Lucene search
K

2008 matches found

RedhatCVE
RedhatCVE
added 2026/06/03 7:41 p.m.9 views

CVE-2026-46266

A flaw was found in the Linux kernel's handling of RAW sockets using IPPROTORAW. A remote attacker could send a specially crafted ICMP Internet Control Message Protocol packet. This malicious packet could set the protocol field to 255, causing it to be processed by a RAW socket configured for...

9.1CVSS5.8AI score0.00346EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/03 7:37 p.m.12 views

kernel: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach()

A flaw was found in the Linux kernel's IPv6 ICMP error generation. A remote attacker could send a specially crafted IPv4 ICMP error packet with a Common Internet Protocol Security Option CIPSO IP option. This could lead to incorrect handling of packet control block data when generating an IPv6 IC...

9.8CVSS5.8AI score0.00255EPSS
Exploits0References5
NVD
NVD
added 2026/06/03 6:16 p.m.38 views

CVE-2026-46266

In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTORAW MUST drop incoming ICMP Yizhou Zhao reported that simply having one RAW socket on protocol IPPROTORAW 255 was dangerous. socketAFINET, SOCKRAW, 255; A malicious incoming ICMP packet can set the...

9.1CVSS0.00346EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/03 3:50 p.m.45 views

CVE-2026-46266 inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP

In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTORAW MUST drop incoming ICMP Yizhou Zhao reported that simply having one RAW socket on protocol IPPROTORAW 255 was dangerous. socketAFINET, SOCKRAW, 255; A malicious incoming ICMP packet can set the...

9.1CVSS0.00346EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/03 3:50 p.m.14 views

EUVD-2026-34128

In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTORAW MUST drop incoming ICMP Yizhou Zhao reported that simply having one RAW socket on protocol IPPROTORAW 255 was dangerous. socketAFINET, SOCKRAW, 255; A malicious incoming ICMP packet can set the...

5.8AI score0.00346EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/03 3:25 p.m.19 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS5.8AI score0.00563EPSS
Exploits0References8
Rosalinux
Rosalinux
added 2026/06/01 8:46 a.m.13 views

Advisory ROSA-SA-2026-3299

Package: iputils 20221126 OS: ROSA-CHROME Unaffected versions: = iputils-20221126-2 Affected versions: iputils-20221126-2 CVE-ID: CVE-2025-47268 BDU-ID: 2025-11086 CVE-Crit: Medium CVE-DESC.: The vulnerability in the ICMP Echo Reply ping utility tool is related to a numerical overflow. Exploiting...

6.5CVSS5.9AI score0.01467EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2026/06/01 12:15 a.m.17 views

ovn: ovn: Heap Over-Read in ICMP Error Response Generation

When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the ICMP error body using the IP header's self-declared total length iptotlen for IPv4, ip6plen for IPv6 without validating it against the actual packet buffer size...

6.5CVSS5.5AI score0.00629EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/01 12:15 a.m.15 views

Important: Red Hat Security Advisory: ovn25.09 security update

An update for ovn25.09 is now available for Fast Datapath for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.6CVSS5.8AI score0.00868EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/06/01 12:0 a.m.13 views

RHEL 10 : ovn25.09 (RHSA-2026:22111)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:22111 advisory. OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add...

8.6CVSS5.9AI score0.00868EPSS
Exploits0References13
Microsoft CVE
Microsoft CVE
added 2026/05/28 8:3 a.m.10 views

ipv4: icmp: validate reply type before using icmp_pointers

...

8.2CVSS5.4AI score0.00433EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/28 3:56 a.m.13 views

SUSE CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.7AI score0.00111EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/27 7:54 p.m.13 views

CVE-2026-46037

A flaw was found in the Linux kernel, specifically within its IPv4 Internet Control Message Protocol ICMP component. This vulnerability occurs because the system does not properly check the type of ICMP replies before attempting to process them. An attacker could potentially exploit this by sendi...

8.2CVSS5.8AI score0.00433EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/27 3:33 p.m.11 views

EUVD-2026-32371

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

5.7AI score0.00111EPSS
Exploits0References7
NVD
NVD
added 2026/05/27 2:17 p.m.12 views

CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS0.00111EPSS
Exploits0References6
OSV
OSV
added 2026/05/27 2:17 p.m.7 views

UBUNTU-CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.7AI score0.00111EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:56 p.m.9 views

CVE-2026-46037

In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmppointers Extended echo replies use ICMPEXTECHOREPLY as the outbound reply type. That value is outside the range covered by icmppointers, which only describes the traditional ICMP...

8.2CVSS5.7AI score0.00433EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/05/27 12:56 p.m.29 views

CVE-2026-46037

The CVE-2026-46037 issue affects the Linux kernel IPv4 ICMP component. Extended echo replies could use ICMP_EXT_ECHOREPLY outside the icmp_pointers[] range; the fix avoids icmp_pointers[] lookups for out-of-range types and uses array_index_nospec() for in-range lookups. Multiple OS feeds report p...

8.2CVSS5.7AI score0.00433EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2026/05/27 12:17 p.m.11 views

CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.7AI score0.00111EPSS
Exploits0
CVE
CVE
added 2026/05/27 12:17 p.m.27 views

CVE-2026-45905

CVE-2026-45905 is a Linux kernel networking vulnerability in the xfrm/icmp_route_lookup reverse path. The race occurs during ICMP error handling when a concurrent address change may cause ip_route_input() to return a LOCAL route with a dst that can trigger a WARN_ON in ip_rt_bug. The fix checks t...

4.7CVSS5.7AI score0.00111EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder