578 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-53247
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: ethernet: mtkethsoc: Fix use-after-free in metadata dst teardown mtkfreedev calls metadatadstfree which frees the metadatadst with kfree immediately,...
net: ethernet: mtk_eth_soc: Fix use-after-free in metadata dst teardown
...
CVE-2026-53247 net: ethernet: mtk_eth_soc: Fix use-after-free in metadata dst teardown
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: Fix use-after-free in metadata dst teardown mtkfreedev calls metadatadstfree which frees the metadatadst with kfree immediately, bypassing the RCU grace period. In the RX path, skbdstsetnoref sets a...
CVE-2026-53229 net/mlx5e: xsk: Fix DMA and xdp_frame leak on XDP_TX xmit failure
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdpframe leak on XDPTX xmit failure In the XSK branch of mlx5exmitxdpbuff, when sq-xmitxdpframe returns false e.g. XDPSQ is full, the function returns without unmapping the DMA address or freeing the...
Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: netcp: We have standardized the knavdmaopenchannel function to return NULL on error. The function now consistently returns NULL on error, instead of ERRPTR. Currently, the header include/linux/soc/ti/knavdma.h...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: BUG: NULL pointer dereference in the kernel, address: 0000000000000038 RIP efxnicupdatestats Abridged calltrace: efxef10updatestatspf, efxnetstats, devgetstats, devseqprintfstats The issue occurs when trying to retrieve the lates...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fixed NULL pointer dereferencing in ethgetdrvinfo The commit ec35c1969650 “usb: gadget: fncm: Fixed netdevice lifecycle handling with devicemove“” re-parents the gadget device to /sys/devices/virtual during...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fixed an out-of-bound memcpy call during ethtool -w When retrieving the FW core dump using ethtool, memory corruption can sometimes occur. BUG: KFENCE: Memory corruption in bnxtgetcoredump+0x3ef/0x670 bnxten Corrupted...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15
A flaw was discovered after the free function in the Linux kernel’s Xircom 16-bit PCMCIA PC-card Ethernet driver. A local user could exploit this flaw to crash the system or potentially escalate their privileges on the system...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Networks: Ethernet: mtkppe: Avoid NULL dereferencing when gmac0 is disabled. If gmac0 is disabled, the precheck for a valid ingress device will cause a NULL pointer dereferencing, leading to a system crash. This occurs because...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Add a wrapper around the mlx5etxreporterdumpsq function to extract the SQ value from the struct mlx5etxtimeoutctx structure and set it as the dump callback for the TX-timeout-recovery flow. The mlx5etxreporterdumpsq...
CVE-2026-45940
A flaw was found in the Linux kernel's stmmac Ethernet driver. When split header functionality is enabled for GMAC4, the hardware may not fully populate a buffer in the first descriptor. This can lead to an incorrect calculation of buffer length in subsequent descriptors, resulting in a kernel...
CVE-2026-46084
CVE-2026-46084 : In the Linux kernel, the mana_ib driver fails to disable vPort RX steering when destroying RSS QP, leaving stale steering that may reference freed RX WQ objects. If traffic continues and a VF is brought up, the firmware can deliver completions using old CQ IDs, causing RX complet...
CVE-2026-45952
eth: fbnic: Add validation for MTU changes...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel up to 5.15.2, hwatlutilsfwrpcwait in drivers/net/ethernet/aquantia/atlantic/hwatl/hwatlutils.c allows an attacker who can introduce a crafted device to trigger an out-of-bounds write by using a crafted length value...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fixed a possible memory leak in bnxtrdmaauxdeviceinit. If ulp = kzalloc fails, the allocated edev will leak because it is not properly assigned, and the cleanup mechanism will not be able to free it. This issue was fixed ...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: Networks: Ethernet – Fix for potential use-after-free in ecbhfremove. The code static void ecbhfremovestructpcidev dev looks as follows: c ... struct ecbhfpriv priv = netdevprivnetdev; unregisternetdevnetdev; freenetdevnetdev;...
Astra Linux – Vulnerability in Linux
A issue was discovered in the Linux kernel through version 5.11.10. In the drivers/net/ethernet/freescale/gianfar.c file of the Freescale Gianfar Ethernet driver, it was found that a negative fragment size can be calculated in situations where an rx queue overrun occurs when jumbo packets are use...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: return fail if interface is down in bnxtqueuememalloc The bnxtqueuememalloc function is called to allocate new queue memory when a queue is restarted. It internally accesses the rx buffer descriptor corresponding to th...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: i40e: Fixed NULL pointer dereferencing in VSI filter synchronization. The issue of NULL pointer dereferencing in sync VSI filters has been eliminated. A new I40EVSIRELEASING flag was added to indicate the deletion and release of...