Lucene search
K

1058 matches found

UbuntuCve
UbuntuCve
added 2024/02/28 9:15 a.m.23 views

CVE-2021-47014

In the Linux kernel, the following vulnerability has been resolved: net/sched: actct: fix wild memory access when clearing fragments while testing re-assembly/re-fragmentation using actct, it's possible to observe a crash like the following one: KASAN: maybe wild-memory-access in range...

7.8CVSS6.6AI score0.00233EPSS
Exploits0References4
CVE
CVE
added 2024/02/28 8:13 a.m.6813 views

CVE-2021-47014

CVE-2021-47014 affects the Linux kernel’s net/sched code, specifically the act_ct action used during IP fragment handling. The root cause was a wild memory access that occurred when a temporarily stored IP fragment was reassembled: restoring skb->cb could overwrite FRAG_CB(), causing invalid m...

7.8CVSS6.5AI score0.00233EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/28 8:13 a.m.11 views

CVE-2021-47014 net/sched: act_ct: fix wild memory access when clearing fragments

In the Linux kernel, the following vulnerability has been resolved: net/sched: actct: fix wild memory access when clearing fragments while testing re-assembly/re-fragmentation using actct, it's possible to observe a crash like the following one: KASAN: maybe wild-memory-access in range...

6.8AI score0.00233EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/02/28 3:34 a.m.31 views

CVE-2021-46955

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

5.3CVSS6.4AI score0.00254EPSS
Exploits0References4
OSV
OSV
added 2024/02/27 7:4 p.m.4 views

CVE-2021-46954

In the Linux kernel, the following vulnerability has been resolved: net/sched: schfrag: fix stack OOB read while fragmenting IPv4 packets when 'actmirred' tries to fragment IPv4 packets that had been previously re-assembled using 'actct', splats like the following can be observed on kernels built...

7.1CVSS5.6AI score0.0023EPSS
Exploits0References3
NVD
NVD
added 2024/02/27 7:4 p.m.20 views

CVE-2021-46954

In the Linux kernel, the following vulnerability has been resolved: net/sched: schfrag: fix stack OOB read while fragmenting IPv4 packets when 'actmirred' tries to fragment IPv4 packets that had been previously re-assembled using 'actct', splats like the following can be observed on kernels built...

7.1CVSS6.7AI score0.0023EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/02/27 7:4 p.m.7 views

CVE-2021-46954

In the Linux kernel, the following vulnerability has been resolved: net/sched: schfrag: fix stack OOB read while fragmenting IPv4 packets when 'actmirred' tries to fragment IPv4 packets that had been previously re-assembled using 'actct', splats like the following can be observed on kernels built...

7.1CVSS6.3AI score0.0023EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/02/27 7:4 p.m.3 views

DEBIAN-CVE-2021-46955

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

7.1CVSS5.6AI score0.00254EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/02/27 7:4 p.m.6 views

CVE-2021-46955

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

7.1CVSS6.2AI score0.00254EPSS
Exploits0References10Affected Software1
UbuntuCve
UbuntuCve
added 2024/02/27 7:4 p.m.22 views

CVE-2021-46954

In the Linux kernel, the following vulnerability has been resolved: net/sched: schfrag: fix stack OOB read while fragmenting IPv4 packets when 'actmirred' tries to fragment IPv4 packets that had been previously re-assembled using 'actct', splats like the following can be observed on kernels built...

7.1CVSS6.5AI score0.0023EPSS
Exploits0References5
Prion
Prion
added 2024/02/27 7:4 p.m.27 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

7AI score0.00254EPSS
Exploits0References9
OSV
OSV
added 2024/02/27 7:4 p.m.3 views

UBUNTU-CVE-2021-46954

In the Linux kernel, the following vulnerability has been resolved: net/sched: schfrag: fix stack OOB read while fragmenting IPv4 packets when 'actmirred' tries to fragment IPv4 packets that had been previously re-assembled using 'actct', splats like the following can be observed on kernels built...

7.1CVSS5.7AI score0.0023EPSS
Exploits0References6
OSV
OSV
added 2024/02/27 7:4 p.m.1 views

UBUNTU-CVE-2021-46955

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

7.1CVSS6.1AI score0.00254EPSS
Exploits0References13
Vulnrichment
Vulnrichment
added 2024/02/27 6:46 p.m.22 views

CVE-2021-46955 openvswitch: fix stack OOB read while fragmenting IPv4 packets

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

7AI score0.00254EPSS
Exploits0References9
CVE
CVE
added 2024/02/27 6:46 p.m.6408 views

CVE-2021-46955

CVE-2021-46955 affects the Linux kernel in combination with Open vSwitch. The issue arises in IPv4 packet fragmentation within ovs_fragment(), where a temporary dst_entry is misused as an rtable pointer during the ip_do_fragment() -> ip_skb_dst_mtu() -> ip_dst_mtu_maybe_forward() -> ip_m...

7.1CVSS6.1AI score0.00254EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2024/02/27 6:46 p.m.22 views

CVE-2021-46955

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

7.1CVSS7.2AI score0.00254EPSS
Exploits0
Cvelist
Cvelist
added 2024/02/27 6:46 p.m.24 views

CVE-2021-46955 openvswitch: fix stack OOB read while fragmenting IPv4 packets

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix stack OOB read while fragmenting IPv4 packets running openvswitch on kernels built with KASAN, it's possible to see the following splat while testing fragmentation of IPv4 packets: BUG: KASAN: stack-out-of-bounds...

7.6AI score0.00254EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2024/02/27 6:46 p.m.25 views

CVE-2021-46954 net/sched: sch_frag: fix stack OOB read while fragmenting IPv4 packets

In the Linux kernel, the following vulnerability has been resolved: net/sched: schfrag: fix stack OOB read while fragmenting IPv4 packets when 'actmirred' tries to fragment IPv4 packets that had been previously re-assembled using 'actct', splats like the following can be observed on kernels built...

6.7AI score0.0023EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2024/02/08 10:39 a.m.27 views

Unified Identity – look for the meaning behind the hype!

If you've listened to software vendors in the identity space lately, you will have noticed that "unified" has quickly become the buzzword that everyone is adopting to describe their portfolio. And this is great! Unified identity has some amazing benefits! However there is always a however, right?...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/01/30 1:28 p.m.10 views

kernel: tun: bugs for oversize packet when napi frags enabled in tun_napi_alloc_frags

An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious too big networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.7AI score0.00344EPSS
Exploits0References5
Rows per page
Query Builder