Lucene search
+L

33 matches found

SUSE CVE
SUSE CVE
added 2025/03/01 2:52 a.m.6 views

SUSE CVE-2025-21808

In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode Device-bound programs are used to support RX metadata kfuncs. These kfuncs are driver-specific and rely on the driver context to read the metadata. This means the...

5.5CVSS7.5AI score0.00181EPSS
Exploits0References15
NVD
NVD
added 2025/02/27 8:16 p.m.17 views

CVE-2025-21808

In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode Device-bound programs are used to support RX metadata kfuncs. These kfuncs are driver-specific and rely on the driver context to read the metadata. This means the...

5.5CVSS0.00181EPSS
Exploits0References4
OSV
OSV
added 2025/02/27 8:16 p.m.4 views

DEBIAN-CVE-2025-21808

In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode Device-bound programs are used to support RX metadata kfuncs. These kfuncs are driver-specific and rely on the driver context to read the metadata. This means the...

5.5CVSS5.7AI score0.00181EPSS
Exploits0References1
OSV
OSV
added 2025/02/27 8:16 p.m.12 views

UBUNTU-CVE-2025-21808

In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode Device-bound programs are used to support RX metadata kfuncs. These kfuncs are driver-specific and rely on the driver context to read the metadata. This means the...

5.5CVSS6.5AI score0.00181EPSS
Exploits0References19
Cvelist
Cvelist
added 2025/02/27 8:1 p.m.17 views

CVE-2025-21808 net: xdp: Disallow attaching device-bound programs in generic mode

In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode Device-bound programs are used to support RX metadata kfuncs. These kfuncs are driver-specific and rely on the driver context to read the metadata. This means the...

0.00181EPSS
Exploits0References4
CVE
CVE
added 2025/02/27 8:1 p.m.127 views

CVE-2025-21808

CVE-2025-21808: Linux kernel vulnerability in net: xdp where device-bound programs could be attached in generic mode, causing metadata kfuncs to run in an invalid context and crash. The fix adds a guard to disallow attaching device-bound programs in generic XDP mode, preventing invalid-context ex...

5.5CVSS6.3AI score0.00181EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2025/02/27 8:1 p.m.8 views

CVE-2025-21808

In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode Device-bound programs are used to support RX metadata kfuncs. These kfuncs are driver-specific and rely on the driver context to read the metadata. This means the...

5.5CVSS5.7AI score0.00181EPSS
Exploits0
OSV
OSV
added 2025/02/27 8:1 p.m.9 views

CVE-2025-21808 net: xdp: Disallow attaching device-bound programs in generic mode

In the Linux kernel, the following vulnerability has been resolved: net: xdp: Disallow attaching device-bound programs in generic mode Device-bound programs are used to support RX metadata kfuncs. These kfuncs are driver-specific and rely on the driver context to read the metadata. This means the...

5.5CVSS6AI score0.00181EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/02/27 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not disabling the attachment of a device-bound program in general-purpose mode, which could lead to a crash...

5.5CVSS6.4AI score0.00181EPSS
Exploits0References6
The Hacker News
The Hacker News
added 2024/08/01 9:49 a.m.18 views

Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware

Google has announced that it's adding a new layer of protection to its Chrome browser through what's called app-bound encryption to prevent information-stealing malware from grabbing cookies on Windows systems. "On Windows, Chrome uses the Data Protection API DPAPI which protects the data at rest...

7.8AI score
Exploits0
OSV
OSV
added 2024/05/17 1:15 p.m.6 views

AZL-57802 CVE-2024-35790 affecting package kernel for versions less than 5.15.184.1-1

In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group The DisplayPort driver's sysfs nodes may be present to the userspace before typecaltmodesetdrvdata completes in dpaltmodeprobe. This...

5.5CVSS6.8AI score0.00225EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2024/04/03 7:44 p.m.19 views

Google Chrome gets ‘Device Bound Session Credentials’ to stop cookie theft

Google has announced the introduction of Device Bound Session Credentials DBSC to secure Chrome users against cookie theft. In January we reported how hackers found a way to gain unauthorized access to Google accounts, bypassing multi-factor authentication MFA, by stealing authentication cookies...

7.4AI score
Exploits0
Talos Blog
Talos Blog
added 2023/07/25 11:59 a.m.16 views

What might authentication attacks look like in a phishing-resistant future?

By Thorsten Rosendahl and Tiago Pereira, with contributions from Matthew Miller. The industry has come a long way in terms of improving how we make user authentication more secure. From the most basic concept of relying on usernames and passwords for authentication to enabling multi-factor...

7.3AI score
Exploits0
Rows per page
Query Builder