19 matches found
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fixed the receive ring space parameters when XDP is active. The MTU setting at the time a XDP multi-buffer is attached determines whether the aggregation ring will be used and the rxskbfunc handler. This is done in...
CVE-2026-43234 team: avoid NETDEV_CHANGEMTU event when unregistering slave
In the Linux kernel, the following vulnerability has been resolved: team: avoid NETDEVCHANGEMTU event when unregistering slave syzbot is reporting unregisternetdevice: waiting for netdevsim0 to become free. Usage count = 3 reftracker: netdev@ffff88807dcf8618 has 1/2 users at netdevtrackeralloc...
CVE-2026-43234
CVE-2026-43234 concerns the Linux kernel team driver. The issue arises when unregistering a slave from a team interface while a NETDEV_CHANGEMTU event is pending, potentially causing a deadlock/resource exhaustion and system unresponsiveness as shown by reproduction steps involving creating a tea...
PT-2026-37574
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the team driver where a NETDEV CHANGEMTU event is triggered during the unregistration of a slave. This can lead to a situation where the system waits for a network...
Unity Linux 20.1060a Security Update: kernel (UTSA-2026-014336)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014336 advisory. In the Linux kernel, the following vulnerability has been resolved: can: etases58x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011318)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011318 advisory. In the Linux kernel, the following vulnerability has been resolved: can: sun4ican: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to...
CVE-2026-23438
A flaw was found in the Linux kernel's mvpp2 driver. A local privileged user could cause a system crash, leading to a Denial of Service DoS, by triggering a null pointer dereference. This occurs when changing the Maximum Transmission Unit MTU on systems where the CM3 SRAM resource is not present,...
EUVD-2026-18679
In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: guard flow control update with globaltxfc in buffer switching mvpp2bmswitchbuffers unconditionally calls mvpp2bmpoolupdateprivfc when switching between per-cpu and shared buffer pool modes. This function programs CM3...
CVE-2026-23438
In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: guard flow control update with globaltxfc in buffer switching mvpp2bmswitchbuffers unconditionally calls mvpp2bmpoolupdateprivfc when switching between per-cpu and shared buffer pool modes. This function programs CM3...
SUSE CVE-2025-39988
In the Linux kernel, the following vulnerability has been resolved: can: etases58x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit function of a CAN driver. The only check which is performed by the...
PT-2025-42261
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the sun4i can driver within the Linux kernel where a missing check in the ndo change mtu function allows an attacker to configure an invalid MTU. This can be exploited b...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the etases58x driver's failure to implement the ndochangemtu function, which could lead to a buffer overflow...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the mcbausb driver's failure to implement the ndochangemtu function, which could lead to a buffer overflow...
DEBIAN-CVE-2022-49654
In the Linux kernel, the following vulnerability has been resolved: net: dsa: qca8k: reset cpu port on MTU change It was discovered that the Documentation lacks of a fundamental detail on how to correctly change the MAXFRAMESIZE of the switch. In fact if the MAXFRAMESIZE is changed while the cpu...
UBUNTU-CVE-2022-49654
In the Linux kernel, the following vulnerability has been resolved: net: dsa: qca8k: reset cpu port on MTU change It was discovered that the Documentation lacks of a fundamental detail on how to correctly change the MAXFRAMESIZE of the switch. In fact if the MAXFRAMESIZE is changed while the cpu...
CVE-2022-49654
CVE-2022-49654 pertains to the Linux kernel, specifically the net: dsa: qca8k component. The issue occurs when MAX_FRAME_SIZE (MTU) is changed while the CPU port is enabled, causing the switch to panic and stop sending packets, which can render the device unreachable; a switch reset may be requir...
SUSE CVE-2024-53209
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix receive ring space parameters when XDP is active The MTU setting at the time an XDP multi-buffer is attached determines whether the aggregation ring will be used and the rxskbfunc handler. This is done in...
AZL-57917 CVE-2024-53209 affecting package kernel for versions less than 6.6.85.1-1
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix receive ring space parameters when XDP is active The MTU setting at the time an XDP multi-buffer is attached determines whether the aggregation ring will be used and the rxskbfunc handler. This is done in...
DEBIAN-CVE-2024-53209
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix receive ring space parameters when XDP is active The MTU setting at the time an XDP multi-buffer is attached determines whether the aggregation ring will be used and the rxskbfunc handler. This is done in...