NVD

Icon for NVD Communications and Status Updates Page

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, product names, and impact metrics.

For information on how to cite the NVD, including the database's Digital Object Identifier (DOI), please consult NIST's Public Data Repository.

Legal Disclaimer:

Here is where you can read the NVD legal disclaimer.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity

CVE-2026-43225 - In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211_inform_bss_frame() may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the functio... read CVE-2026-43225
Published: May 06, 2026; 8:16:42 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43230 - In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When canceling the reconnect worker, care must be taken to reset the reconnect-pending bit. If the reconnect worker has not yet been schedul... read CVE-2026-43230
Published: May 06, 2026; 8:16:42 AM -0400
CVE-2026-43226 - In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDS_CONN_ERROR RDS connections carry a state "rds_conn_path::cp_state" and transitions from one state to another and are conditional upon an expected... read CVE-2026-43226
Published: May 06, 2026; 8:16:42 AM -0400
CVE-2026-43228 - In the Linux kernel, the following vulnerability has been resolved: hfs: Replace BUG_ON with error handling for CNID count checks In a06ec283e125 next_id, folder_count, and file_count in the super block info were expanded to 64 bits, and BUG_ONs... read CVE-2026-43228
Published: May 06, 2026; 8:16:42 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43223 - In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix URB leak in pvr2_send_request_ex When pvr2_send_request_ex() submits a write URB successfully but fails to submit the read URB (e.g. returns -ENOMEM), it ret... read CVE-2026-43223
Published: May 06, 2026; 8:16:42 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43224 - In the Linux kernel, the following vulnerability has been resolved: io_uring/zcrx: fix sgtable leak on mapping failures In an unlikely case when io_populate_area_dma() fails, which could only happen on a PAGE_POOL_32BIT_ARCH_WITH_64BIT_DMA machi... read CVE-2026-43224
Published: May 06, 2026; 8:16:42 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43222 - In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buffer size Each tile info is composed of: row_sb, col_sb, start_pos and end_pos (4 bytes each). So the total required memory is AV1_MAX_T... read CVE-2026-43222
Published: May 06, 2026; 8:16:41 AM -0400
CVE-2026-43227 - In the Linux kernel, the following vulnerability has been resolved: clocksource/drivers/sh_tmu: Always leave device running after probe The TMU device can be used as both a clocksource and a clockevent provider. The driver tries to be smart and ... read CVE-2026-43227
Published: May 06, 2026; 8:16:42 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43231 - In the Linux kernel, the following vulnerability has been resolved: media: radio-keene: fix memory leak in error path Fix a memory leak in usb_keene_probe(). The v4l2 control handler is initialized and controls are added, but if v4l2_device_regi... read CVE-2026-43231
Published: May 06, 2026; 8:16:43 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43229 - In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix device cleanup order to prevent kernel panic Move video device unregistration to the beginning of the remove function to ensure all video operatio... read CVE-2026-43229
Published: May 06, 2026; 8:16:42 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43267 - In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential zero beacon interval in beacon tracking During fuzz testing, it was discovered that bss_conf->beacon_int might be zero, which could result in a divisi... read CVE-2026-43267
Published: May 06, 2026; 8:16:47 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43268 - In the Linux kernel, the following vulnerability has been resolved: hfsplus: pretend special inodes as regular files Since commit af153bb63a33 ("vfs: catch invalid modes in may_open()") requires any inode be one of S_IFDIR/S_IFLNK/S_IFREG/S_IFCH... read CVE-2026-43268
Published: May 06, 2026; 8:16:47 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43266 - In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the section_length is too small, but it doesn't detect if it is too bi... read CVE-2026-43266
Published: May 06, 2026; 8:16:47 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43262 - In the Linux kernel, the following vulnerability has been resolved: gfs2: fiemap page fault fix In gfs2_fiemap(), we are calling iomap_fiemap() while holding the inode glock. This can lead to recursive glock taking if the fiemap buffer is memor... read CVE-2026-43262
Published: May 06, 2026; 8:16:47 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43261 - In the Linux kernel, the following vulnerability has been resolved: arm64: Add support for TSV110 Spectre-BHB mitigation The TSV110 processor is vulnerable to the Spectre-BHB (Branch History Buffer) attack, which can be exploited to leak informa... read CVE-2026-43261
Published: May 06, 2026; 8:16:47 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43265 - In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() Ignore -EBUSY when checking nested events after exiting a blocking state while L2 is active, as exiting to ... read CVE-2026-43265
Published: May 06, 2026; 8:16:47 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43264 - In the Linux kernel, the following vulnerability has been resolved: fbdev: of: display_timing: fix refcount leak in of_get_display_timings() of_parse_phandle() returns a device_node with refcount incremented, which is stored in 'entry' and then ... read CVE-2026-43264
Published: May 06, 2026; 8:16:47 AM -0400

V3.1: 5.5 MEDIUM
CVE-2026-43263 - In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix Null reference while testing fluster When multi instances are created/destroyed, many interrupts happens and structures for decoder are removed. "... read CVE-2026-43263
Published: May 06, 2026; 8:16:47 AM -0400
CVE-2026-43260 - In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix RSS context delete logic We need to free the corresponding RSS context VNIC in FW everytime an RSS context is deleted in driver. Commit 667ac333dbb7 added a check t... read CVE-2026-43260
Published: May 06, 2026; 8:16:46 AM -0400

V3.1: 7.8 HIGH
CVE-2026-43259 - In the Linux kernel, the following vulnerability has been resolved: phy: fsl-imx8mq-usb: set platform driver data Add missing platform_set_drvdata() as the data will be used in remove().
Published: May 06, 2026; 8:16:46 AM -0400

V3.1: 5.5 MEDIUM

Created September 20, 2022 , Updated August 27, 2024

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

Legal Disclaimer: