Lucene search
+L

13 matches found

astralinux
astralinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: gue: Fixed a skb memory leak associated with the inner IP protocol 0. The syzbot reported a skb memory leak below. 0 The repro process generated a GUE packet with its inner protocol set to 0. The function gueudprecv returns...

7.5CVSS5.7AI score0.00239EPSS
Exploits0References2
susecve
susecve
added 2026/02/05 12:24 a.m.6 views

SUSE CVE-2026-23095

In the Linux kernel, the following vulnerability has been resolved: gue: Fix skb memleak with inner IP protocol 0. syzbot reported skb memleak below. 0 The repro generated a GUE packet with its inner protocol 0. gueudprecv returns -guehdr-protoctype for "resubmit" in ipprotocoldeliverrcu, but thi...

5.5CVSS5.2AI score0.00239EPSS
Exploits0References20
nvd
nvd
added 2026/02/04 5:16 p.m.6 views

CVE-2026-23095

In the Linux kernel, the following vulnerability has been resolved: gue: Fix skb memleak with inner IP protocol 0. syzbot reported skb memleak below. 0 The repro generated a GUE packet with its inner protocol 0. gueudprecv returns -guehdr-protoctype for "resubmit" in ipprotocoldeliverrcu, but thi...

7.5CVSS0.00239EPSS
Exploits0References8
osv
osv
added 2026/02/04 5:16 p.m.5 views

UBUNTU-CVE-2026-23095

In the Linux kernel, the following vulnerability has been resolved: gue: Fix skb memleak with inner IP protocol 0. syzbot reported skb memleak below. 0 The repro generated a GUE packet with its inner protocol 0. gueudprecv returns -guehdr-protoctype for "resubmit" in ipprotocoldeliverrcu, but thi...

7.5CVSS5.7AI score0.00239EPSS
Exploits0References29
euvd
euvd
added 2026/02/04 4:8 p.m.3 views

EUVD-2026-5447

In the Linux kernel, the following vulnerability has been resolved: gue: Fix skb memleak with inner IP protocol 0. syzbot reported skb memleak below. 0 The repro generated a GUE packet with its inner protocol 0. gueudprecv returns -guehdr-protoctype for "resubmit" in ipprotocoldeliverrcu, but thi...

5.2AI score0.00239EPSS
Exploits0References4
cve
cve
added 2026/02/04 4:8 p.m.22 views

CVE-2026-23095

CVE-2026-23095 affects the Linux kernel Gue (GUE) path. It describes a skb memory leak when inner IP protocol is 0, triggered by a GUE repro. The issue arises because gue_udp_recv() may propagate a zero protocol, causing a memory leak; the fix drops such packets. The description notes that 0 is a...

7.5CVSS5.2AI score0.00239EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/02/04 4:8 p.m.30 views

CVE-2026-23095 gue: Fix skb memleak with inner IP protocol 0.

In the Linux kernel, the following vulnerability has been resolved: gue: Fix skb memleak with inner IP protocol 0. syzbot reported skb memleak below. 0 The repro generated a GUE packet with its inner protocol 0. gueudprecv returns -guehdr-protoctype for "resubmit" in ipprotocoldeliverrcu, but thi...

7.5CVSS0.00239EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2026/01/01 12:0 a.m.7 views

PT-2026-6165

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s GUE Generic UDP Encapsulation protocol handler contains a memory leak when processing packets with an inner IP protocol of 0. The issue occurs because gue udp recv...

7.5CVSS5.5AI score0.00239EPSS
Exploits0
nvd
nvd
added 2025/02/05 6:15 p.m.35 views

CVE-2024-7596

Proposed Generic UDP Encapsulation GUE IETF Draft do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can ...

6.5CVSS0.00845EPSS
Exploits0References3
cve
cve
added 2025/02/05 5:37 p.m.86 views

CVE-2024-7596

CVE-2024-7596 / CVE-2025-23018 (and related CVEs) involve tunneling protocols that do not validate the source of a network packet. Specifically: The GRE/GRE6 (CVE-2024-7595) and Propose d Generic UDP Encapsulation (GUE) (CVE-2024-7596) cases describe lack of source verification in encapsulated tr...

6.5CVSS6.5AI score0.00845EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2025/02/05 5:37 p.m.23 views

CVE-2024-7596 Generic UDP Encapsulation (GUE) (IETF Draft) do not validate or verify the source of a network packet

Proposed Generic UDP Encapsulation GUE IETF Draft do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can ...

0.00845EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/02/05 5:37 p.m.12 views

CVE-2024-7596 Generic UDP Encapsulation (GUE) (IETF Draft) do not validate or verify the source of a network packet

Proposed Generic UDP Encapsulation GUE IETF Draft do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can ...

6.5AI score0.00845EPSS
Exploits0References2
susecve
susecve
added 2025/01/18 4:5 a.m.4 views

SUSE CVE-2024-7596

Proposed Generic UDP Encapsulation GUE IETF Draft do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can ...

6.5CVSS7AI score0.00845EPSS
Exploits0References3
Rows per page
Query Builder