2827 matches found
SUSE CVE-2025-21716
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...
SUSE CVE-2025-21717
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: add missing cputonode to kvzallocnode in mlx5eopenxdpredirectsq kvzallocnode is not doing a runtime check on the node argument allocpagesnodenoprof does have a VMBUGON, but it expands to nothing on !CONFIGDEBUGVM build...
SUSE CVE-2025-21763
In the Linux kernel, the following vulnerability has been resolved: neighbour: use RCU protection in neighnotify neighnotify can be called without RTNL or RCU protection. Use RCU protection to avoid potential UAF...
AZL-69485 CVE-2025-21801 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: net: ravb: Fix missing rtnl lock in suspend/resume path Fix the suspend/resume path by ensuring the rtnl lock is held where required. Calls to ravbopen, ravbclose and wol operations must be performed under the rtnl lock to preven...
UBUNTU-CVE-2025-21812
In the Linux kernel, the following vulnerability has been resolved: ax25: rcu protect dev-ax25ptr syzbot found a lockdep issue 1. We should remove ax25 RTNL dependency in ax25setsockopt This should also fix a variety of possible UAF in ax25. 1 WARNING: possible circular locking dependency detecte...
USN-7294-2 linux-aws, linux-oracle, linux-oracle-5.4 vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - ACPI drivers; - Drivers core; - ATA over ethernet AOE driver; - TPM...
DEBIAN-CVE-2025-21758
In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: add RCU protection to mldnewpack mldnewpack can be called without RTNL or RCU being held. Note that we no longer can use sockallocsendskb because ipv6.igmpsk uses GFPKERNEL allocations which can sleep. Instead use...
UBUNTU-CVE-2025-21762
In the Linux kernel, the following vulnerability has been resolved: arp: use RCU protection in arpxmit arpxmit can be called without RTNL or RCU protection. Use RCU protection to avoid potential UAF...
SUSE CVE-2022-49197
In the Linux kernel, the following vulnerability has been resolved: afnetlink: Fix shift out of bounds in group mask calculation When a netlink message is received, netlinkrecvmsg fills in the address of the sender. One of the fields is the 32-bit bitfield nlgroups, which carries the multicast...
SUSE CVE-2022-49295
In the Linux kernel, the following vulnerability has been resolved: nbd: call genlunregisterfamily first in nbdcleanup Otherwise there may be race between module removal and the handling of netlink command, which can lead to the oops as shown below: BUG: kernel NULL pointer dereference, address:...
CVE-2025-21716
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...
DEBIAN-CVE-2025-21716
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...
DEBIAN-CVE-2025-21706
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only set fullmesh for subflow endp With the in-kernel path-manager, it is possible to change the 'fullmesh' flag. The code in mptcppmnlfullmesh expects to change it only on 'subflow' endpoints, to recreate more or less...
UBUNTU-CVE-2025-21716
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...
CVE-2025-21716 vxlan: Fix uninit-value in vxlan_vnifilter_dump()
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...
CVE-2025-21716 vxlan: Fix uninit-value in vxlan_vnifilter_dump()
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...
CVE-2025-21716
In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not holding an rtnl lock in the suspend/resume path, which could lead to a conflict...
PT-2025-8800 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the kvzalloc node function not performing a runtime check on the node argument, which can lead to...
USN-7294-1 linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-ibm-5.4 vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - ACPI drivers; - Drivers core; - ATA over ethernet AOE driver; - TPM...