These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-46333 is a Linux kernel access-control issue in ptrace-related dumpability checks. The fix changes how the kernel decides access for tasks that no longer have an mm, so the ptrace path behaves more consistently for threads without a memory image, including kernel threads.
CVE-2022-50943 is an unauthenticated cross-site scripting issue reported in Moodle LMS 4.0. According to the CVE description and NVD metadata, malicious input submitted through the search parameter in course/search.php can be processed as script, enabling arbitrary JavaScript execution in a victim's browser and potential session-cookie theft. The NVD record classifies the weakness as CWE-79 and rates it M [truncated]
CVE-2026-43473 affects the Linux kernel mpi3mr SCSI driver cleanup path. According to the supplied record, if reply or request queue creation failed and memory was freed first, the driver could still try to reset or memset that queue state during cleanup. That could crash the system. The fix adds NULL checks before accessing the reply/request queue memory.
CVE-2026-43385 describes a Linux kernel networking issue where threaded busypoll can prevent rcu_tasks from making progress, leading to stalls and hangs. The supplied report says the problem can show up as delayed or stuck rcu_tasks grace periods and task stall warnings, with user-space tooling such as bpftrace hanging on startup. The available corpus indicates the issue is fixed by kernel changes referen [truncated]
CVE-2026-43384 is a critical Linux kernel vulnerability in the TCP Authentication Option (TCP-AO) path. The fix changes MAC comparison to a constant-time helper to prevent timing attacks. In practical terms, an attacker able to exercise the affected network path could potentially learn information from data-dependent comparison timing. The supplied record rates the issue CVSS 9.8 (Critical).
CVE-2026-43383 is a Linux kernel networking issue in net/tcp-md5 where MAC values were compared in a way that could leak information through timing differences. The published fix switches to a constant-time comparison helper to reduce timing-attack risk. NVD rates the issue Critical with a network-reachable CVSS vector.
CVE-2026-43379 is a critical Linux kernel memory-safety flaw in ksmbd, the in-kernel SMB server. The issue is a use-after-free in smb_lazy_parent_lease_break_close() caused by accessing an opinfo pointer after leaving the RCU read-side critical section. NVD rates the issue CVSS 3.1 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), so organizations should treat it as urgent and patch affected kernels as soon as f [truncated]
CVE-2026-43377 is a high-severity Linux kernel ksmbd issue where debug authentication logging can leak sensitive SMB3 key material into logs. According to the CVE description, the affected functions logged session, signing, encryption, and decryption key bytes when KSMBD_DEBUG_AUTH was enabled; the fix removes those logs. Because the exposure is in authentication and encryption material, any environment w [truncated]
CVE-2026-43376 is a critical Linux kernel vulnerability in ksmbd where oplock_info could be freed immediately with kfree() even though it is still accessed in RCU read-side sections. That creates a use-after-free risk, including in opinfo_get() and proc_show_files(). The published fix switches to deferred reclamation with call_rcu(), allowing a grace period before memory is released. This CVE was publishe [truncated]
CVE-2026-43374 is a Linux kernel networking flaw in nexthop group removal where percpu stats for a removed entry could be freed before the caller's synchronize_net() grace period completed. RCU readers that still see the old group can then dereference freed memory through nh_grp_entry_stats_inc(), making this a high-impact local kernel memory-safety issue.
CVE-2026-43373 is a Linux kernel NCSI issue where certain error-return paths fail to free received skb buffers. The result is a kernel memory leak that can be triggered through network handling paths, with availability impact reflected in the HIGH CVSS score.
CVE-2026-43370 is a Linux kernel vulnerability in the AMDGPU DRM path. The published description says a non-atomic vm->process_info assignment allowed a race when parent and child processes sharing the same drm_file both tried to acquire the same VM after fork(). The fix replaces that assignment with cmpxchg() to make acquisition atomic and prevent the use-after-free condition. NVD classifies the issue as [truncated]
CVE-2026-43368 is a HIGH-severity Linux kernel drm/i915 issue in the GEM shmem scatterlist population path. For objects 4 GB or larger, an unsigned int scatterlist length can overflow when folio-backed pages are accumulated into a single entry, which can make users of the object hit an unexpected early end of the backing pages. The described fix is to cap the byte length of any single scatterlist entry so [truncated]
CVE-2026-43366 is a Linux kernel io_uring/kbuf vulnerability in the legacy buffer recycle path. The reported gap is between the time a buffer is grabbed and the later recycle step: if the list becomes empty in that window, it may be upgraded to a ring-provided type, including when the request is forced through io-wq. The vulnerable recycling logic did not verify that the buffer_list still existed or that [truncated]
CVE-2026-43365 is a Linux kernel XFS issue where an undersized in-core log roundoff value can be set when the superblock does not list a log stripe unit. The supplied record says this can corrupt logs and leave filesystems unmountable, especially when a filesystem is created or tested on media with 4k physical sectors. NVD rates the issue 8.2 HIGH.
CVE-2026-43362 is a Linux kernel SMB client integrity issue that can corrupt file contents when an SMB2 write is retried after a replayable error. The supplied record says SMB2_write() stores payload data in rq_iov, smb3_init_transform_rq() pointer-shares that buffer, and crypt_message() encrypts iov[1] in place. If the client retries the request, it may resend ciphertext instead of the original plaintext [truncated]
CVE-2026-43353 describes a race condition in the Linux kernel's mipi-i3c-hci DMA dequeue path. If multiple transfers time out around the same time, concurrent calls into hci_dma_dequeue_xfer() can interfere with one another while stopping, processing, and restarting the DMA ring. The result is an availability and reliability issue for systems using the affected I3C host controller interface path. The publ [truncated]
CVE-2026-43352 is a high-severity Linux kernel flaw in the i3c:mipi-i3c-hci DMA dequeue abort path. The issue can leave ring-abort handling in an inconsistent state, including incorrect completion waiting and unintended controller state resets; the published fix corrects these behaviors and treats an already-stopped ring as successful.
CVE-2026-43336 concerns a Linux kernel ChaCha implementation cleanup issue: a local stack variable named permuted_state was left intact after permutation, and because the permutation is invertible, the original state—and therefore key material—could be reconstructed from that temporary if stack contents were exposed. The fix explicitly zeroizes the buffer before it leaves scope to reduce residual secret m [truncated]
CVE-2026-43334 is a Linux kernel Bluetooth SMP flaw in which the responder could build a pairing response before fully enforcing its local high-security MITM requirement. That mismatch could let later pairing-method selection follow a weaker path than intended, until the response is corrected to carry the MITM bit consistently.
CVE-2026-43332 affects the Linux kernel thermal subsystem. The vulnerability is an error-path lifecycle bug in thermal_zone_device_register_with_trips(): if registration fails after a thermal zone device has already been registered, the code may skip the same completion wait used during normal unregistration. That can allow the thermal zone object to be freed prematurely when user space has taken a kobjec [truncated]
CVE-2026-43330 is a Linux kernel vulnerability in the CAAM crypto path that affects handling of long HMAC keys. According to the published description, when a key longer than the block size is supplied, the code copies it and then hashes it into the real key. The copy buffer must be rounded to DMA cache alignment; otherwise the hashed key can corrupt neighboring memory. The issue is caused by using kmemdu [truncated]
CVE-2026-43329 is a Linux kernel netfilter flowtable vulnerability involving insufficient validation of the number of hardware offload actions. The issue is most relevant to IPv6 setups, where a single flow can require more actions than the previous limit allowed, especially when combining ethernet mangling, SNAT, DNAT, double VLAN/QinQ handling, redirect, and tunnel-related actions. The fix tightens the [truncated]
CVE-2026-43324 describes a Linux kernel dummy-hcd synchronization bug in the USB gadget emulation path. The issue is that the emulated synchronize_irq() logic could run before emulated interrupts were actually disabled, which left a race window where callbacks might still execute while the gadget driver was being unbound. The fix moves the synchronization step to the dummy_udc_async_callbacks() path so it [truncated]
CVE-2026-43322 is a Linux kernel Bluetooth memory-safety issue in hci_sync. The supplied record shows a use-after-free in le_read_features_complete involving hci_conn lifetime handling, with NVD rating the issue 8.8 High and an adjacent attack vector. Kernel.org stable references indicate the flaw has been fixed upstream and backported in stable trees.
CVE-2026-43321 is a Linux kernel BPF verifier bug in indirect-jump live-register tracking. The issue was resolved by ensuring the target register in a `gotox rX` instruction is marked as used during `compute_insn_live_regs()`. Because the flaw affects kernel-level BPF analysis and carries a CVSS 7.8 High rating, it should be treated as a priority kernel security fix.
CVE-2026-43307 is a Linux kernel vulnerability in the ADXL380 accelerometer IIO driver. The interrupt handler may read FIFO entries in batches based on the number of enabled scan elements, but the sensor fills FIFO one sample at a time. When the FIFO status count is not a multiple of the enabled scan count, the driver can attempt to read more entries than are actually present. The fix rounds the count dow [truncated]
CVE-2026-43304 affects the Linux kernel's libceph path for decoding authentication key material. The fix adds an explicit CEPH_MAX_KEY_LEN check so decoded key data must fit the fixed-size buffer used by process_auth_done(), replacing a weaker check that only rejected empty key material. NVD rates the issue Critical (CVSS 9.8) with network access, no privileges, and no user interaction.
CVE-2026-43303 is a Linux kernel memory-management flaw in how freed pages are reset before reuse. According to the published fix description, some subsystems may leave page->private set when pages are freed; if those pages are later reallocated as higher-order pages and split, tail pages can retain stale page->private data. The swap subsystem assumes a newly allocated page has page->private == 0, so the [truncated]
CVE-2026-43296 is a Linux kernel availability issue in octeontx2-af on OcteonTX2-related networking paths. The published workaround disables SQM sticky operation, blocks a sticky-to-non-sticky transition that can deadlock PSE, and keeps a control-flow clock enabled to prevent credit drops. On affected systems, the bug can surface as transmit stalls, deadlock-like behavior, or loss of forward progress unde [truncated]
CVE-2026-43291 affects the Linux kernel NFC NCI stack. A prior change intended to prevent access to uninitialized packet data instead treated some variable-length packet payloads as if they had a fixed maximum size, which can break communication with NCI NFC chips. The CVE record and NVD metadata classify this as high severity and list multiple kernel.org stable references for the fix.
CVE-2026-43290 is a Linux kernel media/uvcvideo bug in the start_streaming() failure path. According to the CVE description, queued buffers were not returned when streaming failed to start because uvc_pm_get() returned an error, and the issue may surface as a vb2_start_streaming warning during webcam/video-capture workloads. The record was published on 2026-05-08 and modified on 2026-05-11. NVD assigns a [truncated]
CVE-2025-48384 is a Git link following vulnerability that CISA added to the Known Exploited Vulnerabilities catalog on 2025-08-25, with a remediation due date of 2025-09-15. Because the supplied corpus is limited to KEV metadata and official links, this debrief cannot confirm the exact exploitation path or impact details. The safe takeaway is straightforward: treat this as an actively exploited Git issue, [truncated]
CVE-2023-29007 is a Git configuration-injection vulnerability that CISA and ABB associate with ABB M2M Gateway ARM600 and ABB M2M Gateway SW. The advisory published on 2025-04-07 says a specially crafted .gitmodules file with submodule URLs longer than 1024 characters can trigger a bug in git_config_copy_or_rename_section_in_file(), potentially injecting arbitrary settings into $GIT_DIR/config when removi [truncated]
CVE-2023-25652 is an ABB M2M Gateway / ARM600 issue disclosed by CISA on 2025-04-07. The advisory says a specially crafted input submitted by an authenticated attacker to `git apply --reject` can overwrite a path outside the working tree with partially controlled contents, creating a potential route to arbitrary code execution. The affected scope in the source advisory covers ARM600 firmware versions 4.1. [truncated]
CISA published an advisory on 2025-04-07 for ABB M2M Gateway ARM600 and ABB M2M Gateway SW. The supplied corpus ties CVE-2022-41903 to a heap-overflow condition that could lead to remote code execution if an authenticated attacker can exploit it. The advisory’s practical guidance is focused on reducing exposure: keep the system off the public internet where possible, limit access to VPN-only paths, use DM [truncated]
CISA’s 2025 advisory for CVE-2022-23521 ties the issue to ABB M2M Gateway ARM600 and ABB M2M Gateway SW, while the vulnerability description states it arises from Git attributes parsing and could enable integer overflow leading to code execution or denial of service. For defenders, the practical takeaway is to verify exposure of the listed ABB products, apply the vendor guidance in the advisory, and reduc [truncated]