linux kernel security

CVE-2026-31729 is a high-severity Linux kernel flaw published on May 1, 2026, in the USB Type-C UCSI driver, where a bogus connector number from hardware can trigger an out-of-bounds array access before fixed kernel builds reject it. For WindowsForum readers, the point is not that Windows...

CVE-2026-31722 is a medium-severity Linux kernel vulnerability published by NVD on May 1, 2026, affecting the USB gadget RNDIS function, where repeated bind and unbind cycles can leave a surviving network device attached to a destroyed sysfs parent and crash availability. The bug is not a...

CVE-2026-31777 is a medium-severity Linux kernel vulnerability published May 1, 2026, affecting the ALSA ctxfi sound driver, where a missing error check around daio_device_index() could allow a local privileged user to trigger a high-impact availability failure on affected kernels. That sounds...

CVE-2026-43421 is a newly published Linux kernel vulnerability, added to the NVD dataset on May 8, 2026, covering a USB gadget f_ncm driver bug where a network device could outlive its parent gadget device during disconnect handling. The short version sounds microscopic: a net_device moved at...

Microsoft listed CVE-2026-43344 in its Security Update Guide after kernel.org published a May 8, 2026 Linux kernel fix for Intel uncore performance-monitoring code that could mishandle die identification on certain NUMA-capable Xeon platforms when CPUs are offline or NUMA is disabled. The bug is...

CVE-2026-43474 is a Linux kernel filesystem bug, published in early May 2026 and tracked by Microsoft’s Security Update Guide, that fixes an uninitialized flags_valid field before vfs_fileattr_get() calls into filesystem-specific file attribute handlers such as FUSE on affected modern kernels...

CVE-2026-43052 is a Linux kernel Wi-Fi vulnerability disclosed by kernel.org on May 1, 2026, affecting mac80211 TDLS handling when NL80211_TDLS_ENABLE_LINK is invoked against a station that exists but is not actually a TDLS peer. The bug is narrow, local, and deeply technical, but it is not...

CVE-2026-43036 is a medium-severity Linux kernel networking flaw published on May 1, 2026, and modified by NVD on May 8, affecting multiple kernel release lines where TCPv4 GSO handling can read an unsafe IPv4 header field from PF_PACKET-injected traffic. The fix is small, almost boringly so...

Microsoft disclosed on May 8, 2026, that “Dirty Frag,” a Linux local privilege escalation vulnerability chain involving esp4, esp6, and rxrpc kernel components, is being investigated in limited active attacks that can turn low-privileged local execution into root control. The unpleasant part is...

Microsoft’s Security Update Guide listed CVE-2026-43083 on May 6, 2026, after kernel.org assigned the Linux kernel flaw to an IPv6 IOAM networking bug involving an out-of-bounds transmit-queue access and a missing lock in shared queue-statistics handling. The dry wording undersells the point...

CVE-2026-43199 is a newly published Linux kernel vulnerability, disclosed by kernel.org and listed by Microsoft’s Security Update Guide on May 6, 2026, that fixes a Mellanox/NVIDIA mlx5 Ethernet driver bug triggered during IPsec MAC address handling in kernel workqueue execution. It is not the...

CVE-2026-43101 is a newly published Linux kernel vulnerability, disclosed on May 6, 2026, in the IPv6 IOAM tracing path where __ioam6_fill_trace_data() could hit potential NULL dereferences before stable kernel fixes added safer checks and reads. It is not a blockbuster remote-code-execution...

CVE-2026-43088 is a Linux kernel information-disclosure flaw published on May 6, 2026, in which PF_KEY export messages can expose four uninitialized padding bytes from IPv6 sockaddr data in specific IPsec-related paths, according to the kernel.org CVE record mirrored by Microsoft’s Security...

CVE-2026-43195 is a newly published Linux kernel vulnerability, received by NVD from kernel.org on May 6, 2026, that fixes missing validation in AMDGPU user queue creation by requiring queue sizes to be powers of two and at least one AMDGPU GPU page. The bug is not a headline-grabbing remote...

Microsoft listed CVE-2026-43165 on May 6, 2026, after kernel.org assigned the identifier to a Linux kernel hardware-monitoring driver bug in the Nuvoton NCT7363 hwmon code, where a missing device-tree reference release can leak resources during PWM and fan-input parsing. The flaw is not a...

CVE-2026-43237, published by NVD on May 6, 2026 after disclosure from kernel.org, is a Linux kernel amdgpu driver flaw in amdgpu_gem_va_ioctl that can trigger stale or freed DMA fence use during AMD GPU virtual-address timeline updates. The ugly part is not that a GPU driver can crash; anyone...

CVE-2026-43118 is a Linux kernel Btrfs vulnerability published on May 6, 2026, in which log replay after a crash can restore a truncated file with its old non-zero size under a specific fsync, hardlink, or rename sequence. That sounds like a narrow filesystem corner case because it is one. But...

CVE-2026-43198 is a Linux kernel TCP/IPv6 race-condition flaw disclosed by kernel.org and published in NVD on May 6, 2026, involving tcp_v6_syn_recv_sock(), where a newly created child socket can become visible to other CPUs before its IPv6 state is fully initialized. That sounds like an obscure...

CVE-2026-43126 is a Linux kernel vulnerability published on May 6, 2026, in the ALSA OSS mixer compatibility layer, where missing disconnect checks could allow pending mixer operations to touch a sound card after teardown. The bug is not a Windows flaw, but it matters to WindowsForum readers...

CVE-2026-43131 is a newly published Linux kernel vulnerability, disclosed on May 6, 2026, in AMD’s GPU power-management driver, where systems with the SMU disabled can hit a null pointer dereference during RAS initialization. That sounds narrow, and in exploit terms it probably is. But the bug...