Lucene search
K

133 matches found

RedhatCVE
RedhatCVE
added 5 days ago7 views

CVE-2026-53077

A flaw was found in the Linux kernel's Reliable Datagram Sockets over InfiniBand RDS/IB component. This vulnerability allowed the use of RDS/IB in network namespaces other than the initial one, where the existing code would not function correctly. This improper operation could lead to unexpected...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
CVE
CVE
added last week5 views

CVE-2026-53077

The vulnerability CVE-2026-53077 affects the Linux kernel RDS/IB code: it restricted usage to the initial network namespace, with the non-initial namespaces not supported and the existing code likely malfunctioning. Multiple advisories note the issue has been resolved/patched (e.g., Debian/Ubuntu...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/22 1:54 p.m.8 views

CVE-2026-52909

A flaw was found in the Linux kernel, specifically within the IPv6 Virtual Tunnel Interface ip6vti component. This vulnerability occurs because a critical flag, netnsimmutable, is not properly set on a specific network device ip6vti0 when it is initialized. This oversight could allow the device t...

7.8CVSS5.8AI score0.00119EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.9 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net/sched: actct: fix ref leak when switching zones When switching zones or network namespaces without performing a ct clear between them, a reference to the old ct entry is still leaked. This occurs because tcfctskbnfctcached...

5.5CVSS6.1AI score0.00246EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bpf: Scrubbing packets on bpfredirectpeer When bpfredirectpeer is used to redirect packets to a device in another network namespace, the packets are not scrubbed. This can lead to information about the packets being “misused” in...

5.5CVSS6.4AI score0.00149EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/26 1:52 a.m.20 views

SUSE CVE-2026-48700

An issue was discovered in all versions of PCManFM-Qt starting from 1.1.0. When a regular file's path is passed as a URI in an org.freedesktop.FileManager1.ShowFolders D-Bus method call, PCManFM-Qt delegates to a different program based on the file type without user confirmation. This could be us...

9.3CVSS6.2AI score0.00181EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/06 10:36 p.m.8 views

CVE-2026-43234

A flaw was found in the Linux kernel's team driver. A local user can exploit this vulnerability by manipulating network devices and namespaces. Specifically, when a slave device is unregistered from a team interface while a NETDEVCHANGEMTU event is pending, it can lead to a deadlock or resource...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 2:51 p.m.6 views

CVE-2026-31692

A flaw was found in the Linux kernel's rtnetlink component. An unprivileged local user, leveraging a user namespace, can exploit a missing CAPNETADMIN capability check in the rtnlnewlink function. This allows the user to create paired network devices in arbitrary network namespaces, including the...

7.1CVSS5.9AI score0.00119EPSS
Exploits0References4
CVE
CVE
added 2026/04/30 10:34 a.m.24 views

CVE-2026-31692

In The Linux kernel, CVE-2026-31692 affects the rtnetlink path: the peer namespace CAP_NET_ADMIN check is missing in rtnl_newlink() when creating paired devices (e.g., veth, vxcan, netkit). This enables an unprivileged user with a user namespace to create interfaces in arbitrary network namespace...

5.5CVSS5.6AI score0.00119EPSS
Exploits0References3Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/04/23 8:4 a.m.6 views

netfilter: nf_conntrack_expect: skip expectations in other netns via proc

...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/22 7:20 p.m.7 views

CVE-2026-31496

A flaw was found in the Linux kernel's netfilter subsystem. This vulnerability allows a local user to potentially access or view network connection tracking expectations nfconntrackexpect from other network namespaces netns via the /proc filesystem. This could lead to information disclosure or a...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 1:54 p.m.15 views

CVE-2026-31496

Summary: CVE-2026-31496 affects the Linux kernel netfilter nf_conntrack_expect handling across network namespaces. The root cause is a failure to skip or isolate expectations that do not reside in the target netns, enabling a local user to access or view nf_conntrack_expect entries from other nam...

5.5CVSS5.6AI score0.00123EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the expectation in nfconntrackexpect that other network namespaces are skipped during proc dump,...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001105)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001105 advisory. A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function getnetnsbyid in net/core/netnamespace.c...

4.9CVSS6.3AI score0.00357EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002797)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002797 advisory. A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function getnetnsbyid in net/core/netnamespace.c...

4.9CVSS6.3AI score0.00357EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003172)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003172 advisory. A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function getnetnsbyid in net/core/netnamespace.c...

4.9CVSS6.3AI score0.00357EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989801)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989801 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix information leakage in /proc/net/ptype In one net namespace, after creating a packet...

7.1CVSS6.2AI score0.00222EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-2180

Malware in sbrugna...

7.8CVSS7.4AI score0.17841EPSS
Exploits1References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-0038

Malware in sbrugna...

7.1CVSS6AI score0.03564EPSS
Exploits1References16
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-55043

Malicious code in bioql PyPI...

5.5CVSS6AI score0.00246EPSS
Exploits0References5
Rows per page
Query Builder