Lucene search
K

43 matches found

Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.10 views

PT-2026-52325

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.0-rc6 Description A slab-out-of-bounds issue exists in the mlx5 query nic vport mac list function. The function determines the size of the firmware command buffer based on the Physical Function PF log max...

8.7CVSS6.2AI score0.00131EPSS
Exploits0References13
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.21 views

CVE-2026-23440 net/mlx5e: Fix race condition during IPSec ESN update

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix race condition during IPSec ESN update In IPSec full offload mode, the device reports an ESN Extended Sequence Number wrap event to the driver. The driver validates this event by querying the IPSec ASO and checking...

7.5CVSS0.00206EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/25 3:20 p.m.4 views

kernel: net/mlx5e: Check for NOT_READY flag state after locking

A race condition was found in the Linux kernel Mellanox mlx5 network driver's traffic control offload flow management. A local user with privileges to configure traffic control flower filters can trigger concurrent flow deletion operations where the NOTREADY flag is checked before acquiring the...

4.7CVSS7.2AI score0.00105EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/12 3:15 p.m.6 views

kernel: net/mlx5e: Check for NOT_READY flag state after locking

A race condition was found in the Linux kernel Mellanox mlx5 network driver's traffic control offload flow management. A local user with privileges to configure traffic control flower filters can trigger concurrent flow deletion operations where the NOTREADY flag is checked before acquiring the...

4.7CVSS7.2AI score0.00105EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/28 12:26 a.m.4 views

kernel: net/mlx5e: Check for NOT_READY flag state after locking

A race condition was found in the Linux kernel Mellanox mlx5 network driver's traffic control offload flow management. A local user with privileges to configure traffic control flower filters can trigger concurrent flow deletion operations where the NOTREADY flag is checked before acquiring the...

4.7CVSS7.2AI score0.00105EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003652)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003652 advisory. A memory leak in the mlx5fwfatalreporterdump function in drivers/net/ethernet/mellanox/mlx5/core/health.c in the Linux kernel before 5.3.11 allows attackers to cause...

5.5CVSS6.6AI score0.00529EPSS
Exploits0References7
Redos
Redos
added 2026/01/12 12:0 a.m.6 views

ROS-20260112-7382

A vulnerability in the mlx5ehandlerxcqempwrqshampo function of the Mellanox Ethernet network adapter driver in the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.6AI score0.0021EPSS
Exploits0
Redos
Redos
added 2025/11/11 12:0 a.m.4 views

ROS-20251111-03

Vulnerability of mlx5 driver Poll Mode Driver of DPDK package is related to incorrect data processing when working with Mellanox network devices. with Mellanox network devices. Exploitation of the vulnerability could allow an attacker, remotely to cause information disclosure or denial of service...

6.5CVSS6AI score0.00276EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 1:33 p.m.4 views

CVE-2023-53398

In the Linux kernel, the following vulnerability has been resolved: mlx5: fix possible ptp queue fifo use-after-free Fifo indexes are not checked during pop operations and it leads to potential use-after-free when poping from empty queue. Such case was possible during re-sync action. WARNONONCE...

7.8CVSS6.2AI score0.00137EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-19047

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak in the mlx5fwfatalreporterdump function in drivers/net/ethernet/mellanox/mlx5/core/health.c in the Linux kernel before 5.3.11 allows attackers to...

5.5CVSS6.5AI score0.00529EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

Vulnerability of the mlx5e_rep_neigh_update() function in the drivers/net/ethernet/mellanox/mlx5/core/en/rep/neigh.c module – A driver for supporting Mellanox Ethernet network adapters in the Linux operating system, which allows a hacker to cause a service failure

Vulnerability of the mlx5erepneighupdate function in the drivers/net/ethernet/mellanox/mlx5/core/en/rep/neigh.c module – The Mellanox Ethernet network adapter driver for the Linux operating system is vulnerable due to the reutilization of previously freed memory. Exploiting this vulnerability cou...

7.8CVSS6.4AI score0.00227EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.9 views

The vulnerability of the mlx5_eswitch_offloads_single_fdb_add_one() function in the drivers/net/ethernet/mellanox/mlx5/core/eswitch.h module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the mlx5eswitchoffloadssinglefdbaddone function in the drivers/net/ethernet/mellanox/mlx5/core/eswitch.h module of the Linux kernel is related to insufficient resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS6.1AI score0.00183EPSS
Exploits0References11Affected Software2
RedHat Linux
RedHat Linux
added 2025/03/19 12:52 a.m.4 views

kernel: net/mlx5e: Prevent deadlock while disabling aRFS

A flaw was found in the Linus Kernel. A potential deadlock can occur while disabling aRFS in drivers/net/ethernet/mellanox/mlx5/core/enarfs.c...

5.5CVSS6.8AI score0.00175EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/03/19 12:0 a.m.6 views

The vulnerability of the mlx5e_arfs_enable() function in the drivers/net/ethernet/mellanox/mlx5/core/en_arfs.c file of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the mlx5earfsenable function in the drivers/net/ethernet/mellanox/mlx5/core/enarfs.c file of the Linux kernel is related to insufficient resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS6.7AI score0.00175EPSS
Exploits0References17Affected Software7
SUSE CVE
SUSE CVE
added 2025/03/01 2:52 a.m.3 views

SUSE CVE-2025-21800

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, fix definer's HWSSET32 macro for negative offset When bit offset for HWSSET32 macro is negative, UBSAN complains about the shift-out-of-bounds: UBSAN: shift-out-of-bounds in...

5.5CVSS7.8AI score0.00201EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.4 views

The vulnerability of the mlx5_eswitch_add_termtbl_rule() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the mlx5eswitchaddtermtblrule function in the drivers/net/ethernet/mellanox/mlx5/core/eswitchoffloadstermtbl.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS6.4AI score0.00248EPSS
Exploits0References14Affected Software2
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.3 views

kernel: net/mlx5e: Prevent deadlock while disabling aRFS

A flaw was found in the Linus Kernel. A potential deadlock can occur while disabling aRFS in drivers/net/ethernet/mellanox/mlx5/core/enarfs.c...

5.5CVSS6.8AI score0.00175EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/11/08 12:0 a.m.8 views

The vulnerability of the mlx5e component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the mlx5e component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00196EPSS
Exploits0References12Affected Software4
RedHat Linux
RedHat Linux
added 2024/11/05 12:54 a.m.8 views

kernel: mlxsw: spectrum_acl_erp: Fix object nesting warning

A flaw incorrect memory access in the Linux kernel Mellanox network Ethernet or RDMA device driver was found. A local user could use this flaw to crash the system...

5.5CVSS7.2AI score0.00218EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/21 12:34 a.m.7 views

kernel: net/mlx5e: Fix netif state handling

A vulnerability was found in the Linux kernel within the net/mlx5e component, where improper handling of network interface states could lead to a NULL pointer dereference or resource leaks if network registration fails during initialization. This condition could cause system instability, as...

5.5CVSS7.1AI score0.00188EPSS
Exploits0References5
Rows per page
Query Builder