Lucene search
K

87 matches found

osv
osv
added 2025/07/03 9:15 a.m.13 views

UBUNTU-CVE-2025-38147

In the Linux kernel, the following vulnerability has been resolved: calipso: Don't call calipso functions for AFINET sk. syzkaller reported a null-ptr-deref in txoptget. 0 The offset 0x70 was of struct ipv6txoptions in struct ipv6pinfo, so struct ipv6pinfo was NULL there. However, this never...

5.5CVSS6.1AI score0.0017EPSS
Exploits0References43
redhatcve
redhatcve
added 2025/05/22 8:35 p.m.4 views

CVE-2021-25663

A vulnerability has been identified in Capital Embedded AR Classic 431-422 All versions, Capital Embedded AR Classic R20-11 All versions V2303, Nucleus NET All versions, Nucleus ReadyStart V3 All versions V2017.02.4, Nucleus ReadyStart V4 All versions V4.1.0, Nucleus Source Code All versions...

8.7CVSS7AI score0.01885EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/03/27 2:57 p.m.1 views

CVE-2025-21891 ipvlan: ensure network headers are in skb linear part

In the Linux kernel, the following vulnerability has been resolved: ipvlan: ensure network headers are in skb linear part syzbot found that ipvlanprocessv6outbound was assuming the IPv6 network header isis present in skb-head 1 Add the needed pskbnetworkmaypull calls for both IPv4 and IPv6...

6.7AI score0.0018EPSS
Exploits0References5
osv
osv
added 2025/02/27 3:15 a.m.12 views

UBUNTU-CVE-2025-21768

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels Some lwtunnels have a dst cache for post-transformation dst. If the packet destination did not change we may end up recording a reference to the lwtunnel in its own...

5.5CVSS6.2AI score0.00191EPSS
Exploits0References15
astralinux
astralinux
added 2025/02/11 7:35 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Slip: Make slhcremember more robust against malicious packets. syzbot found that slhcremember lacked checks against malicious packets 1. slhcremember only checks that the packet’s size is at least 20 bytes, which is...

7.1CVSS6.4AI score0.00272EPSS
Exploits0References3
osv
osv
added 2025/01/09 7:15 p.m.4 views

CVE-2025-21598

An Out-of-bounds Read vulnerability in Juniper Networks Junos OS and Junos OS Evolved's routing protocol daemon rpd allows an unauthenticated, network-based attacker to send malformed BGP packets to a device configured with packet receive trace options enabled to crash rpd. This issue affects:...

8.2CVSS5.8AI score0.00714EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/01/01 12:0 a.m.13 views

PT-2025-4310

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description The issue concerns the Linux kernel's handling of IPv6 packets with extension headers. Specifically, it affects devices that advertise NETIF F IPV6 CSUM, which is a feature for checksumming pla...

5.5CVSS6.6AI score0.00208EPSS
Exploits0
suse
suse
added 2024/12/06 7:3 p.m.1 views

Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059153 fixes several issues. The following security issues were fixed: CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. CVE-2021-47598: schcake: do not call...

7.8CVSS8.5AI score0.01166EPSS
Exploits2References100
cnnvd
cnnvd
added 2024/11/27 12:0 a.m.3 views

Contiki-NG 安全漏洞

Contiki-NG is a Contiki-NG open source operating system for resource-constrained devices in the Internet of Things. A security vulnerability exists in Contiki-NG 4.9 and earlier versions, which stems from a lack of valid validation of the next-hop address, which could result in uncontrolled...

8.7CVSS6.5AI score0.00538EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/11/05 12:0 a.m.9 views

PT-2024-37063

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, involving IPv6 and device removal. The issue occurred during device removal in the pmtu.sh self-test, causing an aperiodic hangup...

5.5CVSS5.3AI score0.00203EPSS
Exploits0
redhat
redhat
added 2024/09/24 2:39 a.m.4 views

kernel: tunnels: fix out of bounds access when building IPv6 PMTU error

A flaw was found in the Linux kernel. This issue occurs due to the improper handling of non-linear skbs socket buffers when calculating checksums for ICMPv6 PMTU error messages. This vulnerability can lead to out-of-bounds access, potentially causing memory corruption or crashes...

7.1CVSS7.2AI score0.00237EPSS
Exploits0References5
redhat
redhat
added 2024/07/10 12:18 a.m.3 views

kernel: ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr

This CVE addresses a race condition in the Linux kernel's IPv6 subsystem, specifically between the ipv6getifaddr and ipv6deladdr functions. This race condition can lead to use-after-free scenarios, potentially causing system instability or crashes...

5.5CVSS7.3AI score0.00257EPSS
Exploits0References5
bdu_fstec
bdu_fstec
added 2024/06/14 12:0 a.m.5 views

The vulnerability of the __fib6_rule_action() function in the Linux operating system’s IPv6 kernel implementation allows a hacker to induce a service failure.

The vulnerability of the fib6ruleaction function in the net/ipv6/fib6rules.c module of the Linux operating system’s IPv6 kernel implementation is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure remotely...

5.5CVSS6.6AI score0.00289EPSS
Exploits0References50Affected Software5
susecve
susecve
added 2024/05/28 3:32 a.m.2 views

SUSE CVE-2021-47572

In the Linux kernel, the following vulnerability has been resolved: net: nexthop: fix null pointer dereference when IPv6 is not enabled When we try to add an IPv6 nexthop and IPv6 is not enabled !CONFIGIPV6 we'll hit a NULL pointer dereference1 in the error path of nhcreateipv6 due to calling...

4.4CVSS6AI score0.00207EPSS
Exploits0References6
susecve
susecve
added 2024/05/23 3:5 a.m.3 views

SUSE CVE-2021-47291

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix another slab-out-of-bounds in fib6nhflushexceptions While running the self-tests on a KASAN enabled kernel, I observed a slab-out-of-bounds splat very similar to the one reported in commit 821bbf79fe46 "ipv6: Fix KASAN:...

7.8CVSS6.2AI score0.00247EPSS
Exploits0References48
redhat
redhat
added 2024/05/22 10:16 a.m.2 views

kernel: ICMPv6 “Packet Too Big” packets force a DoS of the Linux kernel by forcing 100% CPU

A flaw in the routing table size was found in the ICMPv6 handling of "Packet Too Big". The size of the routing table is regulated by periodic garbage collection. However, with "Packet Too Big Messages" it is possible to exceed the routing table size and garbage collector threshold. A user located...

7.5CVSS6.6AI score0.0094EPSS
Exploits0References6
osv
osv
added 2024/03/15 9:15 p.m.3 views

DEBIAN-CVE-2021-47109

In the Linux kernel, the following vulnerability has been resolved: neighbour: allow NUDNOARP entries to be forced GCed IFFPOINTOPOINT interfaces use NUDNOARP entries for IPv6. It's possible to fill up the neighbour table with enough entries that it will overflow for valid connections after that...

5.5CVSS5.7AI score0.00235EPSS
Exploits0References1
amazon
amazon
added 2024/03/04 12:0 a.m.4 views

Important: edk2

Issue Overview: EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IANA or IATA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality...

8.8CVSS7.5AI score0.03174EPSS
Exploits1
bdu_fstec
bdu_fstec
added 2023/10/17 12:0 a.m.7 views

The vulnerability of the ICMPv6 network protocol implementation in Junos QFX5K routers allows a attacker to cause a service failure.

The vulnerability of the ICMPv6 network protocol implementation in Junos QFX5K routers lies in the execution of a loop with an unavailable exit condition when processing WAV/AVI format files. Exploiting this vulnerability allows a remote attacker to cause service failures...

7.8CVSS7.4AI score0.00531EPSS
Exploits0References3Affected Software1
osv
osv
added 2023/09/27 6:15 p.m.2 views

CVE-2023-20187

A vulnerability in the Multicast Leaf Recycle Elimination mLRE feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service DoS condition. This...

7.5CVSS5.8AI score0.00652EPSS
Exploits0References1
Rows per page
Query Builder