kernel security

CVE-2026-46301 is a newly published Linux kernel vulnerability, added to NVD on June 8, 2026, affecting the spi-topcliff-pch driver when it is unbound before its SPI message queue has finished using DMA buffers. The bug is narrow, hardware-specific, and not yet scored by NVD, but it is a useful...

Linux kernel maintainers published CVE-2026-46275 on June 8, 2026, for a Bluetooth hci_uart flaw in which teardown and initialization races could trigger use-after-free and null-pointer dereference conditions in kernel memory. The bug is not a Windows vulnerability, but it matters to...

On May 28, 2026, NVD published CVE-2026-46125, a Linux kernel mac80211 Wi-Fi vulnerability fixed upstream after failed Wi-Fi 7 Multi-Link Operation connection preparation could leave behind a stale station object and trigger a use-after-free or double-free path when debugfs is enabled. The bug...

CVE-2026-46146 is a Linux kernel vulnerability published by NVD on May 28, 2026, covering an ALSA USB-audio bug in convert_chmap_v3() where a malformed USB Audio Class 3 descriptor could trigger a potential endless loop during channel-map parsing. The fix is tiny, but the lesson is not: kernel...

CVE-2026-46082 is a newly published Linux kernel KVM vulnerability, disclosed by kernel.org and listed by NVD on May 27, 2026, that fixes AMD SVM emulation so INVLPGA correctly raises an invalid-opcode exception when EFER.SVME is disabled. That is a mouthful, but the practical story is simpler...

CVE-2026-45912 is a newly published Linux kernel ext4 vulnerability, received by NVD from kernel.org on May 27, 2026, involving stale extent-status caching during extent splitting that can lead to incorrect space accounting. It is not, at least from the public record so far, a...

CVE-2026-46065 is a newly published Linux kernel vulnerability, disclosed by kernel.org and listed by NVD on May 27, 2026, that fixes a framebuffer deferred-I/O lifetime bug triggered when graphics memory remains mapped after device hot-unplug. The dry wording hides a familiar class of kernel...

Microsoft announced the Driver Quality Initiative at WinHEC 2026 in Taipei on May 14, laying out a Windows 11 driver-reliability program that will clean up Windows Update’s driver catalog, harden kernel-mode drivers, tighten partner verification, and expand quality measurements beyond crash...

CVE-2026-43267 is a newly published Linux kernel vulnerability, disclosed on May 6, 2026, in the Realtek rtw89 Wi-Fi driver, where a zero beacon interval discovered during fuzz testing could trigger a division-by-zero fault in beacon tracking code. The fix is almost comically small: if the...

The Linux kernel’s BPF interpreter has a newly disclosed flaw, tracked as CVE-2026-31525, that exposes a subtle but important mismatch between the interpreter and the verifier when handling signed 32-bit division and modulo on INT_MIN. The bug is not a dramatic memory corruption primitive on its...

Linux systems picked up another networking CVE this week, and CVE-2026-31503 is a good reminder that some of the most consequential kernel bugs are not dramatic memory corruption flaws but logic failures in trusted packet paths. The issue lives in UDP bind conflict checking, where the kernel can...

The AppArmor bug tracked as CVE-2026-23407 is a serious kernel memory-safety issue that can turn a malformed policy into a system-level denial of service, and in some cases a broader integrity and confidentiality problem. The flaw sits in verify_dfa(), where the kernel fails to apply a bounds...

Linux’s Bluetooth stack has a fresh use-after-free flaw, tracked as CVE-2026-31408, and the issue sits in one of the trickier parts of kernel networking: the SCO path that handles synchronous audio traffic. The bug arises in sco_recv_frame(), where the code reads conn->sk while holding...

In early 2026, the Linux kernel’s NFC stack gained a security fix that is easy to overlook at a glance but important in practice: CVE-2026-23372 closes a race in the rawsock path where transmit work could outlive the socket teardown sequence. The bug sits in a classic kernel danger...

The Linux networking stack is getting a small but important hardening fix that matters well beyond its one-line title. Microsoft has cataloged the issue as CVE-2026-23343, and the underlying upstream change is a Linux XDP patch that now warns when a calculated tailroom goes negative instead of...

CVE-2026-23395 is a reminder that some of the most consequential kernel bugs are not dramatic memory-corruption exploits, but protocol-state mistakes that quietly break invariants the code was relying on. In this case, the Linux Bluetooth stack’s L2CAP Enhanced Credit-Based Flow Control path...

CVE-2026-23213 is a good example of how a small-looking kernel fix can carry outsized operational consequences for AMD GPU users. The underlying issue, titled “drm/amd/pm: Disable MMIO access during SMU Mode 1 reset,” centers on a brief but dangerous window in which the ASIC is resetting and...

A recent upstream Linux kernel patch fixed a silent but important auditing gap: the "at" variants of two extended-attribute read syscalls—getxattrat() and listxattrat()—were not listed in the kernel's audit read class, allowing reads of extended attributes to bypass file-read audit rules on...

A subtle locking bug in the kernel's RxRPC recvpath can corrupt internal socket queues and lead to use-after-free and refcount underruns — a flaw tracked as CVE-2026-23066 that was introduced by incorrect requeue logic in rxrpc_recvmsg() and fixed upstream by a targeted patch in early 2026...

Bring Your Own Vulnerable Driver (BYOVD) is no longer a theoretical red-team trick — it has become a practical, high-impact play in real-world intrusions that turns Windows’ own trust model into an offensive asset. Over the past two years operators from commodity ransomware groups to...