13 matches found
EUVD-2026-27630
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: validate bsscfg indices in IF events brcmffwehhandleifevent validates the firmware-provided interface index before it touches drvr-iflist, but it still uses the raw bsscfgidx field as an array index without a...
net: mctp: Don't access ifa_index when missing
...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990401)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990401 advisory. In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989511)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989511 advisory. In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the...
EUVD-2025-27859
Malicious code in bioql PyPI...
UBUNTU-CVE-2025-38006
In the Linux kernel, the following vulnerability has been resolved: net: mctp: Don't access ifaindex when missing In mctpdumpaddrinfo, ifaindex can be used to filter interfaces, but only when the struct ifaddrmsg is provided. Otherwise it will be comparing to uninitialised memory - reproducible i...
SUSE CVE-2021-47515
In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...
DEBIAN-CVE-2021-47515
In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...
CVE-2021-47515
In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...
CVE-2021-47515
In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...
CVE-2019-1595
A vulnerability in the Fibre Channel over Ethernet FCoE protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to an incorrect allocation of an internal interface...
Input validation
Out-of-bounds array access in dhdrxframe in drivers/net/wireless/bcmdhd4358/dhdlinux.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker who has obtained code execution on the Wi-Fi chip to cause invalid accesses to operating system memory due to...
CVE-2018-14852
Out-of-bounds array access in dhdrxframe in drivers/net/wireless/bcmdhd4358/dhdlinux.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker who has obtained code execution on the Wi-Fi chip to cause invalid accesses to operating system memory due to...