CVE-2026-46310— Linux kernel 安全漏洞
Possible ATT&CK Techniques 1AI
T1068 · Exploitation for Privilege EscalationAffected Version Matrix 8
| ベンダー | プロダクト | Version Range | ステータス |
|---|---|---|---|
| Linux | Linux | d06c1a9f348d22478c6bc5684f9c990e15ada1e9< bfb2081ba00afbbd15a5ed1ed1acdc3edeea5a98 | affected |
d06c1a9f348d22478c6bc5684f9c990e15ada1e9< c4bb1515b26663e5230603892e67f2cc7df9f0ca | affected | ||
d06c1a9f348d22478c6bc5684f9c990e15ada1e9< 58b1e9664d8f74d55d8411cc7a7b275a76a6f24f | affected | ||
6.17 | affected | ||
< 6.17 | unaffected | ||
6.18.32≤ 6.18.* | unaffected | ||
7.0.9≤ 7.0.* | unaffected | ||
7.1≤ * | unaffected |
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2026-46310の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
media: renesas: vsp1: Fix NULL pointer deref on module unload
ソース: NVD (National Vulnerability Database)
脆弱性説明
In the Linux kernel, the following vulnerability has been resolved: media: renesas: vsp1: Fix NULL pointer deref on module unload When unloading the module on gen 4, we hit a NULL pointer dereference. This is caused by the cleanup code calling vsp1_drm_cleanup() where it should be calling vsp1_vspx_cleanup(). Fix this by checking the IP version and calling the drm or vspx function accordingly, the same way as the init code does.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Linux kernel 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于media renesas vsp1模块卸载时空指针取消引用,可能导致空指针取消引用。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
II. CVE-2026-46310の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2026-46310のインテリジェンス情報
请登录查看更多情报信息。
CVE-2026-46310 补丁与修复 (3)
Same Patch Batch · Linux · 2026-06-08 · 41 CVEs total
| CVE-2026-46289 | 9.8 CRITICAL | lib/scatterlist: fix length calculations in extract_kvec_to_sg |
| CVE-2026-46288 | 8.4 HIGH | of: unittest: fix use-after-free in of_unittest_changeset() |
| CVE-2026-46307 | 8.3 HIGH | wifi: ath5k: do not access array OOB |
| CVE-2026-46303 | 8.2 HIGH | isofs: validate Rock Ridge CE continuation extent against volume size |
| CVE-2026-46277 | 7.8 HIGH | mm/zone_device: do not touch device folio after calling ->folio_free() |
| CVE-2026-46280 | 7.8 HIGH | lib: test_hmm: evict device pages on file close to avoid use-after-free |
| CVE-2026-46275 | 7.8 HIGH | Bluetooth: hci_uart: fix UAFs and race conditions in close and init paths |
| CVE-2026-46311 | 7.8 HIGH | drm/amdgpu/userq: fix access to stale wptr mapping |
| CVE-2026-46274 | 7.8 HIGH | io-wq: check that the predecessor is hashed in io_wq_remove_pending() |
| CVE-2026-46306 | 7.5 HIGH | flow_dissector: do not dissect PPPoE PFC frames |
| CVE-2026-46304 | 7.5 HIGH | nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free |
| CVE-2026-46299 | 7.0 HIGH | hfsplus: fix held lock freed on hfsplus_fill_super() |
| CVE-2026-46279 | mm/alloc_tag: clear codetag for pages allocated before page_ext initialization | |
| CVE-2026-46287 | net: txgbe: fix RTNL assertion warning when remove module | |
| CVE-2026-46286 | leds: qcom-lpg: Check for array overflow when selecting the high resolution | |
| CVE-2026-46285 | mtd: docg3: fix use-after-free in docg3_release() | |
| CVE-2026-46284 | mm/hugetlb: fix early boot crash on parameters without '=' separator | |
| CVE-2026-46283 | tpm: Use kfree_sensitive() to free auth session in tpm_dev_release() | |
| CVE-2026-46282 | iio: frequency: admv1013: fix NULL pointer dereference on str | |
| CVE-2026-46281 | vmalloc: fix buffer overflow in vrealloc_node_align() |
Showing 20 of 41 CVEs. View all on vendor page →
IV. 関連脆弱性
同じ製品: Linux
- CVE-2026-53277
KVM: arm64: Take the SRCU lock for page table walks in fault - CVE-2026-53276
Bluetooth: ISO: Fix a use-after-free of the hci_conn pointer - CVE-2026-53275
ipv6: mcast: Fix use-after-free when processing MLD queries - CVE-2026-53274
net/smc: fix sleep-inside-lock in __smc_setsockopt() causing - CVE-2026-53273
tee: optee: prevent use-after-free when the client exits bef
同じベンダー: Linux
- CVE-2026-53277
KVM: arm64: Take the SRCU lock for page table walks in fault - CVE-2026-53276
Bluetooth: ISO: Fix a use-after-free of the hci_conn pointer - CVE-2026-53275
ipv6: mcast: Fix use-after-free when processing MLD queries - CVE-2026-53274
net/smc: fix sleep-inside-lock in __smc_setsockopt() causing - CVE-2026-53273
tee: optee: prevent use-after-free when the client exits bef
V. CVE-2026-46310へのコメント
まだコメントはありません