Security Warnings — Source: cve

drm/amdgpu: validate user queue size constraints

2026-05-11 CVE-2026-43195

highMicrosoft CVE 2026-W20

drm/amdgpu/ras: Move ras data alloc before bad page check

2026-05-11 CVE-2025-71293

mediumMicrosoft CVE 2026-W20

drm/i915/dsi: Don't do DSC horizontal timing adjustments in command mode

2026-05-11 CVE-2026-31767

mediumMicrosoft CVE 2026-W20

drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove()

2026-05-11 CVE-2026-43300

mediumMicrosoft CVE 2026-W20

f2fs: fix to bail out in get_new_segment()

2026-05-11 CVE-2025-38333

mediumMicrosoft CVE 2026-W20

f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io()

2026-05-11 CVE-2026-31715

mediumMicrosoft CVE 2026-W20

firmware: cs_dsp: Fix OOB memory read access in KUnit test

2026-05-11 CVE-2025-38340

mediumMicrosoft CVE 2026-W20

fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass

2026-05-11 CVE-2025-38396

mediumMicrosoft CVE 2026-W20

fs/ntfs3: handle attr_set_size() errors when truncating files

2026-05-11 CVE-2025-71289

highMicrosoft CVE 2026-W20

fuse: reject oversized dirents in page cache

2026-05-11 CVE-2026-31694

highMicrosoft CVE 2026-W20

hfs: Replace BUG_ON with error handling for CNID count checks

2026-05-11 CVE-2026-43228

highMicrosoft CVE 2026-W20

HID: core: do not bypass hid_hw_raw_request

2026-05-11 CVE-2025-38494

highMicrosoft CVE 2026-W20

HID: core: Mitigate potential OOB by removing bogus memset()

2026-05-11 CVE-2026-43048

highMicrosoft CVE 2026-W20

HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure

2026-05-11 CVE-2026-43049

highMicrosoft CVE 2026-W20

hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin

2026-05-11 CVE-2026-43165

mediumMicrosoft CVE 2026-W20

ima: verify the previous kernel's IMA buffer lies in addressable RAM

2026-05-11 CVE-2026-43129

mediumMicrosoft CVE 2026-W20

iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode

2026-05-11 CVE-2026-43161

mediumMicrosoft CVE 2026-W20

ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

2026-05-11 CVE-2026-43037

highMicrosoft CVE 2026-W20

ipmi:msghandler: Fix potential memory corruption in ipmi_create_user()

2026-05-11 CVE-2025-38456

highMicrosoft CVE 2026-W20

ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data()

2026-05-11 CVE-2026-43101

highMicrosoft CVE 2026-W20

jfs: Fix null-ptr-deref in jfs_ioc_trim

2026-05-11 CVE-2025-38203

mediumMicrosoft CVE 2026-W20

jq: Embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts

2026-05-11 CVE-2026-43895

mediumMicrosoft CVE 2026-W20

jq: Embedded NUL truncates top-level jq programs loaded with -f

2026-05-11 CVE-2026-41256

mediumMicrosoft CVE 2026-W20

jq: Stack Overflow in Recursive Object Merge

2026-05-11 CVE-2026-43896

mediumMicrosoft CVE 2026-W20

jq: Wild stack write via signed-integer overflow in decNumber D2U() macro

2026-05-11 CVE-2026-43894

mediumMicrosoft CVE 2026-W20

kcm: fix zero-frag skb in frag_list on partial sendmsg error

2026-05-11 CVE-2026-43244

mediumMicrosoft CVE 2026-W20

ksmbd: fix out-of-bounds write in smb2_get_ea() EA alignment

2026-05-11 CVE-2026-31705

criticalMicrosoft CVE 2026-W20

ksmbd: fix signededness bug in smb_direct_prepare_negotiation()

2026-05-11 CVE-2026-43185

mediumMicrosoft CVE 2026-W20

ksmbd: fix use-after-free in __ksmbd_close_fd() via durable scavenger

2026-05-11 CVE-2026-31718

criticalMicrosoft CVE 2026-W20

ksmbd: require minimum ACE size in smb_check_perm_dacl()

2026-05-11 CVE-2026-31712

highMicrosoft CVE 2026-W20

ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl()

2026-05-11 CVE-2026-31706

highMicrosoft CVE 2026-W20

ksmbd: validate owner of durable handle on reconnect

2026-05-11 CVE-2026-31717

highMicrosoft CVE 2026-W20

ksmbd: validate response sizes in ipc_validate_msg()

2026-05-11 CVE-2026-31707

highMicrosoft CVE 2026-W20

mailbox: mchp-ipc-sbi: fix out-of-bounds access in mchp_ipc_get_cluster_aggr_irq()

2026-05-11 CVE-2026-43274

highMicrosoft CVE 2026-W20

maple_tree: fix MA_STATE_PREALLOC flag in mas_preallocate()

2026-05-11 CVE-2025-38364

mediumMicrosoft CVE 2026-W20

md raid: fix hang when stopping arrays with metadata through dm-raid

2026-05-11 CVE-2026-43309

mediumMicrosoft CVE 2026-W20

media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC

2026-05-11 CVE-2026-43310

mediumMicrosoft CVE 2026-W20

media: vidtv: fix pass-by-value structs causing MSAN warnings

2026-05-11 CVE-2026-43058

highMicrosoft CVE 2026-W20

misc: ti_fpc202: fix a potential memory leak in probe function

2026-05-11 CVE-2025-71290

mediumMicrosoft CVE 2026-W20

mm/page_alloc: clear page->private in free_pages_prepare()

2026-05-11 CVE-2026-43303

highMicrosoft CVE 2026-W20

mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node

2026-05-11 CVE-2026-43292

mediumMicrosoft CVE 2026-W20

mpls: add seqcount to protect the platform_label{,s} pair

2026-05-11 CVE-2026-43042

highMicrosoft CVE 2026-W20

net: cpsw_new: Fix potential unregister of netdev that has not been registered yet

2026-05-11 CVE-2026-43219

highMicrosoft CVE 2026-W20

net: Drop the lock in skb_may_tx_timestamp()

2026-05-11 CVE-2026-43216

mediumMicrosoft CVE 2026-W20

net: ioam6: fix OOB and missing lock

2026-05-11 CVE-2026-43083

highMicrosoft CVE 2026-W20

net: qrtr: Drop the MHI auto_queue feature for IPCR DL channels

2026-05-11 CVE-2025-71285

mediumMicrosoft CVE 2026-W20

net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect

2026-05-11 CVE-2025-38385

mediumMicrosoft CVE 2026-W20

net: use skb_header_pointer() for TCPv4 GSO frag_off check

2026-05-11 CVE-2026-43036

mediumMicrosoft CVE 2026-W20

net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query

2026-05-11 CVE-2026-43199

highMicrosoft CVE 2026-W20

net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd()

2026-05-11 CVE-2026-31700

highMicrosoft CVE 2026-W20

netconsole: avoid OOB reads, msg is not nul-terminated

2026-05-11 CVE-2026-43197

mediumMicrosoft CVE 2026-W20

netfilter: ctnetlink: ensure safe access to master conntrack

2026-05-11 CVE-2026-43116

highMicrosoft CVE 2026-W20

netfilter: nf_conntrack: fix crash due to removal of uninitialised entry

2026-05-11 CVE-2025-38472

mediumMicrosoft CVE 2026-W20

ntfs: ->d_compare() must not block

2026-05-11 CVE-2026-43245

highMicrosoft CVE 2026-W20

ntfs3: fix circular locking dependency in run_unpack_ex

2026-05-11 CVE-2026-43127

mediumMicrosoft CVE 2026-W20

nvme-tcp: sanitize request list handling

2026-05-11 CVE-2025-38264

mediumMicrosoft CVE 2026-W20

perf/x86/intel/uncore: Fix die ID init and look up bugs

2026-05-11 CVE-2026-43344

mediumMicrosoft CVE 2026-W20

rxrpc: Fix missing validation of ticket length in non-XDR key preparsing

2026-05-11 CVE-2026-31696

mediumMicrosoft CVE 2026-W20

s390/mm: Fix in_atomic() handling in do_secure_storage_access()

2026-05-11 CVE-2025-38359

mediumMicrosoft CVE 2026-W20

smb: client: fix OOB read in smb2_ioctl_query_info QUERY_INFO path

2026-05-11 CVE-2026-31708

highMicrosoft CVE 2026-W20