32 matches found
CVE-2026-42285
A flaw was found in GoBGP 4.4.0. A crafted BGP UPDATE with inconsistent attribute lengths mishandles the withdraw state transition in AdjRib.Update, causing a nil pointer dereference and full process crash. Fixed in GoBGP 4.5.0. Mitigation Upgrade to GoBGP 4.5.0 or later...
Linux Distros Unpatched Vulnerability : CVE-2026-42285
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GoBGP is an open source Border Gateway Protocol BGP implementation in the Go Programming Language. In version 4.4.0, an unauthenticated remote BGP peer can...
CVE-2026-42285
creationtimestamp| type| source ---|---|--- 2026-05-07 14:42:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlbh7mgfrb2k 2026-05-07 19:00:29+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlbvmgeszn2n...
UBUNTU-CVE-2026-42285
GoBGP is an open source Border Gateway Protocol BGP implementation in the Go Programming Language. In version 4.4.0, an unauthenticated remote BGP peer can trigger a fatal panic in GoBGP by sending a specially crafted BGP UPDATE message. When the server receives a message with inconsistent...
EUVD-2025-42285
Malicious code in qori-kue29-sukiwir npm...
CVE-2022-42285
DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization PEIphase, where a privileged user can disable SPI flash protection, which may lead to denial of service, escalation of privileges, or data tampering...
Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2025-084 (ALASKERNEL-5.10-2025-084)
The version of kernel installed on the remote host is prior to 5.10.224-212.876. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2025-084 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Bad drive in topology...
Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-095 (ALASKERNEL-5.4-2025-095)
The version of kernel installed on the remote host is prior to 5.4.282-194.378. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-095 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: use timestamp to...
Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-864)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-864 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Bad drive in topology results kernel crash CVE-2023-53037 In the Linux kernel, the following vulnerability has...
Amazon Linux 2 : kernel, --advisory ALAS2-2025-2777 (ALAS-2025-2777)
The version of kernel installed on the remote host is prior to 4.14.353-270.569. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2777 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: avoid overflows in dirty throttling logic...
Amazon Linux AMI : kernel (ALAS-2025-1962)
The version of kernel installed on the remote host is prior to 4.14.353-190.569. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1962 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: Return non-zero value from tipcudpaddr2st...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tipc: Return non-zero value from tipcudpaddr2str on error CVE-2024-42284 In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix a use-after-free related to destroying CM IDs...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tipc: Return non-zero value from tipcudpaddr2str on error CVE-2024-42284 In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix a use-after-free related to destroying CM IDs...
Linux Distros Unpatched Vulnerability : CVE-2024-42285
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RDMA/iwcm: Fix a use-after-free related to destroying CM IDs iwconnreqhandler associates a new struct rdmaidprivate connid with an existing struct iwcmid cmid a...
Azure Linux 3.0 Security Update: kernel (CVE-2024-42285)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42285 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix a use-after-free related ...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2929)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-42285)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42285 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix a use-after-free related ...
CVE-2024-42285 affecting package kernel for versions less than 5.15.167.1-1
CVE-2024-42285 affecting package kernel for versions less than 5.15.167.1-1. An upgraded version of the package is available that resolves this issue...
SUSE SLES12: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2024:3189-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3189-1 advisory. The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...
Photon OS 4.0: Linux PHSA-2024-4.0-0677
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0677. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...