Latest vulnerabilities for "microsoft cbl2 kernel 5.15.186.1-1"

Linux Linux kernelnet/sched: sch_qfq: do not free existing class in qfq_change_class()

Risk 51

Severity

7.8

EPSS

0.03%

First published (updated )

CVE-2026-22999

Linux Linux kernelnvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec

Risk 31

Severity

7.5

EPSS

0.03%

First published (updated )

CVE-2026-22998

Linux Linux kernelnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts

Risk 31

Severity

7.5

EPSS

0.03%

First published (updated )

CVE-2026-22997

Linux Linux kerneldmaengine: idxd: fix device leaks on compat bind and unbind

Risk 32

Severity

5.5

First published (updated )

CVE-2025-71163

Linux Linux kernellibceph: return the handler error from mon_handle_auth_done()

Risk 31

Severity

7.5

EPSS

0.07%

First published (updated )

CVE-2026-22992

Linux Linux kernellibceph: make free_choose_arg_map() resilient to partial allocation

Risk 31

Severity

7.5

EPSS

0.03%

First published (updated )

CVE-2026-22991

Linux Linux kernellibceph: replace overzealous BUG_ON in osdmap_apply_incremental()

Risk 31

Severity

7.5

EPSS

0.03%

First published (updated )

CVE-2026-22990

Linux Linux kernellibceph: prevent potential out-of-bounds reads in handle_auth_done()

Risk 61

Severity

9.8

EPSS

0.03%

First published (updated )

CVE-2026-22984

Linux Linux kernelnet: mscc: ocelot: Fix crash when adding interface under a lag

Risk 24

Severity

5.5

EPSS

0.03%

First published (updated )

CVE-2026-22982

Linux Linux kernelnfsd: provide locking for v4_end_grace

Risk 51

Severity

7.8

EPSS

0.03%

First published (updated )

CVE-2026-22980

Linux Linux kernelwifi: avoid kernel-infoleak from struct iw_point

Risk 13

Severity

3.3

EPSS

0.03%

First published (updated )

CVE-2026-22978

Linux Linux kernelnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure

Risk 32

Severity

5.5

First published (updated )

CVE-2025-71154

Linux Linux kernelKEYS: trusted: Fix a memory leak in tpm2_load_cmd

Risk 32

Severity

5.5

First published (updated )

CVE-2025-71147

Linux Linux kernelnet: sock: fix hardened usercopy panic in sock_recv_errqueue

Risk 24

Severity

5.5

EPSS

0.03%

First published (updated )

CVE-2026-22977

Linux Linux kernelnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset

Risk 24

Severity

5.5

EPSS

0.03%

First published (updated )

CVE-2026-22976

Linux Linux kernelHID: uclogic: Correct devm device reference for hidinput input_dev name

Risk 69

Severity

7.8

First published (updated )

CVE-2023-54207

Linux Linux kernelbpf: Do not let BPF test infra emit invalid GSO types to stack

Risk 32

Severity

5.5

First published (updated )

CVE-2025-68725

Linux Linux kernelfs/ntfs3: Initialize allocated memory before use

Risk 50

Severity

6.6

First published (updated )

CVE-2025-68365

Linux Linux kernelteam: Move team device type change at the end of team_port_add

Risk 63

Severity

7

First published (updated )

CVE-2025-68340

Linux Linux kernelksm: use range-walk function to jump over holes in scan_get_next_rmap_item

Risk 32

Severity

5.5

First published (updated )

CVE-2025-68211

Linux Linux kernelusbnet: Fix using smp_processor_id() in preemptible code warnings

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40164

Linux Linux kerneltls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock().

Risk 69

Severity

7.8

First published (updated )

CVE-2025-40149

Linux Linux kernelmm/ksm: fix flag-dropping behavior in ksm_madvise

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40040

Linux Linux kernelceph: fix race condition validating r_parent before applying state

Risk 28

Severity

4.7

First published (updated )

CVE-2025-39927

Linux Linux kerneldmaengine: qcom: bam_dma: Fix DT error handling for num-channels/ees

Risk 32

Severity

5.5

First published (updated )

CVE-2025-39923

Linux Linux kerneltcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork.

Risk 69

Severity

7.8

First published (updated )

CVE-2025-39913

Linux Linux kerneli40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path

Risk 69

Severity

7.8

First published (updated )

CVE-2025-39911

Linux Linux kernelnet: phylink: add lock for serializing concurrent pl->phydev writes with resolver

Risk 52

Severity

7.1

First published (updated )

CVE-2025-39905

Linux Linux kerneli40e: remove read access to debugfs files

Risk 52

Severity

7.1

First published (updated )

CVE-2025-39901

Linux Linux kernelnetfilter: br_netfilter: do not check confirmed bit in br_nf_local_in() after confirm

Risk 32

Severity

5.5

First published (updated )

CVE-2025-39894

Trending

Linux Linux kernelnet/sched: sch_qfq: do not free existing class in qfq_change_class()

Linux Linux kernelnvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec

Linux Linux kernelnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts

Linux Linux kerneldmaengine: idxd: fix device leaks on compat bind and unbind

Linux Linux kernellibceph: return the handler error from mon_handle_auth_done()

Don't miss critical vulnerabilities

Linux Linux kernellibceph: make free_choose_arg_map() resilient to partial allocation

Linux Linux kernellibceph: replace overzealous BUG_ON in osdmap_apply_incremental()

Linux Linux kernellibceph: prevent potential out-of-bounds reads in handle_auth_done()

Linux Linux kernelnet: mscc: ocelot: Fix crash when adding interface under a lag

Linux Linux kernelnfsd: provide locking for v4_end_grace

Don't miss critical vulnerabilities

Linux Linux kernelwifi: avoid kernel-infoleak from struct iw_point

Linux Linux kernelnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure

Linux Linux kernelKEYS: trusted: Fix a memory leak in tpm2_load_cmd

Linux Linux kernelnet: sock: fix hardened usercopy panic in sock_recv_errqueue

Linux Linux kernelnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset

Don't miss critical vulnerabilities

Linux Linux kernelHID: uclogic: Correct devm device reference for hidinput input_dev name

Linux Linux kernelbpf: Do not let BPF test infra emit invalid GSO types to stack

Linux Linux kernelfs/ntfs3: Initialize allocated memory before use

Linux Linux kernelteam: Move team device type change at the end of team_port_add

Linux Linux kernelksm: use range-walk function to jump over holes in scan_get_next_rmap_item

Don't miss critical vulnerabilities

Linux Linux kernelusbnet: Fix using smp_processor_id() in preemptible code warnings

Linux Linux kerneltls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock().

Linux Linux kernelmm/ksm: fix flag-dropping behavior in ksm_madvise

Linux Linux kernelceph: fix race condition validating r_parent before applying state

Linux Linux kerneldmaengine: qcom: bam_dma: Fix DT error handling for num-channels/ees

Don't miss critical vulnerabilities

Linux Linux kerneltcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork.

Linux Linux kerneli40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path

Linux Linux kernelnet: phylink: add lock for serializing concurrent pl->phydev writes with resolver

Linux Linux kerneli40e: remove read access to debugfs files

Linux Linux kernelnetfilter: br_netfilter: do not check confirmed bit in br_nf_local_in() after confirm

Don't miss critical vulnerabilities

Company

Resources

Contact