Autor: Peter Leibling

[UPDATE] [hoch] Red Hat Enterprise Linux (freeipmi): Schwachstelle ermöglicht Codeausführung

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux ausnutzen, um einen Denial-of-Service-Zustand zu verursachen oder eine Speicherbeschädigung zu erreichen, wodurch möglicherweise die Ausführung von beliebigem Code ermöglicht wird.

CVE-2025-71273 wifi: rtw88: Use devm_kmemdup() in rtw_set_supported_band()

Information published.

CVE-2026-43274 mailbox: mchp-ipc-sbi: fix out-of-bounds access in mchp_ipc_get_cluster_aggr_irq()

Information published.

CVE-2026-43153 xfs: remove xfs_attr_leaf_hasname

Information published.

CVE-2026-43116 netfilter: ctnetlink: ensure safe access to master conntrack

Information published.

CVE-2025-71289 fs/ntfs3: handle attr_set_size() errors when truncating files

Information published.

Chromium: CVE-2026-7903 Integer overflow in ANGLE

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026 ) for more information.

Chromium: CVE-2026-7917 Use after free in Fullscreen

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026 ) for more information.

Chromium: CVE-2026-7922 Use after free in ServiceWorker

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026 ) for more information.

CVE-2026-26164 M365 Copilot Information Disclosure Vulnerability

Improper neutralization of special elements in output used by a downstream component (‚injection‘) in M365 Copilot allows an unauthorized attacker to disclose information over a network.

©  2026 Leibling.de. Erstellt mit WordPress und dem Highlight Theme