linux kernel security

CVE-2026-43493 is a newly published Linux kernel vulnerability, added to NVD on May 19, 2026, that fixes incorrect handling of asynchronous pcrypt crypto requests using the MAY_BACKLOG flag across multiple stable kernel branches. The bug is not yet scored by NVD, and the public record does not...

CVE-2026-31702 is a high-severity Linux kernel flaw published on May 1, 2026, in F2FS compressed writeback handling, where a local attacker with low privileges could trigger a use-after-free during concurrent filesystem unmount and I/O completion. The bug is not a Windows kernel vulnerability...

CVE-2026-31767 is a Linux kernel vulnerability published on May 1, 2026, affecting Intel’s i915 DSI display path, where a faulty Display Stream Compression timing adjustment can trigger a local divide-by-zero crash on certain systems. The bug is rated medium severity, not because it opens a...

CVE-2026-43500 is a high-severity Linux kernel vulnerability disclosed in May 2026 in the rxrpc networking subsystem, where certain fragmented socket buffers can reach in-place decryption paths without being copied away from externally owned memory, creating a local privilege-escalation risk on...

Microsoft published CVE-2026-43284 in its Security Update Guide on May 8, 2026, tracking a Linux kernel flaw in the xfrm ESP path where encrypted network packets can be decrypted in place over shared socket-buffer fragments. The bug is not a Windows kernel vulnerability, but it matters deeply to...

CVE-2026-31729 is a high-severity Linux kernel flaw published on May 1, 2026, in the USB Type-C UCSI driver, where a bogus connector number from hardware can trigger an out-of-bounds array access before fixed kernel builds reject it. For WindowsForum readers, the point is not that Windows...

CVE-2026-31722 is a medium-severity Linux kernel vulnerability published by NVD on May 1, 2026, affecting the USB gadget RNDIS function, where repeated bind and unbind cycles can leave a surviving network device attached to a destroyed sysfs parent and crash availability. The bug is not a...

CVE-2026-31777 is a medium-severity Linux kernel vulnerability published May 1, 2026, affecting the ALSA ctxfi sound driver, where a missing error check around daio_device_index() could allow a local privileged user to trigger a high-impact availability failure on affected kernels. That sounds...

CVE-2026-43421 is a newly published Linux kernel vulnerability, added to the NVD dataset on May 8, 2026, covering a USB gadget f_ncm driver bug where a network device could outlive its parent gadget device during disconnect handling. The short version sounds microscopic: a net_device moved at...

Microsoft listed CVE-2026-43344 in its Security Update Guide after kernel.org published a May 8, 2026 Linux kernel fix for Intel uncore performance-monitoring code that could mishandle die identification on certain NUMA-capable Xeon platforms when CPUs are offline or NUMA is disabled. The bug is...

CVE-2026-43474 is a Linux kernel filesystem bug, published in early May 2026 and tracked by Microsoft’s Security Update Guide, that fixes an uninitialized flags_valid field before vfs_fileattr_get() calls into filesystem-specific file attribute handlers such as FUSE on affected modern kernels...

CVE-2026-43052 is a Linux kernel Wi-Fi vulnerability disclosed by kernel.org on May 1, 2026, affecting mac80211 TDLS handling when NL80211_TDLS_ENABLE_LINK is invoked against a station that exists but is not actually a TDLS peer. The bug is narrow, local, and deeply technical, but it is not...

CVE-2026-43036 is a medium-severity Linux kernel networking flaw published on May 1, 2026, and modified by NVD on May 8, affecting multiple kernel release lines where TCPv4 GSO handling can read an unsafe IPv4 header field from PF_PACKET-injected traffic. The fix is small, almost boringly so...

Microsoft disclosed on May 8, 2026, that “Dirty Frag,” a Linux local privilege escalation vulnerability chain involving esp4, esp6, and rxrpc kernel components, is being investigated in limited active attacks that can turn low-privileged local execution into root control. The unpleasant part is...

Microsoft’s Security Update Guide listed CVE-2026-43083 on May 6, 2026, after kernel.org assigned the Linux kernel flaw to an IPv6 IOAM networking bug involving an out-of-bounds transmit-queue access and a missing lock in shared queue-statistics handling. The dry wording undersells the point...

CVE-2026-43199 is a newly published Linux kernel vulnerability, disclosed by kernel.org and listed by Microsoft’s Security Update Guide on May 6, 2026, that fixes a Mellanox/NVIDIA mlx5 Ethernet driver bug triggered during IPsec MAC address handling in kernel workqueue execution. It is not the...

CVE-2026-43101 is a newly published Linux kernel vulnerability, disclosed on May 6, 2026, in the IPv6 IOAM tracing path where __ioam6_fill_trace_data() could hit potential NULL dereferences before stable kernel fixes added safer checks and reads. It is not a blockbuster remote-code-execution...

CVE-2026-43088 is a Linux kernel information-disclosure flaw published on May 6, 2026, in which PF_KEY export messages can expose four uninitialized padding bytes from IPv6 sockaddr data in specific IPsec-related paths, according to the kernel.org CVE record mirrored by Microsoft’s Security...

CVE-2026-43195 is a newly published Linux kernel vulnerability, received by NVD from kernel.org on May 6, 2026, that fixes missing validation in AMDGPU user queue creation by requiring queue sizes to be powers of two and at least one AMDGPU GPU page. The bug is not a headline-grabbing remote...

Microsoft listed CVE-2026-43165 on May 6, 2026, after kernel.org assigned the identifier to a Linux kernel hardware-monitoring driver bug in the Nuvoton NCT7363 hwmon code, where a missing device-tree reference release can leak resources during PWM and fan-input parsing. The flaw is not a...