linux kernel security

CVE-2026-31449 is a reminder that some of the most consequential Linux kernel bugs are not flashy exploit chains, but narrow trust failures inside core filesystem machinery. In this case, the flaw sits in ext4’s extent-tree correction logic, where an unchecked pointer can drift past the end of...

The Linux kernel’s newly published CVE-2026-31489 is a small-looking bug with a very familiar shape: a reference-counting mistake in driver teardown that can become a correctness and stability problem in production. The public description says the meson-spicc SPI controller driver registers...

CVE-2026-31497 is a small Linux kernel Bluetooth bug with outsized meaning for maintainers and downstream vendors. The issue sits in the btusb driver, where the kernel maps the number of active SCO links to USB alternate settings through a fixed lookup table, but failed to clamp the index before...

Linux has published another network-stack security fix that underscores how small lifetime bugs can become serious kernel problems. In CVE-2026-31504, the issue is a use-after-free risk in the packet socket fanout path, where a NETDEV_UP race can re-register a socket into a fanout group after...

CVE-2026-31458 is a small-looking Linux kernel flaw with very practical consequences: a privileged user can trigger a NULL pointer dereference in DAMON’s sysfs control path by shrinking the context list to zero and then issuing certain state updates while the daemon is running. The bug is now...

The Linux kernel has disclosed CVE-2026-31506, a bug in the bcmasp network driver that can trigger a double free of the Wake-on-LAN IRQ if the cleanup path frees an interrupt that was already managed by devm_request_irq(). Because the device-managed IRQ framework automatically releases...

CVE-2026-31506 has landed in the Linux kernel security stream as another reminder that even small cleanup mistakes in driver error paths can matter. In this case, the issue is a double free in the bcmasp Ethernet driver’s Wake-on-LAN interrupt handling, where the code tried to free an IRQ that...

CVE-2026-31488 is a narrowly scoped but operationally serious Linux kernel bug in AMD’s display stack, and it shows how a small state-management mistake can ripple into memory leaks and use-after-free conditions. The flaw centers on drm/amd/display and the way DSC validation handled mode_changed...

CVE-2026-31488 is a reminder that in the Linux graphics stack, seemingly small state-machine mistakes can cascade into serious memory-safety failures. The flaw sits in amdgpu’s Display Core path, where DSC validation incorrectly clears the CRTC mode_changed flag even when other, unrelated mode...

The Linux kernel’s latest netfilter CVE, tracked as CVE-2026-31496, is a small-sounding change with outsized importance for anyone who relies on conntrack visibility in production. The bug lives in nf_conntrack_expect, where the kernel could expose expectations from a different network namespace...

Linux has published another small but important kernel security fix in CVE-2026-31487, and on the surface it looks like the kind of change that only kernel maintainers and driver authors would notice. Underneath that modest title, though, lies a classic use-after-free risk in the SPI subsystem...

CVE-2026-31487 is a reminder that some of the most consequential Linux kernel bugs are not loud crashes or dramatic memory-corruption chains, but quiet lifetime mistakes hidden inside core infrastructure. In this case, the issue sits in the SPI subsystem’s interaction with the kernel’s...

CVE-2026-31512 is a small-looking Linux kernel flaw with the kind of security significance that only packet-processing code can really deliver. The issue sits in the Bluetooth L2CAP path, where l2cap_ecred_data_rcv() can read the SDU length field before first confirming that the incoming skb...

In the Linux kernel’s ext4 filesystem, a newly published vulnerability, CVE-2026-31448, exposes a failure path that can leave the filesystem spinning in an infinite loop while holding critical locks. The issue is tied to how ext4 handles extent-tree insertion failures during mkdir and mknod, and...

CVE-2026-31495 is a reminder that some of the most consequential Linux kernel flaws are not dramatic memory-corruption headlines but quiet trust-boundary failures in the networking stack. In this case, the kernel’s ctnetlink path accepted malformed netlink values that should have been rejected...

XFS use-after-free CVE-2026-31454 exposes a familiar kernel trap in a very specific corner of Linux metadata management A newly published Linux kernel vulnerability, tracked as CVE-2026-31454, affects XFS and stems from a classic concurrency mistake: a pointer is dereferenced after the code has...

The Linux kernel’s CAN ISO-TP stack has a newly published security flaw, and while the CVE record is still being enriched, the underlying bug is already clear: a race in isotp_sendmsg can let so->tx.buf be freed while transmit code is still reading from it. Microsoft’s Security Update Guide has...

CVE-2026-31429 is a good example of a kernel security issue that looks small on paper but matters because it sits in a hot, widely exercised networking path. The bug is in Linux’s skb head free logic, where a KFENCE-specific allocation detail could cause the kernel to return memory to the wrong...

A newly published Linux kernel CVE is drawing attention for a deceptively small reason: the X.25 networking stack could let one internal packet counter grow past its safe bounds, and the fix now requires both an overflow check and a reset during queue cleanup. Microsoft’s Security Update Guide...

CVE-2026-31418 is a narrowly scoped Linux kernel bug, but it sits in a part of the stack where small accounting mistakes can still create real operational pain. The flaw affects netfilter ipset and, according to the published description, centers on mtype_del() failing to treat a bucket as empty...