Lucene search
K

101 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/14 3:7 p.m.5 views

CVE-2025-71128

In the Linux kernel, the following vulnerability has been resolved: erspan: Initialize optionslen before referencing options. The struct iptunnelinfo has a flexible array member named options that is protected by a countedbyoptionslen attribute. The compiler will use this information to enforce...

5.4AI score0.00124EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/01/14 3:7 p.m.28 views

CVE-2025-71128 erspan: Initialize options_len before referencing options.

In the Linux kernel, the following vulnerability has been resolved: erspan: Initialize optionslen before referencing options. The struct iptunnelinfo has a flexible array member named options that is protected by a countedbyoptionslen attribute. The compiler will use this information to enforce...

0.00124EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/01/14 3:7 p.m.6 views

CVE-2025-71128

In the Linux kernel, the following vulnerability has been resolved: erspan: Initialize optionslen before referencing options. The struct iptunnelinfo has a flexible array member named options that is protected by a countedbyoptionslen attribute. The compiler will use this information to enforce...

5.5CVSS5.5AI score0.00124EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-71128

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: erspan: Initialize optionslen before referencing options. The struct iptunnelinfo has a...

5.5CVSS6.1AI score0.00124EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/24 3:30 p.m.2 views

EUVD-2023-60270

In the Linux kernel, the following vulnerability has been resolved: kheaders: Use array declaration instead of char Under CONFIGFORTIFYSOURCE, memcpy will check the size of destination and source buffers. Defining kernelheadersdata as "char" would trip this check. Since these addresses are treate...

6.4AI score0.00191EPSS
Exploits0References8
NVD
NVD
added 2025/12/24 1:16 p.m.4 views

CVE-2023-54056

In the Linux kernel, the following vulnerability has been resolved: kheaders: Use array declaration instead of char Under CONFIGFORTIFYSOURCE, memcpy will check the size of destination and source buffers. Defining kernelheadersdata as "char" would trip this check. Since these addresses are treate...

0.00191EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.9 views

CVE-2022-50778

In the Linux kernel, the following vulnerability has been resolved: fortify: Fix compiletimestrlen under UBSANBOUNDSLOCAL With CONFIGFORTIFY=y and CONFIGUBSANLOCALBOUNDS=y enabled, we observe a runtime panic while running Android's Compatibility Test Suite's CTS android.hardware.input.cts.tests...

5.6AI score0.00199EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 1:16 p.m.5 views

UBUNTU-CVE-2022-50778

In the Linux kernel, the following vulnerability has been resolved: fortify: Fix compiletimestrlen under UBSANBOUNDSLOCAL With CONFIGFORTIFY=y and CONFIGUBSANLOCALBOUNDS=y enabled, we observe a runtime panic while running Android's Compatibility Test Suite's CTS android.hardware.input.cts.tests...

5.6AI score0.00199EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.4 views

CVE-2023-54056

In the Linux kernel, the following vulnerability has been resolved: kheaders: Use array declaration instead of char Under CONFIGFORTIFYSOURCE, memcpy will check the size of destination and source buffers. Defining kernelheadersdata as "char" would trip this check. Since these addresses are treate...

6.1AI score0.00191EPSS
Exploits0References8
OSV
OSV
added 2025/12/24 12:23 p.m.5 views

CVE-2023-54056 kheaders: Use array declaration instead of char

In the Linux kernel, the following vulnerability has been resolved: kheaders: Use array declaration instead of char Under CONFIGFORTIFYSOURCE, memcpy will check the size of destination and source buffers. Defining kernelheadersdata as "char" would trip this check. Since these addresses are treate...

6.8AI score0.00191EPSS
Exploits0References10
CVE
CVE
added 2025/12/24 12:23 p.m.13 views

CVE-2023-54056

The CVE-2023-54056 entry concerns the Linux kernel kheaders path. The underlying issue was that kernel_headers_data was defined as a char array, which trips FortifySource checks during memcpy by treating addresses as byte arrays; the fix is to define them as proper arrays (as with other code path...

6.6AI score0.00191EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.4 views

PT-2025-53054

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to kheaders. Specifically, the use of a 'char' declaration instead of an array declaration for kernel headers data could trigger a buffer overfl...

6.5AI score0.00191EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.6 views

kernel: ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init()

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix UB due to uninitialized stack access in ipvsprotocolinit Under certain kernel configurations when building with Clang/LLVM, the compiler does not generate a return or jump as the terminator instruction for...

5.5CVSS6.9AI score0.00224EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/06 12:0 a.m.0 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990608)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990608 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: mount fails with buffer overflow in strlen Starting with kernel 5.11 built with...

7.8CVSS6.3AI score0.00237EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989424)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989424 advisory. In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Bounds check struct nfctarget arrays While running under CONFIGFORTIFYSOURCE=y, syzkall...

7.1CVSS5.9AI score0.00236EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987580)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987580 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: mount fails with buffer overflow in strlen Starting with kernel 5.11 built with...

7.8CVSS6.3AI score0.00237EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.0 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987240)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987240 advisory. In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Bounds check struct nfctarget arrays While running under CONFIGFORTIFYSOURCE=y, syzkall...

7.1CVSS5.9AI score0.00236EPSS
Exploits0References4
OSV
OSV
added 2025/07/28 12:15 p.m.1 views

DEBIAN-CVE-2025-38493

In the Linux kernel, the following vulnerability has been resolved: tracing/osnoise: Fix crash in timerlatdumpstack We have observed kernel panics when using timerlat with stack saving, with the following dmesg output: memcpy: detected buffer overflow: 88 byte write of buffer size 0 WARNING: CPU:...

5.5CVSS5.8AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2025/07/28 12:15 p.m.6 views

UBUNTU-CVE-2025-38493

In the Linux kernel, the following vulnerability has been resolved: tracing/osnoise: Fix crash in timerlatdumpstack We have observed kernel panics when using timerlat with stack saving, with the following dmesg output: memcpy: detected buffer overflow: 88 byte write of buffer size 0 WARNING: CPU:...

5.5CVSS6.2AI score0.00151EPSS
Exploits0References29
ATTACKERKB
ATTACKERKB
added 2025/07/28 11:22 a.m.4 views

CVE-2025-38493

In the Linux kernel, the following vulnerability has been resolved: tracing/osnoise: Fix crash in timerlatdumpstack We have observed kernel panics when using timerlat with stack saving, with the following dmesg output: memcpy: detected buffer overflow: 88 byte write of buffer size 0 WARNING: CPU:...

5.5CVSS6AI score0.00151EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder