CVE-2025-22075 rtnetlink: Allocate vfinfo size for VF GUIDs when supported

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

CVE-2025-22075

CVE-2025-22075 affects the Linux kernel (netlink rtnetlink path) where VF port/node GUIDs were previously included in ifinfo messages but their size wasn’t accounted for when allocating netlink messages. The issue could produce a “Message too long” warning when many VFs are configured (for exampl...

CVE-2025-22075 rtnetlink: Allocate vfinfo size for VF GUIDs when supported

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

CVE-2025-22055 net: fix geneve_opt length integer overflow

In the Linux kernel, the following vulnerability has been resolved: net: fix geneveopt length integer overflow struct geneveopt uses 5 bit length for each single option, which means every vary size option should be smaller than 128 bytes. However, all current related Netlink policies cannot promi...

CVE-2025-22055

CVE-2025-22055 is a Linux kernel issue in net: geneve_opt length overflow. A 5-bit length (max 128 bytes) for each option can be abused by sending a 128-byte option to fake a zero-length option, enabling heap out-of-bounds read during parsing. Connected sources describe the root cause and show a ...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an RTNL contention condition in the SIOCBRADDIF and SIOCBRDELIF operations, which could lead to a deadlock...

Vulnerability of the dpll_nl_pin_get_dumpit() function in the drivers/dpll/dpll_netlink.c module – A DPLL driver for the Linux operating system that allows a hacker to cause a service failure.

Vulnerability of the dpllnlpingetdumpit function in the drivers/dpll/dpllnetlink.c module – The DPLL driver support in Linux kernels is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of the nfcgenl_dump_ses_done() function in the net/nfc/netlink.c module of the NFC subsystem of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the nfcgenldumpsesdone function in the net/nfc/netlink.c module of the NFC subsystem of the Linux kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

PT-2025-18469

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, specifically in the openvswitch component. The issue concerns the validation of nested key length in the set action, where it is no...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52927: netfilter: allow exp not to be removed in nfctfindexpectation bsc1239644. CVE-2024-35910: tcp: properly terminate timers for kernel sockets bsc1224489...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52927: netfilter: allow exp not to be removed in nfctfindexpectation bsc1239644. CVE-2024-35910: tcp: properly terminate timers for kernel sockets...

USN-7402-4 linux-azure, linux-azure-6.8, linux-nvidia-lowlatency vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - GPU drivers; - HID subsystem; - Media drivers; - JFS file system; - Network namespace; -...

USN-7402-3 linux-nvidia, linux-nvidia-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - GPU drivers; - HID subsystem; - Media drivers; - JFS file system; - Network namespace; -...

SUSE CVE-2025-21921

In the Linux kernel, the following vulnerability has been resolved: net: ethtool: netlink: Allow NULL nlattrs when getting a phydevice ethnlreqgetphydev is used to lookup a phydevice, in the case an ethtool netlink command targets a specific phydev within a netdev's topology. It takes as a...

SUSE CVE-2025-21938

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix 'scheduling while atomic' in mptcppmnlappendnewlocaladdr If multiple connection requests attempt to create an implicit mptcp endpoint in parallel, more than one caller may end up in mptcppmnlappendnewlocaladdr because...

USN-7402-2 linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - GPU drivers; - HID subsystem; - Media drivers; - JFS file system; - Network namespace; -...

USN-7402-1 linux, linux-aws, linux-gcp, linux-gke, linux-gkeop, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-oem-6.8, linux-oracle, linux-oracle-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - GPU drivers; - HID subsystem; - Media drivers; - JFS file system; - Network namespace; -...

DEBIAN-CVE-2025-21921

In the Linux kernel, the following vulnerability has been resolved: net: ethtool: netlink: Allow NULL nlattrs when getting a phydevice ethnlreqgetphydev is used to lookup a phydevice, in the case an ethtool netlink command targets a specific phydev within a netdev's topology. It takes as a...

UBUNTU-CVE-2025-21921

In the Linux kernel, the following vulnerability has been resolved: net: ethtool: netlink: Allow NULL nlattrs when getting a phydevice ethnlreqgetphydev is used to lookup a phydevice, in the case an ethtool netlink command targets a specific phydev within a netdev's topology. It takes as a...

UBUNTU-CVE-2025-21986

In the Linux kernel, the following vulnerability has been resolved: net: switchdev: Convert blocking notification chain to a raw one A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when adding / removing...