Lucene search
K

169 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2025-29057

Malicious code in bioql PyPI...

6.3AI score0.00147EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-11216

Malicious code in bioql PyPI...

7.3AI score0.00174EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/09/14 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-39797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi...

7.8CVSS7.2AI score0.00147EPSS
Exploits0References4
NVD
NVD
added 2025/09/12 4:15 p.m.9 views

CVE-2025-39797

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS0.00147EPSS
Exploits0References5
OSV
OSV
added 2025/09/12 4:15 p.m.12 views

AZL-70760 CVE-2025-39797 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS5.8AI score0.00147EPSS
Exploits0References1
NVD
NVD
added 2025/08/19 5:15 p.m.10 views

CVE-2025-38588

In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent infinite loop in rt6nlmsgsize While testing prior patch, I was able to trigger an infinite loop in rt6nlmsgsize in the following place: listforeachentryrcusibling, &f6i-fib6siblings, fib6siblings...

5.5CVSS0.00147EPSS
Exploits0References7
CVE
CVE
added 2025/08/19 5:3 p.m.47 views

CVE-2025-38588

CVE-2025-38588 affects the Linux kernel IPv6 path: an infinite loop in rt6_nlmsg_size() due to list_del_rcu() interactions with rt6_nh structures, potentially causing denial of service. The patch reworks the loop by restarting when f6i->fib6_nsiblings is zero, and kernel live patches/advisorie...

5.5CVSS7.1AI score0.00147EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2025/08/19 5:3 p.m.4 views

CVE-2025-38588

In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent infinite loop in rt6nlmsgsize While testing prior patch, I was able to trigger an infinite loop in rt6nlmsgsize in the following place: listforeachentryrcusibling, &f6i-fib6siblings, fib6siblings...

5.5CVSS5.3AI score0.00147EPSS
Exploits0
Broadcom
Broadcom
added 2025/07/08 12:0 a.m.19 views

Linux Kernel IPv6 Segment Routing Vulnerable to Out-of-Bounds Read via Crafted Netlink Message in SRv6 Layer

IPv6 Segment Routing SRv6 is vulnerable to an out-of-bounds read when setting HMAC data due to a lack of validation in the SEG6ATTRSECRETLEN attribute. This could allow an attacker to read up to 64 bytes of data past the skb end pointer and into skbsharedinfo, potentially leading to information...

5.5CVSS6.5AI score0.00242EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 9:52 a.m.6 views

CVE-2011-1070

v86d before 0.1.10 do not verify if received netlink messages are sent by the kernel. This could allow unprivileged users to manipulate the video mode and potentially other consequences...

7.8CVSS6.8AI score0.00372EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 3:16 p.m.16 views

CVE-2025-22075

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

5.5CVSS0.00174EPSS
Exploits0References10
CVE
CVE
added 2025/04/16 2:12 p.m.133 views

CVE-2025-22075

CVE-2025-22075 affects the Linux kernel (netlink rtnetlink path) where VF port/node GUIDs were previously included in ifinfo messages but their size wasn’t accounted for when allocating netlink messages. The issue could produce a “Message too long” warning when many VFs are configured (for exampl...

5.5CVSS6.4AI score0.00174EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2025/04/16 2:12 p.m.14 views

CVE-2025-22075 rtnetlink: Allocate vfinfo size for VF GUIDs when supported

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

0.00174EPSS
Exploits0References8
OSV
OSV
added 2025/04/16 2:12 p.m.14 views

CVE-2025-22075 rtnetlink: Allocate vfinfo size for VF GUIDs when supported

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

5.5CVSS6.1AI score0.00174EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49197

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - afnetlink: Fix shift out of bounds in group mask calculation When a netlink message is received, netlinkrecvmsg fills in the address of the sender. One of the...

5.5CVSS6.1AI score0.00259EPSS
Exploits0References3
NVD
NVD
added 2025/02/27 2:15 a.m.11 views

CVE-2025-21716

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...

5.5CVSS0.00187EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/02/27 2:7 a.m.12 views

CVE-2025-21716 vxlan: Fix uninit-value in vxlan_vnifilter_dump()

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...

0.00187EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/02/27 2:7 a.m.7 views

CVE-2025-21716

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...

5.5CVSS5.6AI score0.00187EPSS
Exploits0
NVD
NVD
added 2025/02/26 7:0 a.m.12 views

CVE-2022-49197

In the Linux kernel, the following vulnerability has been resolved: afnetlink: Fix shift out of bounds in group mask calculation When a netlink message is received, netlinkrecvmsg fills in the address of the sender. One of the fields is the 32-bit bitfield nlgroups, which carries the multicast...

5.5CVSS0.00259EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/02/26 1:55 a.m.19 views

CVE-2022-49197 af_netlink: Fix shift out of bounds in group mask calculation

In the Linux kernel, the following vulnerability has been resolved: afnetlink: Fix shift out of bounds in group mask calculation When a netlink message is received, netlinkrecvmsg fills in the address of the sender. One of the fields is the 32-bit bitfield nlgroups, which carries the multicast...

0.00259EPSS
Exploits0References9
Rows per page
Query Builder