kernel: ndisc: use RCU protection in ndisc_alloc_skb()

A vulnerability was found in the Linux kernel's IPv6 Neighbor Discovery NDISC subsystem, which manages network neighbor information. The issue arises from improper synchronization mechanisms when allocating socket buffers skbuff in the ndiscallocskb function. Specifically, the function can be...

SUSE CVE-2025-37998

In the Linux kernel, the following vulnerability has been resolved: openvswitch: Fix unsafe attribute parsing in outputuserspace This patch replaces the manual Netlink attribute iteration in outputuserspace with nlaforeachnested, which ensures that only well-formed attributes are processed...

DEBIAN-CVE-2025-37998

In the Linux kernel, the following vulnerability has been resolved: openvswitch: Fix unsafe attribute parsing in outputuserspace This patch replaces the manual Netlink attribute iteration in outputuserspace with nlaforeachnested, which ensures that only well-formed attributes are processed...

UBUNTU-CVE-2025-37998

In the Linux kernel, the following vulnerability has been resolved: openvswitch: Fix unsafe attribute parsing in outputuserspace This patch replaces the manual Netlink attribute iteration in outputuserspace with nlaforeachnested, which ensures that only well-formed attributes are processed...

CVE-2025-37998 openvswitch: Fix unsafe attribute parsing in output_userspace()

In the Linux kernel, the following vulnerability has been resolved: openvswitch: Fix unsafe attribute parsing in outputuserspace This patch replaces the manual Netlink attribute iteration in outputuserspace with nlaforeachnested, which ensures that only well-formed attributes are processed...

CVE-2025-37998

CVE-2025-37998: Open vSwitch Netlink attribute parsing is the vulnerability. The Debian/Amazon/Linux advisories confirm the issue exists in the Linux kernel openvswitch output_userspace path and fix by replacing the manual Netlink attribute iteration with nla_for_each_nested(), ensuring only well...

The vulnerabilities of the functions nla_alloc_flow_actions() and ovs_nla_free_set_action() in the net_openvswitch/flow_netlink.c module of the Linux kernel allow a attacker to cause a service failure.

The vulnerabilities of the functions nlaallocflowactions and ovsnlafreesetaction in the netopenvswitch/flownetlink.c module of the Linux kernel are related to memory leaks. Exploiting these vulnerabilities could allow an attacker to cause a service failure...

CVE-2024-26597

In the Linux kernel, the following vulnerability has been resolved: net: qualcomm: rmnet: fix global oob in rmnetpolicy The variable rmnetlinkops assign a bigger maxtype which leads to a global out-of-bounds read when parsing the netlink attributes. See bug trace below:...

CVE-2023-24294

Zumtobel Netlink CCD Onboard v3.74 - Firmware v3.80 was discovered to contain a buffer overflow via the component NetlinkWeb::Information::SetDeviceIdentification...

CVE-2023-23324

Zumtobel Netlink CCD Onboard 3.74 - Firmware 3.80 was discovered to contain hardcoded credentials for the Administrator account...

CVE-2023-23325

Zumtobel Netlink CCD Onboard 3.74 - Firmware 3.80 was discovered to contain a command injection vulnerability via the NetHostname parameter...

CVE-2020-0066

In the netlink driver, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-65025077...

CVE-2011-1070

v86d before 0.1.10 do not verify if received netlink messages are sent by the kernel. This could allow unprivileged users to manipulate the video mode and potentially other consequences...

CVE-2002-2323

Sun PC NetLink 1.0 through 1.2 does not properly set the access control list ACL for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions...

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47659: drm/plane: Move range check for formatcount earlier bsc1237839. CVE-2022-49044: dm integrity: fix memory corruption when tagsize is less than digest si...

Malicious code in fireblocks-netlink-v2-api-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 482068c6f9b5d8fd2076ed53124eac7c2d6c5e4237390c3280188cfaa7ad6554 The OpenSSF Package Analysis project identified 'fireblocks-netlink-v2-api-validator' @ 2.0.2 npm as malicious. It is considered malicious...

kernel: thermal: core: Reference count the zone in thermal_zone_get_by_id()

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Reference count the zone in thermalzonegetbyid There are places in the thermal netlink code where nothing prevents the thermal zone object from going away while being accessed after it has been returned by...

kernel: ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find()

In the Linux kernel, the following vulnerability has been resolved: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelfind The per-netns IP tunnel hash table is protected by the RTNL mutex and iptunnelfind is only called from the control path where the mutex is taken. Add a lockdep...

kernel: net: wwan: fix global oob in wwan_rtnl_policy

In the Linux kernel, the following vulnerability has been resolved: net: wwan: fix global oob in wwanrtnlpolicy The variable wwanrtnllinkops assign a bigger maxtype which leads to a global out-of-bounds read when parsing the netlink attributes. Exactly same bug cause as the oob fixed in commit...

kernel: wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix NL80211ATTRMLOLINKID off-by-one Since the netlink attribute range validation provides inclusive checking, the max of attribute NL80211ATTRMLOLINKID should be IEEE80211MLDMAXNUMLINKS - 1 otherwise causing an...