| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-31478 | ksmbd: replace hardcoded hdr2_len with offsetof() in smb2_calc_max_out_buf_len() | Linux | Linux | Critical | 9.8 | 2026-04-22 13:54:06 | Deep Dive |
| CVE-2026-31477 | ksmbd: fix memory leaks and NULL deref in smb2_lock() | Linux | Linux | High | 7.5 | 2026-04-22 13:54:05 | Deep Dive |
| CVE-2026-31476 | ksmbd: do not expire session on binding failure | Linux | Linux | High | 8.2 | 2026-04-22 13:54:05 | Deep Dive |
| CVE-2026-31475 | ASoC: sma1307: fix double free of devm_kzalloc() memory | Linux | Linux | High | 7.8 | 2026-04-22 13:54:04 | Deep Dive |
| CVE-2026-31474 | can: isotp: fix tx.buf use-after-free in isotp_sendmsg() | Linux | Linux | High | 7.8 | 2026-04-22 13:54:03 | Deep Dive |
| CVE-2026-31473 | media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex | Linux | Linux | High | 7.8 | 2026-04-22 13:54:01 | Deep Dive |
| CVE-2026-31471 | xfrm: iptfs: only publish mode_data after clone setup | Linux | Linux | High | 7.8 | 2026-04-22 13:54:00 | Deep Dive |
| CVE-2026-31472 | xfrm: iptfs: validate inner IPv4 header length in IPTFS payload | Linux | Linux | - | - | 2026-04-22 13:54:00 | Deep Dive |
| CVE-2026-31470 | virt: tdx-guest: Fix handling of host controlled 'quote' buffer length | Linux | Linux | High | 7.1 | 2026-04-22 13:53:59 | Deep Dive |
| CVE-2026-31469 | virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false | Linux | Linux | High | 7.8 | 2026-04-22 13:53:58 | Deep Dive |
| CVE-2026-31468 | vfio/pci: Fix double free in dma-buf feature | Linux | Linux | High | 7.8 | 2026-04-22 13:53:58 | Deep Dive |
| CVE-2026-31467 | erofs: add GFP_NOIO in the bio completion if needed | Linux | Linux | High | 7.5 | 2026-04-22 13:53:57 | Deep Dive |
| CVE-2026-31466 | mm/huge_memory: fix folio isn't locked in softleaf_to_folio() | Linux | Linux | 中危 | - | 2026-04-22 13:53:56 | Deep Dive |
| CVE-2026-31465 | writeback: don't block sync for filesystems with no data integrity guarantees | Linux | Linux | - | - | 2026-04-22 13:53:56 | Deep Dive |
| CVE-2026-31464 | scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() | Linux | Linux | High | 8.1 | 2026-04-22 13:53:55 | Deep Dive |
| CVE-2026-31462 | drm/amdgpu: prevent immediate PASID reuse case | Linux | Linux | - | - | 2026-04-22 13:53:54 | Deep Dive |
| CVE-2026-31463 | iomap: fix invalid folio access when i_blkbits differs from I/O granularity | Linux | Linux | Critical | 9.8 | 2026-04-22 13:53:54 | Deep Dive |
| CVE-2026-31461 | drm/amd/display: Fix drm_edid leak in amdgpu_dm | Linux | Linux | - | - | 2026-04-22 13:53:53 | Deep Dive |
| CVE-2026-31459 | mm/damon/sysfs: fix param_ctx leak on damon_sysfs_new_test_ctx() failure | Linux | Linux | - | - | 2026-04-22 13:53:52 | Deep Dive |
| CVE-2026-31460 | drm/amd/display: check if ext_caps is valid in BL setup | Linux | Linux | - | - | 2026-04-22 13:53:52 | Deep Dive |