Lucene search
K

139 matches found

NVD
NVD
added 2025/07/25 2:15 p.m.5 views

CVE-2025-38413

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

5.5CVSS0.00154EPSS
Exploits0References3
OSV
OSV
added 2025/07/25 2:15 p.m.2 views

DEBIAN-CVE-2025-38413

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

5.5CVSS5.6AI score0.00154EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 2:15 p.m.4 views

UBUNTU-CVE-2025-38413

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

5.5CVSS5.9AI score0.00154EPSS
Exploits0References12
CVE
CVE
added 2025/07/25 1:20 p.m.55 views

CVE-2025-38413

CVE-2025-38413 : In the Linux kernel virtio-net XDP path (xsk RX), len passed to buf_to_xdp did not consistently account for virtio header length for the first buffer, risking an incorrect frame size check. The fix differentiates the first buffer from subsequent ones by introducing an extra param...

5.5CVSS6.5AI score0.00154EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/07/25 1:20 p.m.7 views

CVE-2025-38413

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

5.5CVSS5.8AI score0.00154EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/07/25 1:20 p.m.7 views

CVE-2025-38413 virtio-net: xsk: rx: fix the frame's length check

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

0.00154EPSS
Exploits0References3
OSV
OSV
added 2025/07/25 1:20 p.m.5 views

CVE-2025-38413 virtio-net: xsk: rx: fix the frame's length check

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

5.5CVSS6.4AI score0.00154EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a frame length checking error in the virtio-net xsk receive path, which could lead to a buffer overflow...

5.5CVSS8.1AI score0.00154EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/30 12:0 a.m.5 views

PT-2025-30813 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the virtio-net xsk receive rx path related to frame length checking. The buf to xdp function incorrectly calculates the maximum frame length for the first buffer,...

6CVSS5.9AI score0.00154EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2025/05/22 3:35 p.m.8 views

CVE-2020-3668

u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag...

10CVSS7.5AI score0.01052EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 9:15 a.m.7 views

CVE-2019-14110

Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer...

10CVSS7.9AI score0.00902EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:7 a.m.4 views

CVE-2019-14086

Possible integer overflow while checking the length of frame which is a 32 bit integer and is added to another 32 bit integer which can lead to unexpected result during the check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT,...

10CVSS7.5AI score0.00907EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 10:6 p.m.11 views

CVE-2025-30356 Heap Buffer Overflow via Incomplete Length Check in `Crypto_TC_ApplySecurity`

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. In 1.3.3 and earlier, a heap buffer overflow vulnerability persists in...

9.3CVSS7.6AI score0.0062EPSS
Exploits1References2
CVE
CVE
added 2025/04/01 10:6 p.m.74 views

CVE-2025-30356

CryptoLib (SDLS-EP) vulnerability CVE-2025-30356 affects 1.3.3 and earlier. A heap buffer overflow in Crypto_TC_ApplySecurity results from incomplete validation of the fl (frame length) field; after CVE-2025-29912’s underflow fix, frames can still produce a negative tf_payload_len that is treated...

9.8CVSS7.6AI score0.0062EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/03/17 10:20 p.m.5 views

CVE-2025-29911 CryptoLib Has Heap Buffer Overflow in Crypto_AOS_ProcessSecurity Function

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A critical heap buffer overflow vulnerability was identified in the...

9.3CVSS8.1AI score0.0068EPSS
Exploits1References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.7 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: tap: added missing verification for short frames The referenced commit failed to check the validity of the frame length in the tapgetuserxdp function, which could result in a corrupted skb being sent down the stack. Even before t...

7.1CVSS6.6AI score0.00254EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: tun: Added missing verification for short frames. The referenced commit failed to check the validity of the frame length in the tunxdpone path, which could result in a corrupted skb being sent down the stack. Even before the skb ...

7.1CVSS6.4AI score0.00254EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 2:40 a.m.15 views

CVE-2024-33026

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp...

7.5CVSS7AI score0.0028EPSS
Exploits0References1
NVD
NVD
added 2024/08/05 3:15 p.m.32 views

CVE-2024-33026

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp...

7.5CVSS0.0028EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/05 2:21 p.m.36 views

CVE-2024-33026 Buffer Over-read in WLAN Host

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp...

7.5CVSS0.0028EPSS
Exploits0References1
Rows per page
Query Builder