Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-52940 (GCVE-0-2026-52940)
Vulnerability from cvelistv5 – Published: 2026-06-24 07:14 – Updated: 2026-06-24 07:14| Vendor | Product | Version | |
|---|---|---|---|
| Linux | Linux |
Affected:
288f30435132d2f9e7a29ec9b9745a4f9dc7fd37 , < 5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5
(git)
Affected: 288f30435132d2f9e7a29ec9b9745a4f9dc7fd37 , < 585cb85e9a29185be05f326369573c2663cf4380 (git) Affected: 288f30435132d2f9e7a29ec9b9745a4f9dc7fd37 , < 7f2fcff15e99bb852f6967396ed12b38376e2c8d (git) |
|
| Linux | Linux |
Affected:
6.17
Unaffected: 0 , < 6.17 (semver) Unaffected: 6.18.36 , ≤ 6.18.* (semver) Unaffected: 7.0.13 , ≤ 7.0.* (semver) Unaffected: 7.1 , ≤ * (original_commit_for_fix) |
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"drivers/net/tun.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5",
"status": "affected",
"version": "288f30435132d2f9e7a29ec9b9745a4f9dc7fd37",
"versionType": "git"
},
{
"lessThan": "585cb85e9a29185be05f326369573c2663cf4380",
"status": "affected",
"version": "288f30435132d2f9e7a29ec9b9745a4f9dc7fd37",
"versionType": "git"
},
{
"lessThan": "7f2fcff15e99bb852f6967396ed12b38376e2c8d",
"status": "affected",
"version": "288f30435132d2f9e7a29ec9b9745a4f9dc7fd37",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"drivers/net/tun.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.17"
},
{
"lessThan": "6.17",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.18.*",
"status": "unaffected",
"version": "6.18.36",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.13",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.18.36",
"versionStartIncluding": "6.17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.0.13",
"versionStartIncluding": "6.17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.1",
"versionStartIncluding": "6.17",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntun: zero the whole vnet header in tun_put_user()\n\ntun_put_user() declares an on-stack struct virtio_net_hdr_v1_hash_tunnel\nwithout zeroing it. For a non-tunnel skb, virtio_net_hdr_tnl_from_skb()\nonly initializes the first 10 bytes (sizeof(struct virtio_net_hdr)),\nleaving bytes 10..23 (num_buffers and the hash/tunnel fields) as stack\ngarbage.\n\nAn unprivileged user can set the vnet header size to 24 with\nTUNSETVNETHDRSZ, so __tun_vnet_hdr_put() copies all 24 bytes of the\npartially-initialized struct to userspace, leaking 14 bytes of kernel\nstack on every read of a non-tunnel packet.\n\nFix it the same way tun_get_user() already does by zeroing the whole\nheader right after declaration."
}
],
"providerMetadata": {
"dateUpdated": "2026-06-24T07:14:29.281Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5"
},
{
"url": "https://git.kernel.org/stable/c/585cb85e9a29185be05f326369573c2663cf4380"
},
{
"url": "https://git.kernel.org/stable/c/7f2fcff15e99bb852f6967396ed12b38376e2c8d"
}
],
"title": "tun: zero the whole vnet header in tun_put_user()",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2026-52940",
"datePublished": "2026-06-24T07:14:29.281Z",
"dateReserved": "2026-06-09T07:44:35.370Z",
"dateUpdated": "2026-06-24T07:14:29.281Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-52940",
"date": "2026-07-02",
"epss": "0.00154",
"percentile": "0.04975"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-52940\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-06-24T08:16:24.287\",\"lastModified\":\"2026-06-24T08:16:24.287\",\"vulnStatus\":\"Received\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\ntun: zero the whole vnet header in tun_put_user()\\n\\ntun_put_user() declares an on-stack struct virtio_net_hdr_v1_hash_tunnel\\nwithout zeroing it. For a non-tunnel skb, virtio_net_hdr_tnl_from_skb()\\nonly initializes the first 10 bytes (sizeof(struct virtio_net_hdr)),\\nleaving bytes 10..23 (num_buffers and the hash/tunnel fields) as stack\\ngarbage.\\n\\nAn unprivileged user can set the vnet header size to 24 with\\nTUNSETVNETHDRSZ, so __tun_vnet_hdr_put() copies all 24 bytes of the\\npartially-initialized struct to userspace, leaking 14 bytes of kernel\\nstack on every read of a non-tunnel packet.\\n\\nFix it the same way tun_get_user() already does by zeroing the whole\\nheader right after declaration.\"}],\"affected\":[{\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"affectedData\":[{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"unaffected\",\"programFiles\":[\"drivers/net/tun.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"288f30435132d2f9e7a29ec9b9745a4f9dc7fd37\",\"lessThan\":\"5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"288f30435132d2f9e7a29ec9b9745a4f9dc7fd37\",\"lessThan\":\"585cb85e9a29185be05f326369573c2663cf4380\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"288f30435132d2f9e7a29ec9b9745a4f9dc7fd37\",\"lessThan\":\"7f2fcff15e99bb852f6967396ed12b38376e2c8d\",\"versionType\":\"git\",\"status\":\"affected\"}]},{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"affected\",\"programFiles\":[\"drivers/net/tun.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"6.17\",\"status\":\"affected\"},{\"version\":\"0\",\"lessThan\":\"6.17\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.18.36\",\"lessThanOrEqual\":\"6.18.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.0.13\",\"lessThanOrEqual\":\"7.0.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.1\",\"lessThanOrEqual\":\"*\",\"versionType\":\"original_commit_for_fix\",\"status\":\"unaffected\"}]}]}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/585cb85e9a29185be05f326369573c2663cf4380\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/7f2fcff15e99bb852f6967396ed12b38376e2c8d\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
}
}
FKIE_CVE-2026-52940
Vulnerability from fkie_nvd - Published: 2026-06-24 08:16 - Updated: 2026-06-24 08:16| Vendor | Product | Version |
|---|
{
"affected": [
{
"affectedData": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"drivers/net/tun.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5",
"status": "affected",
"version": "288f30435132d2f9e7a29ec9b9745a4f9dc7fd37",
"versionType": "git"
},
{
"lessThan": "585cb85e9a29185be05f326369573c2663cf4380",
"status": "affected",
"version": "288f30435132d2f9e7a29ec9b9745a4f9dc7fd37",
"versionType": "git"
},
{
"lessThan": "7f2fcff15e99bb852f6967396ed12b38376e2c8d",
"status": "affected",
"version": "288f30435132d2f9e7a29ec9b9745a4f9dc7fd37",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"drivers/net/tun.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.17"
},
{
"lessThan": "6.17",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.18.*",
"status": "unaffected",
"version": "6.18.36",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.13",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntun: zero the whole vnet header in tun_put_user()\n\ntun_put_user() declares an on-stack struct virtio_net_hdr_v1_hash_tunnel\nwithout zeroing it. For a non-tunnel skb, virtio_net_hdr_tnl_from_skb()\nonly initializes the first 10 bytes (sizeof(struct virtio_net_hdr)),\nleaving bytes 10..23 (num_buffers and the hash/tunnel fields) as stack\ngarbage.\n\nAn unprivileged user can set the vnet header size to 24 with\nTUNSETVNETHDRSZ, so __tun_vnet_hdr_put() copies all 24 bytes of the\npartially-initialized struct to userspace, leaking 14 bytes of kernel\nstack on every read of a non-tunnel packet.\n\nFix it the same way tun_get_user() already does by zeroing the whole\nheader right after declaration."
}
],
"id": "CVE-2026-52940",
"lastModified": "2026-06-24T08:16:24.287",
"metrics": {},
"published": "2026-06-24T08:16:24.287",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/585cb85e9a29185be05f326369573c2663cf4380"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/7f2fcff15e99bb852f6967396ed12b38376e2c8d"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Received"
}
GHSA-7MF5-PGQ8-JHCP
Vulnerability from github – Published: 2026-06-24 09:30 – Updated: 2026-06-24 09:30In the Linux kernel, the following vulnerability has been resolved:
tun: zero the whole vnet header in tun_put_user()
tun_put_user() declares an on-stack struct virtio_net_hdr_v1_hash_tunnel without zeroing it. For a non-tunnel skb, virtio_net_hdr_tnl_from_skb() only initializes the first 10 bytes (sizeof(struct virtio_net_hdr)), leaving bytes 10..23 (num_buffers and the hash/tunnel fields) as stack garbage.
An unprivileged user can set the vnet header size to 24 with TUNSETVNETHDRSZ, so __tun_vnet_hdr_put() copies all 24 bytes of the partially-initialized struct to userspace, leaking 14 bytes of kernel stack on every read of a non-tunnel packet.
Fix it the same way tun_get_user() already does by zeroing the whole header right after declaration.
{
"affected": [],
"aliases": [
"CVE-2026-52940"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-06-24T08:16:24Z",
"severity": null
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\ntun: zero the whole vnet header in tun_put_user()\n\ntun_put_user() declares an on-stack struct virtio_net_hdr_v1_hash_tunnel\nwithout zeroing it. For a non-tunnel skb, virtio_net_hdr_tnl_from_skb()\nonly initializes the first 10 bytes (sizeof(struct virtio_net_hdr)),\nleaving bytes 10..23 (num_buffers and the hash/tunnel fields) as stack\ngarbage.\n\nAn unprivileged user can set the vnet header size to 24 with\nTUNSETVNETHDRSZ, so __tun_vnet_hdr_put() copies all 24 bytes of the\npartially-initialized struct to userspace, leaking 14 bytes of kernel\nstack on every read of a non-tunnel packet.\n\nFix it the same way tun_get_user() already does by zeroing the whole\nheader right after declaration.",
"id": "GHSA-7mf5-pgq8-jhcp",
"modified": "2026-06-24T09:30:49Z",
"published": "2026-06-24T09:30:49Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-52940"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/585cb85e9a29185be05f326369573c2663cf4380"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/5fd1fa5a4254bfdd70571c77f5e3bcb4e43738d5"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/7f2fcff15e99bb852f6967396ed12b38376e2c8d"
}
],
"schema_version": "1.4.0",
"severity": []
}
WID-SEC-W-2026-2056
Vulnerability from csaf_certbund - Published: 2026-06-23 22:00 - Updated: 2026-07-01 22:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial-of-Service-Angriff auszul\u00f6sen oder andere, nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-2056 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-2056.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-2056 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-2056"
},
{
"category": "external",
"summary": "Kernel CVE Announce Mailingliste",
"url": "https://lore.kernel.org/linux-cve-announce/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52914",
"url": "https://lore.kernel.org/linux-cve-announce/2026062428-CVE-2026-52914-f89a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52915",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52915-44dd@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52916",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52916-3619@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52917",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52917-d3b0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52918",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52918-42b9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52919",
"url": "https://lore.kernel.org/linux-cve-announce/2026062430-CVE-2026-52919-f17e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52920",
"url": "https://lore.kernel.org/linux-cve-announce/2026062430-CVE-2026-52920-22f8@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52921",
"url": "https://lore.kernel.org/linux-cve-announce/2026062430-CVE-2026-52921-0628@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52926",
"url": "https://lore.kernel.org/linux-cve-announce/2026062431-CVE-2026-52926-00d4@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52927",
"url": "https://lore.kernel.org/linux-cve-announce/2026062431-CVE-2026-52927-6d20@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52928",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52928-de38@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52929",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52929-63ee@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52930",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52930-9f00@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52931",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52931-f85c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52932",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52932-11a5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52933",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52933-815c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52934",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52934-ad11@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52935",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52935-7909@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52936",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52936-345e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52937",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52937-62eb@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52938",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52938-e793@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52939",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52939-b7cd@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52940",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52940-734c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52941",
"url": "https://lore.kernel.org/linux-cve-announce/2026062435-CVE-2026-52941-27a5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52942",
"url": "https://lore.kernel.org/linux-cve-announce/2026062435-CVE-2026-52942-2530@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52914",
"url": "https://lore.kernel.org/linux-cve-announce/2026062426-CVE-2026-52912-9506@gregkh"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52914",
"url": "https://lore.kernel.org/linux-cve-announce/2026062428-CVE-2026-52913-0d7b@gregkh"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8489-1 vom 2026-07-01",
"url": "https://ubuntu.com/security/notices/USN-8489-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8488-1 vom 2026-07-01",
"url": "https://ubuntu.com/security/notices/USN-8488-1"
}
],
"source_lang": "en-US",
"title": "Linux Kernel: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-07-01T22:00:00.000+00:00",
"generator": {
"date": "2026-07-02T09:06:05.773+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-2056",
"initial_release_date": "2026-06-23T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-06-23T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-06-24T22:00:00.000+00:00",
"number": "2",
"summary": "Referenz(en) aufgenommen: EUVD-2026-38704, EUVD-2026-38707, EUVD-2026-38708, EUVD-2026-38706, EUVD-2026-38712, EUVD-2026-38710, EUVD-2026-38711, EUVD-2026-38709"
},
{
"date": "2026-07-01T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Ubuntu aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source Linux Kernel",
"product": {
"name": "Open Source Linux Kernel",
"product_id": "T055755",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-52912",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52912"
},
{
"cve": "CVE-2026-52913",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52913"
},
{
"cve": "CVE-2026-52914",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52914"
},
{
"cve": "CVE-2026-52915",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52915"
},
{
"cve": "CVE-2026-52916",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52916"
},
{
"cve": "CVE-2026-52917",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52917"
},
{
"cve": "CVE-2026-52918",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52918"
},
{
"cve": "CVE-2026-52919",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52919"
},
{
"cve": "CVE-2026-52920",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52920"
},
{
"cve": "CVE-2026-52921",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52921"
},
{
"cve": "CVE-2026-52922",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52922"
},
{
"cve": "CVE-2026-52923",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52923"
},
{
"cve": "CVE-2026-52924",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52924"
},
{
"cve": "CVE-2026-52925",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52925"
},
{
"cve": "CVE-2026-52926",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52926"
},
{
"cve": "CVE-2026-52927",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52927"
},
{
"cve": "CVE-2026-52928",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52928"
},
{
"cve": "CVE-2026-52929",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52929"
},
{
"cve": "CVE-2026-52930",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52930"
},
{
"cve": "CVE-2026-52931",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52931"
},
{
"cve": "CVE-2026-52932",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52932"
},
{
"cve": "CVE-2026-52933",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52933"
},
{
"cve": "CVE-2026-52934",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52934"
},
{
"cve": "CVE-2026-52935",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52935"
},
{
"cve": "CVE-2026-52936",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52936"
},
{
"cve": "CVE-2026-52937",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52937"
},
{
"cve": "CVE-2026-52938",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52938"
},
{
"cve": "CVE-2026-52939",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52939"
},
{
"cve": "CVE-2026-52940",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52940"
},
{
"cve": "CVE-2026-52941",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52941"
},
{
"cve": "CVE-2026-52942",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52942"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.