ROOT-OS-UBUNTU-2404-CVE-2025-38407 CVE-2025-38407 in rootio-linux - Patched by Root

Root has patched CVE-2025-38407 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

MiracleLinux 9 : frr-8.3.1-11.el9_3.2.ML.1 (AXSA:2024-7478:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7478:02 advisory. ffr: Flowspec overflow in bgpd/bgpflowspec.c CVE-2023-38406 ffr: Out of bounds read in bgpd/bgplabel.c CVE-2023-38407 frr: crash from specially...

MiracleLinux 8 : frr-7.5.1-13.el8_9.3.ML.1 (AXSA:2024-7415:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7415:01 advisory. ffr: Flowspec overflow in bgpd/bgpflowspec.c CVE-2023-38406 ffr: Out of bounds read in bgpd/bgplabel.c CVE-2023-38407 frr: crash from specially...

MAL-2025-38407 Malicious code in vinegar-walnut-ly0w (npm)

The package vinegar-walnut-ly0w was found to contain malicious code...

BELL-CVE-2025-38407

Bulletin has no description...

CVE-2025-38407

creationtimestamp| type| source ---|---|--- 2025-07-25 13:50:07+00:00| seen| https://bsky.app/profile/potato.software/post/3lus6w5lgwb2u...

CVE-2025-38407 riscv: cpu_ops_sbi: Use static array for boot_data

In the Linux kernel, the following vulnerability has been resolved: riscv: cpuopssbi: Use static array for bootdata Since commit 6b9f29b81b15 "riscv: Enable pcpu page first chunk allocator", if NUMA is enabled, the page percpu allocator may be used on very sparse configurations, or when requested...

CVE-2025-38407 riscv: cpu_ops_sbi: Use static array for boot_data

In the Linux kernel, the following vulnerability has been resolved: riscv: cpuopssbi: Use static array for bootdata Since commit 6b9f29b81b15 "riscv: Enable pcpu page first chunk allocator", if NUMA is enabled, the page percpu allocator may be used on very sparse configurations, or when requested...

TencentOS Server 3: frr (TSSA-2024:0019)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0019 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Alibaba Cloud Linux 3 : 0086: frr (ALINUX3-SA-2024:0086)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0086 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-38406: bgpd/bgpflowspec.c in...

Linux Distros Unpatched Vulnerability : CVE-2023-38407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bgpd/bgplabel.c in FRRouting FRR before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing. CVE-2023-38407 Note that Nessus relies...

CVE-2024-38407

creationtimestamp| type| source ---|---|--- 2024-11-04 11:55:24+00:00| seen| https://t.me/cvedetector/9706...

CVE-2024-38407 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera

Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver...

CVE-2024-38407 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera

Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver...

SUSE: Security Advisory (SUSE-SU-2024:2245-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2024:2245-1 Security update for frr

This update for frr fixes the following issues: - CVE-2023-38406: Fixed nlri length of zero mishandling, aka 'flowspec overflow'. bsc1216900 - CVE-2023-47235: Fixed a crash on malformed BGP UPDATE message with an EOR, because the presence of EOR does not lead to a treat-as-withdraw outcome...

Ubuntu: Security Advisory (USN-6807-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6807-1: FRR vulnerabilities

It was discovered that FRR incorrectly handled certain network traffic. A remote attacker could possibly use this issue to cause FRR to crash, resulting in a denial of service. CVE-2022-26126, CVE-2022-26127, CVE-2022-26128, CVE-2022-26129, CVE-2022-37032, CVE-2022-37035, CVE-2023-31490,...

Ubuntu 20.04 LTS : FRR vulnerabilities (USN-6807-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6807-1 advisory. It was discovered that FRR incorrectly handled certain network traffic. A remote attacker could possibly use this issue to cause FRR to crash, resulting ...

Debian: Security Advisory (DLA-3797-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...