Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-52938 (GCVE-0-2026-52938)
Vulnerability from cvelistv5 – Published: 2026-06-24 07:14 – Updated: 2026-06-27 10:25| Vendor | Product | Version | |
|---|---|---|---|
| Linux | Linux |
Affected:
5d800f87d0a5ea1b156c47a4b9fd128479335153 , < 16af24fea29c209dea53595c99f6da9398548e1b
(git)
Affected: 5d800f87d0a5ea1b156c47a4b9fd128479335153 , < 375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7 (git) |
|
| Linux | Linux |
Affected:
7.0
Unaffected: 0 , < 7.0 (semver) Unaffected: 7.0.14 , ≤ 7.0.* (semver) Unaffected: 7.1 , ≤ * (original_commit_for_fix) |
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"net/core/bpf_sk_storage.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "16af24fea29c209dea53595c99f6da9398548e1b",
"status": "affected",
"version": "5d800f87d0a5ea1b156c47a4b9fd128479335153",
"versionType": "git"
},
{
"lessThan": "375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7",
"status": "affected",
"version": "5d800f87d0a5ea1b156c47a4b9fd128479335153",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"net/core/bpf_sk_storage.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "7.0"
},
{
"lessThan": "7.0",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.14",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.0.14",
"versionStartIncluding": "7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.1",
"versionStartIncluding": "7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths\n\nbpf_selem_unlink_nofail() sets SDATA(selem)-\u003esmap to NULL before\nremoving the selem from the storage hlist. A concurrent RCU reader in\nbpf_sk_storage_clone() can observe the selem still on the list with\nsmap already NULL, causing a NULL pointer dereference.\n\n general protection fault, probably for non-canonical address 0xdffffc000000000a:\n KASAN: null-ptr-deref in range [0x0000000000000050-0x0000000000000057]\n RIP: 0010:bpf_sk_storage_clone+0x1cd/0xaa0 net/core/bpf_sk_storage.c:174\n Call Trace:\n \u003cIRQ\u003e\n sk_clone+0xfed/0x1980 net/core/sock.c:2591\n inet_csk_clone_lock+0x30/0x760 net/ipv4/inet_connection_sock.c:1222\n tcp_create_openreq_child+0x35/0x2680 net/ipv4/tcp_minisocks.c:571\n tcp_v4_syn_recv_sock+0x123/0xf90 net/ipv4/tcp_ipv4.c:1729\n tcp_check_req+0x8e1/0x2580 include/net/tcp.h:855\n tcp_v4_rcv+0x1845/0x3b80 net/ipv4/tcp_ipv4.c:2347\n\nAdd a NULL check for smap in bpf_sk_storage_clone().\n\nbpf_sk_storage_diag_put_all() has the same issue. Add a NULL check\nand pass the validated smap directly to diag_get(), which is refactored\nto take smap as a parameter instead of reading it internally.\n\nbpf_sk_storage_diag_put() uses diag-\u003emaps[i] which is always valid\nunder its refcount, so diag-\u003emaps[i] is passed directly to diag_get()."
}
],
"providerMetadata": {
"dateUpdated": "2026-06-27T10:25:25.035Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/16af24fea29c209dea53595c99f6da9398548e1b"
},
{
"url": "https://git.kernel.org/stable/c/375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7"
}
],
"title": "bpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2026-52938",
"datePublished": "2026-06-24T07:14:27.952Z",
"dateReserved": "2026-06-09T07:44:35.370Z",
"dateUpdated": "2026-06-27T10:25:25.035Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-52938",
"date": "2026-07-02",
"epss": "0.00145",
"percentile": "0.04096"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-52938\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-06-24T08:16:24.073\",\"lastModified\":\"2026-06-27T11:16:29.680\",\"vulnStatus\":\"Received\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nbpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths\\n\\nbpf_selem_unlink_nofail() sets SDATA(selem)-\u003esmap to NULL before\\nremoving the selem from the storage hlist. A concurrent RCU reader in\\nbpf_sk_storage_clone() can observe the selem still on the list with\\nsmap already NULL, causing a NULL pointer dereference.\\n\\n general protection fault, probably for non-canonical address 0xdffffc000000000a:\\n KASAN: null-ptr-deref in range [0x0000000000000050-0x0000000000000057]\\n RIP: 0010:bpf_sk_storage_clone+0x1cd/0xaa0 net/core/bpf_sk_storage.c:174\\n Call Trace:\\n \u003cIRQ\u003e\\n sk_clone+0xfed/0x1980 net/core/sock.c:2591\\n inet_csk_clone_lock+0x30/0x760 net/ipv4/inet_connection_sock.c:1222\\n tcp_create_openreq_child+0x35/0x2680 net/ipv4/tcp_minisocks.c:571\\n tcp_v4_syn_recv_sock+0x123/0xf90 net/ipv4/tcp_ipv4.c:1729\\n tcp_check_req+0x8e1/0x2580 include/net/tcp.h:855\\n tcp_v4_rcv+0x1845/0x3b80 net/ipv4/tcp_ipv4.c:2347\\n\\nAdd a NULL check for smap in bpf_sk_storage_clone().\\n\\nbpf_sk_storage_diag_put_all() has the same issue. Add a NULL check\\nand pass the validated smap directly to diag_get(), which is refactored\\nto take smap as a parameter instead of reading it internally.\\n\\nbpf_sk_storage_diag_put() uses diag-\u003emaps[i] which is always valid\\nunder its refcount, so diag-\u003emaps[i] is passed directly to diag_get().\"}],\"affected\":[{\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"affectedData\":[{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"unaffected\",\"programFiles\":[\"net/core/bpf_sk_storage.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"5d800f87d0a5ea1b156c47a4b9fd128479335153\",\"lessThan\":\"16af24fea29c209dea53595c99f6da9398548e1b\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"5d800f87d0a5ea1b156c47a4b9fd128479335153\",\"lessThan\":\"375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7\",\"versionType\":\"git\",\"status\":\"affected\"}]},{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"affected\",\"programFiles\":[\"net/core/bpf_sk_storage.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"7.0\",\"status\":\"affected\"},{\"version\":\"0\",\"lessThan\":\"7.0\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.0.14\",\"lessThanOrEqual\":\"7.0.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.1\",\"lessThanOrEqual\":\"*\",\"versionType\":\"original_commit_for_fix\",\"status\":\"unaffected\"}]}]}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/16af24fea29c209dea53595c99f6da9398548e1b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
}
}
FKIE_CVE-2026-52938
Vulnerability from fkie_nvd - Published: 2026-06-24 08:16 - Updated: 2026-06-27 11:16| Vendor | Product | Version |
|---|
{
"affected": [
{
"affectedData": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"net/core/bpf_sk_storage.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "16af24fea29c209dea53595c99f6da9398548e1b",
"status": "affected",
"version": "5d800f87d0a5ea1b156c47a4b9fd128479335153",
"versionType": "git"
},
{
"lessThan": "375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7",
"status": "affected",
"version": "5d800f87d0a5ea1b156c47a4b9fd128479335153",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"net/core/bpf_sk_storage.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "7.0"
},
{
"lessThan": "7.0",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.14",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths\n\nbpf_selem_unlink_nofail() sets SDATA(selem)-\u003esmap to NULL before\nremoving the selem from the storage hlist. A concurrent RCU reader in\nbpf_sk_storage_clone() can observe the selem still on the list with\nsmap already NULL, causing a NULL pointer dereference.\n\n general protection fault, probably for non-canonical address 0xdffffc000000000a:\n KASAN: null-ptr-deref in range [0x0000000000000050-0x0000000000000057]\n RIP: 0010:bpf_sk_storage_clone+0x1cd/0xaa0 net/core/bpf_sk_storage.c:174\n Call Trace:\n \u003cIRQ\u003e\n sk_clone+0xfed/0x1980 net/core/sock.c:2591\n inet_csk_clone_lock+0x30/0x760 net/ipv4/inet_connection_sock.c:1222\n tcp_create_openreq_child+0x35/0x2680 net/ipv4/tcp_minisocks.c:571\n tcp_v4_syn_recv_sock+0x123/0xf90 net/ipv4/tcp_ipv4.c:1729\n tcp_check_req+0x8e1/0x2580 include/net/tcp.h:855\n tcp_v4_rcv+0x1845/0x3b80 net/ipv4/tcp_ipv4.c:2347\n\nAdd a NULL check for smap in bpf_sk_storage_clone().\n\nbpf_sk_storage_diag_put_all() has the same issue. Add a NULL check\nand pass the validated smap directly to diag_get(), which is refactored\nto take smap as a parameter instead of reading it internally.\n\nbpf_sk_storage_diag_put() uses diag-\u003emaps[i] which is always valid\nunder its refcount, so diag-\u003emaps[i] is passed directly to diag_get()."
}
],
"id": "CVE-2026-52938",
"lastModified": "2026-06-27T11:16:29.680",
"metrics": {},
"published": "2026-06-24T08:16:24.073",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/16af24fea29c209dea53595c99f6da9398548e1b"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Received"
}
GHSA-VGRC-X22Q-WC53
Vulnerability from github – Published: 2026-06-24 09:30 – Updated: 2026-06-27 12:30In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths
bpf_selem_unlink_nofail() sets SDATA(selem)->smap to NULL before removing the selem from the storage hlist. A concurrent RCU reader in bpf_sk_storage_clone() can observe the selem still on the list with smap already NULL, causing a NULL pointer dereference.
general protection fault, probably for non-canonical address 0xdffffc000000000a: KASAN: null-ptr-deref in range [0x0000000000000050-0x0000000000000057] RIP: 0010:bpf_sk_storage_clone+0x1cd/0xaa0 net/core/bpf_sk_storage.c:174 Call Trace: sk_clone+0xfed/0x1980 net/core/sock.c:2591 inet_csk_clone_lock+0x30/0x760 net/ipv4/inet_connection_sock.c:1222 tcp_create_openreq_child+0x35/0x2680 net/ipv4/tcp_minisocks.c:571 tcp_v4_syn_recv_sock+0x123/0xf90 net/ipv4/tcp_ipv4.c:1729 tcp_check_req+0x8e1/0x2580 include/net/tcp.h:855 tcp_v4_rcv+0x1845/0x3b80 net/ipv4/tcp_ipv4.c:2347
Add a NULL check for smap in bpf_sk_storage_clone().
bpf_sk_storage_diag_put_all() has the same issue. Add a NULL check and pass the validated smap directly to diag_get(), which is refactored to take smap as a parameter instead of reading it internally.
bpf_sk_storage_diag_put() uses diag->maps[i] which is always valid under its refcount, so diag->maps[i] is passed directly to diag_get().
{
"affected": [],
"aliases": [
"CVE-2026-52938"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-06-24T08:16:24Z",
"severity": null
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths\n\nbpf_selem_unlink_nofail() sets SDATA(selem)-\u003esmap to NULL before\nremoving the selem from the storage hlist. A concurrent RCU reader in\nbpf_sk_storage_clone() can observe the selem still on the list with\nsmap already NULL, causing a NULL pointer dereference.\n\n general protection fault, probably for non-canonical address 0xdffffc000000000a:\n KASAN: null-ptr-deref in range [0x0000000000000050-0x0000000000000057]\n RIP: 0010:bpf_sk_storage_clone+0x1cd/0xaa0 net/core/bpf_sk_storage.c:174\n Call Trace:\n \u003cIRQ\u003e\n sk_clone+0xfed/0x1980 net/core/sock.c:2591\n inet_csk_clone_lock+0x30/0x760 net/ipv4/inet_connection_sock.c:1222\n tcp_create_openreq_child+0x35/0x2680 net/ipv4/tcp_minisocks.c:571\n tcp_v4_syn_recv_sock+0x123/0xf90 net/ipv4/tcp_ipv4.c:1729\n tcp_check_req+0x8e1/0x2580 include/net/tcp.h:855\n tcp_v4_rcv+0x1845/0x3b80 net/ipv4/tcp_ipv4.c:2347\n\nAdd a NULL check for smap in bpf_sk_storage_clone().\n\nbpf_sk_storage_diag_put_all() has the same issue. Add a NULL check\nand pass the validated smap directly to diag_get(), which is refactored\nto take smap as a parameter instead of reading it internally.\n\nbpf_sk_storage_diag_put() uses diag-\u003emaps[i] which is always valid\nunder its refcount, so diag-\u003emaps[i] is passed directly to diag_get().",
"id": "GHSA-vgrc-x22q-wc53",
"modified": "2026-06-27T12:30:51Z",
"published": "2026-06-24T09:30:48Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-52938"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/16af24fea29c209dea53595c99f6da9398548e1b"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7"
}
],
"schema_version": "1.4.0",
"severity": []
}
WID-SEC-W-2026-2056
Vulnerability from csaf_certbund - Published: 2026-06-23 22:00 - Updated: 2026-07-01 22:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source Linux Kernel
Open Source
|
cpe:/o:linux:linux_kernel:-
|
— |
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial-of-Service-Angriff auszul\u00f6sen oder andere, nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-2056 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-2056.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-2056 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-2056"
},
{
"category": "external",
"summary": "Kernel CVE Announce Mailingliste",
"url": "https://lore.kernel.org/linux-cve-announce/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52914",
"url": "https://lore.kernel.org/linux-cve-announce/2026062428-CVE-2026-52914-f89a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52915",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52915-44dd@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52916",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52916-3619@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52917",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52917-d3b0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52918",
"url": "https://lore.kernel.org/linux-cve-announce/2026062429-CVE-2026-52918-42b9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52919",
"url": "https://lore.kernel.org/linux-cve-announce/2026062430-CVE-2026-52919-f17e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52920",
"url": "https://lore.kernel.org/linux-cve-announce/2026062430-CVE-2026-52920-22f8@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52921",
"url": "https://lore.kernel.org/linux-cve-announce/2026062430-CVE-2026-52921-0628@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52926",
"url": "https://lore.kernel.org/linux-cve-announce/2026062431-CVE-2026-52926-00d4@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52927",
"url": "https://lore.kernel.org/linux-cve-announce/2026062431-CVE-2026-52927-6d20@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52928",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52928-de38@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52929",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52929-63ee@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52930",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52930-9f00@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52931",
"url": "https://lore.kernel.org/linux-cve-announce/2026062432-CVE-2026-52931-f85c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52932",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52932-11a5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52933",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52933-815c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52934",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52934-ad11@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52935",
"url": "https://lore.kernel.org/linux-cve-announce/2026062433-CVE-2026-52935-7909@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52936",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52936-345e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52937",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52937-62eb@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52938",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52938-e793@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52939",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52939-b7cd@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52940",
"url": "https://lore.kernel.org/linux-cve-announce/2026062434-CVE-2026-52940-734c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52941",
"url": "https://lore.kernel.org/linux-cve-announce/2026062435-CVE-2026-52941-27a5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52942",
"url": "https://lore.kernel.org/linux-cve-announce/2026062435-CVE-2026-52942-2530@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52914",
"url": "https://lore.kernel.org/linux-cve-announce/2026062426-CVE-2026-52912-9506@gregkh"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-52914",
"url": "https://lore.kernel.org/linux-cve-announce/2026062428-CVE-2026-52913-0d7b@gregkh"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8489-1 vom 2026-07-01",
"url": "https://ubuntu.com/security/notices/USN-8489-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8488-1 vom 2026-07-01",
"url": "https://ubuntu.com/security/notices/USN-8488-1"
}
],
"source_lang": "en-US",
"title": "Linux Kernel: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-07-01T22:00:00.000+00:00",
"generator": {
"date": "2026-07-02T09:06:05.773+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-2056",
"initial_release_date": "2026-06-23T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-06-23T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-06-24T22:00:00.000+00:00",
"number": "2",
"summary": "Referenz(en) aufgenommen: EUVD-2026-38704, EUVD-2026-38707, EUVD-2026-38708, EUVD-2026-38706, EUVD-2026-38712, EUVD-2026-38710, EUVD-2026-38711, EUVD-2026-38709"
},
{
"date": "2026-07-01T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Ubuntu aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source Linux Kernel",
"product": {
"name": "Open Source Linux Kernel",
"product_id": "T055755",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-52912",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52912"
},
{
"cve": "CVE-2026-52913",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52913"
},
{
"cve": "CVE-2026-52914",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52914"
},
{
"cve": "CVE-2026-52915",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52915"
},
{
"cve": "CVE-2026-52916",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52916"
},
{
"cve": "CVE-2026-52917",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52917"
},
{
"cve": "CVE-2026-52918",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52918"
},
{
"cve": "CVE-2026-52919",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52919"
},
{
"cve": "CVE-2026-52920",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52920"
},
{
"cve": "CVE-2026-52921",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52921"
},
{
"cve": "CVE-2026-52922",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52922"
},
{
"cve": "CVE-2026-52923",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52923"
},
{
"cve": "CVE-2026-52924",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52924"
},
{
"cve": "CVE-2026-52925",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52925"
},
{
"cve": "CVE-2026-52926",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52926"
},
{
"cve": "CVE-2026-52927",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52927"
},
{
"cve": "CVE-2026-52928",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52928"
},
{
"cve": "CVE-2026-52929",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52929"
},
{
"cve": "CVE-2026-52930",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52930"
},
{
"cve": "CVE-2026-52931",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52931"
},
{
"cve": "CVE-2026-52932",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52932"
},
{
"cve": "CVE-2026-52933",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52933"
},
{
"cve": "CVE-2026-52934",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52934"
},
{
"cve": "CVE-2026-52935",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52935"
},
{
"cve": "CVE-2026-52936",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52936"
},
{
"cve": "CVE-2026-52937",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52937"
},
{
"cve": "CVE-2026-52938",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52938"
},
{
"cve": "CVE-2026-52939",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52939"
},
{
"cve": "CVE-2026-52940",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52940"
},
{
"cve": "CVE-2026-52941",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52941"
},
{
"cve": "CVE-2026-52942",
"product_status": {
"known_affected": [
"T000126",
"T055755"
]
},
"release_date": "2026-06-23T22:00:00.000+00:00",
"title": "CVE-2026-52942"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.