rtrs: Fix use-after-free in path file creation cleanup

In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs: Fix use-after-free in path file creation cleanup In the error path of rtrs_srv_create_path_files(), the sysfs root fol…

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64032 — bridge: mcast: Fix a possible use-after-free when removing a bridge port

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix a possible use-after-free when removing a bridge port When per-VLAN multicast snooping is enabled, the bridge …

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64031 — erofs: fix managed cache race for unaligned extents

In the Linux kernel, the following vulnerability has been resolved: erofs: fix managed cache race for unaligned extents After unaligned compressed extents were introduced, the following race could …

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64030 — wifi: mac80211: bounds-check link_id in ieee80211_ml_epcs

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: bounds-check link_id in ieee80211_ml_epcs IEEE80211_MLE_STA_EPCS_CONTROL_LINK_ID is 0x000f, so link_id extracted …

| Memory Corruption
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64029 — ALSA: seq: Serialize UMP output teardown with event_input

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Serialize UMP output teardown with event_input seq_ump_process_event() borrows client->out_rfile.output without synchr…

| Race Condition
Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
0.0 NA
CVE-2026-64028 — tracing: Avoid NULL return from hist_field_name() on truncation

In the Linux kernel, the following vulnerability has been resolved: tracing: Avoid NULL return from hist_field_name() on truncation hist_field_name() returns "" everywhere except the fully-qualifie…

Jul 19, 2026 Jul 19, 2026
Jul 19, 2026
Jul 19, 2026
Showing 20 of 8063 Results