CVE-2026-23271
In the Linux kernel, the following vulnerability has been resolved: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race M
CVSS
7.8
Alto
EPSS
0.1%
p1
KEV
—
Exploit Today
0
0-100
Publicado: 20 mar 2026 · Última mod.: 14 jul 2026 · CWE-362
0.1%EPSS · 30 días0.1%
2026-06-302026-07-16
In the Linux kernel, the following vulnerability has been resolved: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race Make sure that __perf_event_overflow() runs with IRQs disabled for all possible callchains. Specifically the software events can end up running it with only preemption disabled. This opens up a race vs perf_event_exit_event() and friends that will go and free various things the overflow path expects to be present, like the BPF program.
- git.kernel.orghttps://git.kernel.org/stable/c/3f89b61dd504c5b6711de9759e053b082f9abf12
- git.kernel.orghttps://git.kernel.org/stable/c/4df1a45819e50993cb351682a6ae8e7ed2d233a0
- git.kernel.orghttps://git.kernel.org/stable/c/4f8d5812337871227bb2c98669a87c306a2f86ef
- git.kernel.orghttps://git.kernel.org/stable/c/5c48fdc4b4623533d86e279f51531a7ba212eb87
- git.kernel.orghttps://git.kernel.org/stable/c/bb190628fe5f2a73ba762a9972ba16c5e895f73e
- git.kernel.orghttps://git.kernel.org/stable/c/c9bc1753b3cc41d0e01fbca7f035258b5f4db0ae
- cert-portal.siemens.comhttps://cert-portal.siemens.com/productcert/html/ssa-019113.html
- cert-portal.siemens.comhttps://cert-portal.siemens.com/productcert/html/ssa-082556.html
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2022-250908.1 ALT95.4%
——29Printix Secure Cloud Print Management through 1.3.1106.0 creates a temporary temp.ini file in a directory with insecure permissions, leading to privilege escalation because of a race condition.8dCVE-2026-506677.8 ALT80.1%
——24Concurrent execution using shared resource with improper synchronization ('race condition') in Windows NTFS allows an authorized attacker to elevate privileges locally.22hCVE-2026-59477.5 ALT69.1%
——21Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. If, during that validation, the "recursive-clients" limit is reached (as would occur during a query flood), and that same DNS message is discarded per the limit, there is a brief window of time while the SIG(0) validation may attempt to read the now-discarded DNS message.
This issue affects BIND 9 versions 9.20.0 through 9.20.22, 9.21.0 through 9.21.21, and 9.20.9-S1 through 9.20.22-S1.
BIND 9 versions 9.18.28 through 9.18.49 and 9.18.28-S1 through 9.18.49-S1 are NOT affected.2dCVE-2026-561889.8 CRÍ58.8%
——18Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Server Network driver allows an unauthorized attacker to execute code over a network.2dCVE-2026-503698.8 ALT47.1%
——14Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges over a network.2dCVE-2026-566495.9 MED46.6%
——14Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Network File System allows an unauthorized attacker to execute code over a network.2d