Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-46289 (GCVE-0-2026-46289)
Vulnerability from cvelistv5 – Published: 2026-06-08 15:46 – Updated: 2026-06-14 18:06
VLAI
EPSS
Title
lib/scatterlist: fix length calculations in extract_kvec_to_sg
Summary
In the Linux kernel, the following vulnerability has been resolved:
lib/scatterlist: fix length calculations in extract_kvec_to_sg
Patch series "Fix bugs in extract_iter_to_sg()", v3.
Fix bugs in the kvec and user variants of extract_iter_to_sg. This series
is growing due to useful remarks made by sashiko.dev.
The main bugs are:
- The length for an sglist entry when extracting from
a kvec can exceed the number of bytes in the page. This
is obviously not intended.
- When extracting a user buffer the sglist is temporarily
used as a scratch buffer for extracted page pointers.
If the sglist already contains some elements this scratch
buffer could overlap with existing entries in the sglist.
The series adds test cases to the kunit_iov_iter test that demonstrate all
of these bugs. Additionally, there is a memory leak fix for the test
itself.
The bugs were orignally introduced into kernel v6.3 where the function
lived in fs/netfs/iterator.c. It was later moved to lib/scatterlist.c in
v6.5. Thus the actual fix is only marked for backports to v6.5+.
This patch (of 5):
When extracting from a kvec to a scatterlist, do not cross page
boundaries. The required length was already calculated but not used as
intended.
Adjust the copied length if the loop runs out of sglist entries without
extracting everything.
While there, return immediately from extract_iter_to_sg if there are no
sglist entries at all.
A subsequent commit will add kunit test cases that demonstrate that the
patch is necessary.
Severity
9.8 (Critical)
Assigner
References
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Linux | Linux |
Affected:
0185846975339a5c348373aa450a977f5242366b , < 3f17500e86d730c76db638bb3ae52f9b5e496c76
(git)
Affected: 0185846975339a5c348373aa450a977f5242366b , < e5e22fc9963469e678c4f4bb38d26adcec107f1e (git) Affected: 0185846975339a5c348373aa450a977f5242366b , < 8fbba6829057979149d1b37d65690c037f3ddf4d (git) Affected: 0185846975339a5c348373aa450a977f5242366b , < 9d38756d0a93b66163554219fa9c3365f40c4035 (git) Affected: 0185846975339a5c348373aa450a977f5242366b , < 07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45 (git) |
|
| Linux | Linux |
Affected:
6.3
Unaffected: 0 , < 6.3 (semver) Unaffected: 6.6.140 , ≤ 6.6.* (semver) Unaffected: 6.12.88 , ≤ 6.12.* (semver) Unaffected: 6.18.30 , ≤ 6.18.* (semver) Unaffected: 7.0.7 , ≤ 7.0.* (semver) Unaffected: 7.1 , ≤ * (original_commit_for_fix) |
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"lib/scatterlist.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "3f17500e86d730c76db638bb3ae52f9b5e496c76",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "e5e22fc9963469e678c4f4bb38d26adcec107f1e",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "8fbba6829057979149d1b37d65690c037f3ddf4d",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "9d38756d0a93b66163554219fa9c3365f40c4035",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"lib/scatterlist.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.3"
},
{
"lessThan": "6.3",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.140",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.12.*",
"status": "unaffected",
"version": "6.12.88",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.18.*",
"status": "unaffected",
"version": "6.18.30",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.7",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.6.140",
"versionStartIncluding": "6.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.12.88",
"versionStartIncluding": "6.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.18.30",
"versionStartIncluding": "6.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.0.7",
"versionStartIncluding": "6.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.1",
"versionStartIncluding": "6.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/scatterlist: fix length calculations in extract_kvec_to_sg\n\nPatch series \"Fix bugs in extract_iter_to_sg()\", v3.\n\nFix bugs in the kvec and user variants of extract_iter_to_sg. This series\nis growing due to useful remarks made by sashiko.dev.\n\nThe main bugs are:\n- The length for an sglist entry when extracting from\n a kvec can exceed the number of bytes in the page. This\n is obviously not intended.\n- When extracting a user buffer the sglist is temporarily\n used as a scratch buffer for extracted page pointers.\n If the sglist already contains some elements this scratch\n buffer could overlap with existing entries in the sglist.\n\nThe series adds test cases to the kunit_iov_iter test that demonstrate all\nof these bugs. Additionally, there is a memory leak fix for the test\nitself.\n\nThe bugs were orignally introduced into kernel v6.3 where the function\nlived in fs/netfs/iterator.c. It was later moved to lib/scatterlist.c in\nv6.5. Thus the actual fix is only marked for backports to v6.5+.\n\n\nThis patch (of 5):\n\nWhen extracting from a kvec to a scatterlist, do not cross page\nboundaries. The required length was already calculated but not used as\nintended.\n\nAdjust the copied length if the loop runs out of sglist entries without\nextracting everything.\n\nWhile there, return immediately from extract_iter_to_sg if there are no\nsglist entries at all.\n\nA subsequent commit will add kunit test cases that demonstrate that the\npatch is necessary."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-14T18:06:42.893Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/3f17500e86d730c76db638bb3ae52f9b5e496c76"
},
{
"url": "https://git.kernel.org/stable/c/e5e22fc9963469e678c4f4bb38d26adcec107f1e"
},
{
"url": "https://git.kernel.org/stable/c/8fbba6829057979149d1b37d65690c037f3ddf4d"
},
{
"url": "https://git.kernel.org/stable/c/9d38756d0a93b66163554219fa9c3365f40c4035"
},
{
"url": "https://git.kernel.org/stable/c/07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45"
}
],
"title": "lib/scatterlist: fix length calculations in extract_kvec_to_sg",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2026-46289",
"datePublished": "2026-06-08T15:46:15.888Z",
"dateReserved": "2026-05-13T15:03:33.110Z",
"dateUpdated": "2026-06-14T18:06:42.893Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-46289",
"date": "2026-06-17",
"epss": "0.00457",
"percentile": "0.36129"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-46289\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-06-08T17:16:47.097\",\"lastModified\":\"2026-06-14T06:16:23.273\",\"vulnStatus\":\"Received\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nlib/scatterlist: fix length calculations in extract_kvec_to_sg\\n\\nPatch series \\\"Fix bugs in extract_iter_to_sg()\\\", v3.\\n\\nFix bugs in the kvec and user variants of extract_iter_to_sg. This series\\nis growing due to useful remarks made by sashiko.dev.\\n\\nThe main bugs are:\\n- The length for an sglist entry when extracting from\\n a kvec can exceed the number of bytes in the page. This\\n is obviously not intended.\\n- When extracting a user buffer the sglist is temporarily\\n used as a scratch buffer for extracted page pointers.\\n If the sglist already contains some elements this scratch\\n buffer could overlap with existing entries in the sglist.\\n\\nThe series adds test cases to the kunit_iov_iter test that demonstrate all\\nof these bugs. Additionally, there is a memory leak fix for the test\\nitself.\\n\\nThe bugs were orignally introduced into kernel v6.3 where the function\\nlived in fs/netfs/iterator.c. It was later moved to lib/scatterlist.c in\\nv6.5. Thus the actual fix is only marked for backports to v6.5+.\\n\\n\\nThis patch (of 5):\\n\\nWhen extracting from a kvec to a scatterlist, do not cross page\\nboundaries. The required length was already calculated but not used as\\nintended.\\n\\nAdjust the copied length if the loop runs out of sglist entries without\\nextracting everything.\\n\\nWhile there, return immediately from extract_iter_to_sg if there are no\\nsglist entries at all.\\n\\nA subsequent commit will add kunit test cases that demonstrate that the\\npatch is necessary.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/3f17500e86d730c76db638bb3ae52f9b5e496c76\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/8fbba6829057979149d1b37d65690c037f3ddf4d\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/9d38756d0a93b66163554219fa9c3365f40c4035\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/e5e22fc9963469e678c4f4bb38d26adcec107f1e\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
}
}
FKIE_CVE-2026-46289
Vulnerability from fkie_nvd - Published: 2026-06-08 17:16 - Updated: 2026-06-17 10:53
Severity
Summary
In the Linux kernel, the following vulnerability has been resolved:
lib/scatterlist: fix length calculations in extract_kvec_to_sg
Patch series "Fix bugs in extract_iter_to_sg()", v3.
Fix bugs in the kvec and user variants of extract_iter_to_sg. This series
is growing due to useful remarks made by sashiko.dev.
The main bugs are:
- The length for an sglist entry when extracting from
a kvec can exceed the number of bytes in the page. This
is obviously not intended.
- When extracting a user buffer the sglist is temporarily
used as a scratch buffer for extracted page pointers.
If the sglist already contains some elements this scratch
buffer could overlap with existing entries in the sglist.
The series adds test cases to the kunit_iov_iter test that demonstrate all
of these bugs. Additionally, there is a memory leak fix for the test
itself.
The bugs were orignally introduced into kernel v6.3 where the function
lived in fs/netfs/iterator.c. It was later moved to lib/scatterlist.c in
v6.5. Thus the actual fix is only marked for backports to v6.5+.
This patch (of 5):
When extracting from a kvec to a scatterlist, do not cross page
boundaries. The required length was already calculated but not used as
intended.
Adjust the copied length if the loop runs out of sglist entries without
extracting everything.
While there, return immediately from extract_iter_to_sg if there are no
sglist entries at all.
A subsequent commit will add kunit test cases that demonstrate that the
patch is necessary.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"affected": [
{
"affectedData": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"lib/scatterlist.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "3f17500e86d730c76db638bb3ae52f9b5e496c76",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "e5e22fc9963469e678c4f4bb38d26adcec107f1e",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "8fbba6829057979149d1b37d65690c037f3ddf4d",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "9d38756d0a93b66163554219fa9c3365f40c4035",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
},
{
"lessThan": "07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45",
"status": "affected",
"version": "0185846975339a5c348373aa450a977f5242366b",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"lib/scatterlist.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.3"
},
{
"lessThan": "6.3",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.140",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.12.*",
"status": "unaffected",
"version": "6.12.88",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.18.*",
"status": "unaffected",
"version": "6.18.30",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.7",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/scatterlist: fix length calculations in extract_kvec_to_sg\n\nPatch series \"Fix bugs in extract_iter_to_sg()\", v3.\n\nFix bugs in the kvec and user variants of extract_iter_to_sg. This series\nis growing due to useful remarks made by sashiko.dev.\n\nThe main bugs are:\n- The length for an sglist entry when extracting from\n a kvec can exceed the number of bytes in the page. This\n is obviously not intended.\n- When extracting a user buffer the sglist is temporarily\n used as a scratch buffer for extracted page pointers.\n If the sglist already contains some elements this scratch\n buffer could overlap with existing entries in the sglist.\n\nThe series adds test cases to the kunit_iov_iter test that demonstrate all\nof these bugs. Additionally, there is a memory leak fix for the test\nitself.\n\nThe bugs were orignally introduced into kernel v6.3 where the function\nlived in fs/netfs/iterator.c. It was later moved to lib/scatterlist.c in\nv6.5. Thus the actual fix is only marked for backports to v6.5+.\n\n\nThis patch (of 5):\n\nWhen extracting from a kvec to a scatterlist, do not cross page\nboundaries. The required length was already calculated but not used as\nintended.\n\nAdjust the copied length if the loop runs out of sglist entries without\nextracting everything.\n\nWhile there, return immediately from extract_iter_to_sg if there are no\nsglist entries at all.\n\nA subsequent commit will add kunit test cases that demonstrate that the\npatch is necessary."
}
],
"id": "CVE-2026-46289",
"lastModified": "2026-06-17T10:53:29.180",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"type": "Secondary"
}
]
},
"published": "2026-06-08T17:16:47.097",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/3f17500e86d730c76db638bb3ae52f9b5e496c76"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/8fbba6829057979149d1b37d65690c037f3ddf4d"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/9d38756d0a93b66163554219fa9c3365f40c4035"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/e5e22fc9963469e678c4f4bb38d26adcec107f1e"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Received"
}
GHSA-QP34-4R23-MCWX
Vulnerability from github – Published: 2026-06-08 18:31 – Updated: 2026-06-14 06:30
VLAI
Details
In the Linux kernel, the following vulnerability has been resolved:
lib/scatterlist: fix length calculations in extract_kvec_to_sg
Patch series "Fix bugs in extract_iter_to_sg()", v3.
Fix bugs in the kvec and user variants of extract_iter_to_sg. This series is growing due to useful remarks made by sashiko.dev.
The main bugs are: - The length for an sglist entry when extracting from a kvec can exceed the number of bytes in the page. This is obviously not intended. - When extracting a user buffer the sglist is temporarily used as a scratch buffer for extracted page pointers. If the sglist already contains some elements this scratch buffer could overlap with existing entries in the sglist.
The series adds test cases to the kunit_iov_iter test that demonstrate all of these bugs. Additionally, there is a memory leak fix for the test itself.
The bugs were orignally introduced into kernel v6.3 where the function lived in fs/netfs/iterator.c. It was later moved to lib/scatterlist.c in v6.5. Thus the actual fix is only marked for backports to v6.5+.
This patch (of 5):
When extracting from a kvec to a scatterlist, do not cross page boundaries. The required length was already calculated but not used as intended.
Adjust the copied length if the loop runs out of sglist entries without extracting everything.
While there, return immediately from extract_iter_to_sg if there are no sglist entries at all.
A subsequent commit will add kunit test cases that demonstrate that the patch is necessary.
Severity
9.8 (Critical)
{
"affected": [],
"aliases": [
"CVE-2026-46289"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-06-08T17:16:47Z",
"severity": "CRITICAL"
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/scatterlist: fix length calculations in extract_kvec_to_sg\n\nPatch series \"Fix bugs in extract_iter_to_sg()\", v3.\n\nFix bugs in the kvec and user variants of extract_iter_to_sg. This series\nis growing due to useful remarks made by sashiko.dev.\n\nThe main bugs are:\n- The length for an sglist entry when extracting from\n a kvec can exceed the number of bytes in the page. This\n is obviously not intended.\n- When extracting a user buffer the sglist is temporarily\n used as a scratch buffer for extracted page pointers.\n If the sglist already contains some elements this scratch\n buffer could overlap with existing entries in the sglist.\n\nThe series adds test cases to the kunit_iov_iter test that demonstrate all\nof these bugs. Additionally, there is a memory leak fix for the test\nitself.\n\nThe bugs were orignally introduced into kernel v6.3 where the function\nlived in fs/netfs/iterator.c. It was later moved to lib/scatterlist.c in\nv6.5. Thus the actual fix is only marked for backports to v6.5+.\n\n\nThis patch (of 5):\n\nWhen extracting from a kvec to a scatterlist, do not cross page\nboundaries. The required length was already calculated but not used as\nintended.\n\nAdjust the copied length if the loop runs out of sglist entries without\nextracting everything.\n\nWhile there, return immediately from extract_iter_to_sg if there are no\nsglist entries at all.\n\nA subsequent commit will add kunit test cases that demonstrate that the\npatch is necessary.",
"id": "GHSA-qp34-4r23-mcwx",
"modified": "2026-06-14T06:30:23Z",
"published": "2026-06-08T18:31:52Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46289"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/3f17500e86d730c76db638bb3ae52f9b5e496c76"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/8fbba6829057979149d1b37d65690c037f3ddf4d"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/9d38756d0a93b66163554219fa9c3365f40c4035"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/e5e22fc9963469e678c4f4bb38d26adcec107f1e"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
MSRC_CVE-2026-46289
Vulnerability from csaf_microsoft - Published: 2026-06-02 00:00 - Updated: 2026-06-10 01:03Summary
lib/scatterlist: fix length calculations in extract_kvec_to_sg
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 17084-1 | — |
None Available
|
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2026-46289 lib/scatterlist: fix length calculations in extract_kvec_to_sg - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-46289.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "lib/scatterlist: fix length calculations in extract_kvec_to_sg",
"tracking": {
"current_release_date": "2026-06-10T01:03:35.000Z",
"generator": {
"date": "2026-06-10T07:02:18.608Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2026-46289",
"initial_release_date": "2026-06-02T00:00:00.000Z",
"revision_history": [
{
"date": "2026-06-10T01:03:35.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "azl3 kernel 0:6.6.139.1-1.azl3",
"product": {
"name": "azl3 kernel 0:6.6.139.1-1.azl3",
"product_id": "1"
}
}
],
"category": "product_name",
"name": "kernel"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 kernel 0:6.6.139.1-1.azl3 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-46289",
"notes": [
{
"category": "general",
"text": "Linux",
"title": "Assigning CNA"
}
],
"product_status": {
"known_affected": [
"17084-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-46289 lib/scatterlist: fix length calculations in extract_kvec_to_sg - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-46289.json"
}
],
"remediations": [
{
"category": "none_available",
"date": "2026-06-10T01:03:35.000Z",
"details": "There is no fix available for this vulnerability as of now",
"product_ids": [
"17084-1"
]
}
],
"title": "lib/scatterlist: fix length calculations in extract_kvec_to_sg"
}
]
}
WID-SEC-W-2026-1827
Vulnerability from csaf_certbund - Published: 2026-06-08 22:00 - Updated: 2026-06-14 22:00Summary
Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.
Angriff: Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen oder nicht bekannte Auswirkungen zu erzielen.
Betroffene Betriebssysteme: - Linux
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— |
References
45 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren oder nicht bekannte Auswirkungen zu erzielen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1827 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1827.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1827 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1827"
},
{
"category": "external",
"summary": "Kernel CVE Announce Mailingliste",
"url": "https://lore.kernel.org/linux-cve-announce/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71315",
"url": "https://lore.kernel.org/linux-cve-announce/2026060801-CVE-2025-71315-ee7d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46274",
"url": "https://lore.kernel.org/linux-cve-announce/2026060803-CVE-2026-46274-b5c3@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46275",
"url": "https://lore.kernel.org/linux-cve-announce/2026060803-CVE-2026-46275-9af6@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46276",
"url": "https://lore.kernel.org/linux-cve-announce/2026060839-CVE-2026-46276-1e60@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46277",
"url": "https://lore.kernel.org/linux-cve-announce/2026060841-CVE-2026-46277-f398@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46278",
"url": "https://lore.kernel.org/linux-cve-announce/2026060841-CVE-2026-46278-96c5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46279",
"url": "https://lore.kernel.org/linux-cve-announce/2026060841-CVE-2026-46279-dc4a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46280",
"url": "https://lore.kernel.org/linux-cve-announce/2026060841-CVE-2026-46280-13e3@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46281",
"url": "https://lore.kernel.org/linux-cve-announce/2026060842-CVE-2026-46281-60c8@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46282",
"url": "https://lore.kernel.org/linux-cve-announce/2026060842-CVE-2026-46282-f087@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46283",
"url": "https://lore.kernel.org/linux-cve-announce/2026060842-CVE-2026-46283-5142@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46284",
"url": "https://lore.kernel.org/linux-cve-announce/2026060842-CVE-2026-46284-229a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46285",
"url": "https://lore.kernel.org/linux-cve-announce/2026060843-CVE-2026-46285-0239@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46286",
"url": "https://lore.kernel.org/linux-cve-announce/2026060843-CVE-2026-46286-b3d1@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46287",
"url": "https://lore.kernel.org/linux-cve-announce/2026060843-CVE-2026-46287-750d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46288",
"url": "https://lore.kernel.org/linux-cve-announce/2026060844-CVE-2026-46288-76f3@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46289",
"url": "https://lore.kernel.org/linux-cve-announce/2026060856-CVE-2026-46289-1b28@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46290",
"url": "https://lore.kernel.org/linux-cve-announce/2026060856-CVE-2026-46290-18bf@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46291",
"url": "https://lore.kernel.org/linux-cve-announce/2026060857-CVE-2026-46291-cb3d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46292",
"url": "https://lore.kernel.org/linux-cve-announce/2026060857-CVE-2026-46292-92c0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46293",
"url": "https://lore.kernel.org/linux-cve-announce/2026060857-CVE-2026-46293-b59c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46294",
"url": "https://lore.kernel.org/linux-cve-announce/2026060857-CVE-2026-46294-dcc8@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46295",
"url": "https://lore.kernel.org/linux-cve-announce/2026060858-CVE-2026-46295-a5d0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46296",
"url": "https://lore.kernel.org/linux-cve-announce/2026060858-CVE-2026-46296-1408@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46297",
"url": "https://lore.kernel.org/linux-cve-announce/2026060858-CVE-2026-46297-975a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46298",
"url": "https://lore.kernel.org/linux-cve-announce/2026060859-CVE-2026-46298-67ca@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46299",
"url": "https://lore.kernel.org/linux-cve-announce/2026060859-CVE-2026-46299-d660@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46301",
"url": "https://lore.kernel.org/linux-cve-announce/2026060859-CVE-2026-46301-5988@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46302",
"url": "https://lore.kernel.org/linux-cve-announce/2026060859-CVE-2026-46302-fd95@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46303",
"url": "https://lore.kernel.org/linux-cve-announce/2026060859-CVE-2026-46303-d951@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46304",
"url": "https://lore.kernel.org/linux-cve-announce/2026060800-CVE-2026-46304-be50@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46305",
"url": "https://lore.kernel.org/linux-cve-announce/2026060800-CVE-2026-46305-d3f2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46306",
"url": "https://lore.kernel.org/linux-cve-announce/2026060800-CVE-2026-46306-503c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46307",
"url": "https://lore.kernel.org/linux-cve-announce/2026060800-CVE-2026-46307-9ef9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46308",
"url": "https://lore.kernel.org/linux-cve-announce/2026060801-CVE-2026-46308-d902@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46309",
"url": "https://lore.kernel.org/linux-cve-announce/2026060852-CVE-2026-46309-7f6b@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46310",
"url": "https://lore.kernel.org/linux-cve-announce/2026060852-CVE-2026-46310-5267@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46311",
"url": "https://lore.kernel.org/linux-cve-announce/2026060853-CVE-2026-46311-bf08@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46312",
"url": "https://lore.kernel.org/linux-cve-announce/2026060853-CVE-2026-46312-a367@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46313",
"url": "https://lore.kernel.org/linux-cve-announce/2026060853-CVE-2026-46313-a890@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-46314",
"url": "https://lore.kernel.org/linux-cve-announce/2026060854-CVE-2026-46314-2b40@gregkh/"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2026:11014-1 vom 2026-06-14",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GUIIWLNGS7XPMWTUD7QE4YLQY7U22IJE/"
}
],
"source_lang": "en-US",
"title": "Linux Kernel: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2026-06-14T22:00:00.000+00:00",
"generator": {
"date": "2026-06-15T07:40:20.412+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-1827",
"initial_release_date": "2026-06-08T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-06-08T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-06-14T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von openSUSE aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source Linux Kernel",
"product": {
"name": "Open Source Linux Kernel",
"product_id": "T035270",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-71315",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2025-71315"
},
{
"cve": "CVE-2026-46274",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46274"
},
{
"cve": "CVE-2026-46275",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46275"
},
{
"cve": "CVE-2026-46276",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46276"
},
{
"cve": "CVE-2026-46277",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46277"
},
{
"cve": "CVE-2026-46278",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46278"
},
{
"cve": "CVE-2026-46279",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46279"
},
{
"cve": "CVE-2026-46280",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46280"
},
{
"cve": "CVE-2026-46281",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46281"
},
{
"cve": "CVE-2026-46282",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46282"
},
{
"cve": "CVE-2026-46283",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46283"
},
{
"cve": "CVE-2026-46284",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46284"
},
{
"cve": "CVE-2026-46285",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46285"
},
{
"cve": "CVE-2026-46286",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46286"
},
{
"cve": "CVE-2026-46287",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46287"
},
{
"cve": "CVE-2026-46288",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46288"
},
{
"cve": "CVE-2026-46289",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46289"
},
{
"cve": "CVE-2026-46290",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46290"
},
{
"cve": "CVE-2026-46291",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46291"
},
{
"cve": "CVE-2026-46292",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46292"
},
{
"cve": "CVE-2026-46293",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46293"
},
{
"cve": "CVE-2026-46294",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46294"
},
{
"cve": "CVE-2026-46295",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46295"
},
{
"cve": "CVE-2026-46296",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46296"
},
{
"cve": "CVE-2026-46297",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46297"
},
{
"cve": "CVE-2026-46298",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46298"
},
{
"cve": "CVE-2026-46299",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46299"
},
{
"cve": "CVE-2026-46301",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46301"
},
{
"cve": "CVE-2026-46302",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46302"
},
{
"cve": "CVE-2026-46303",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46303"
},
{
"cve": "CVE-2026-46304",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46304"
},
{
"cve": "CVE-2026-46305",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46305"
},
{
"cve": "CVE-2026-46306",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46306"
},
{
"cve": "CVE-2026-46307",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46307"
},
{
"cve": "CVE-2026-46308",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46308"
},
{
"cve": "CVE-2026-46309",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46309"
},
{
"cve": "CVE-2026-46310",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46310"
},
{
"cve": "CVE-2026-46311",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46311"
},
{
"cve": "CVE-2026-46312",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46312"
},
{
"cve": "CVE-2026-46313",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46313"
},
{
"cve": "CVE-2026-46314",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46314"
},
{
"cve": "CVE-2026-46315",
"product_status": {
"known_affected": [
"T035270",
"T027843"
]
},
"release_date": "2026-06-08T22:00:00.000+00:00",
"title": "CVE-2026-46315"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…