Lucene search
K

8849 matches found

SUSE Linux
SUSE Linux
added 2025/06/23 8:3 p.m.2 views

Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-150600108 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708...

8.5CVSS7.6AI score0.00272EPSS
Exploits0References44
OSV
OSV
added 2025/06/23 3:27 p.m.5 views

SUSE-SU-2025:20431-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_2

This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: - CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231 - CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708 - CVE-2024-50301:...

7.8CVSS6.7AI score0.00272EPSS
Exploits0References23
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.23 views

The vulnerability of the br_vlan_tunnel_lookup() function in the net/bridge/br_vlan_tunnel.c module, a component of the Linux kernel’s networking functions, allows a hacker to trigger a service failure.

The vulnerability of the brvlantunnellookup function in the net/bridge/brvlantunnel.c module, which is part of the Linux kernel’s networking functions, is related to the use of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00236EPSS
Exploits0References16Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.4 views

The vulnerability of the function ieee802154_llsec_parse_dev_addr() in the net/ieee802154/nl802154.c module, which is part of the networking functions in the Linux kernel, allows a hacker to cause a service failure.

The vulnerability of the function ieee802154llsecparsedevaddr in the net/ieee802154/nl802154.c module, which is part of the networking functions in the Linux kernel, is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00226EPSS
Exploits0References18Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the mptcp_get_options() function in the net/mptcp/options.c module, which is part of the Linux kernel’s networking functions, allows a hacker to cause a service failure.

The vulnerability of the mptcpgetoptions function in the net/mptcp/options.c module, which implements networking functions in the Linux kernel, relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

6.2CVSS6.1AI score0.00269EPSS
Exploits0References10Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the cfusbl_create() function in the net/caif/caif_usb.c module, which is part of the Linux kernel’s networking functions, allows a hacker to gain access to protected information.

The vulnerability of the cfusblcreate function in the net/caif/caifusb.c module, which implements kernel networking functions in the Linux operating system, is related to improper memory release before deleting the last reference „memory leak“. Exploiting this vulnerability may allow an attacker ...

5.5CVSS5.9AI score0.00228EPSS
Exploits0References21Affected Software1
Packet Storm News
Packet Storm News
added 2025/06/21 12:0 a.m.3 views

The Trip to ZigBee Backscatter across a Decade, a Systematic Review

The field of backscatter communication has undergone a profound transformation, evolving from a niche technology for radio-frequency identification RFID into a sophisticated paradigm poised to enable a truly battery-free Internet of Things IoT. This evolution is built upon a deepening understandi...

6.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/20 8:5 a.m.5 views

CVE-2022-50070

In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...

7CVSS7AI score0.00211EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2025/06/19 9:8 p.m.8 views

USN-7585-2: Linux kernel (FIPS) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00246EPSS
Exploits0
OSV
OSV
added 2025/06/19 9:8 p.m.5 views

USN-7585-2 linux-aws-fips, linux-gcp-fips vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.8AI score0.00246EPSS
Exploits0References33
Debian CVE
Debian CVE
added 2025/06/18 11:0 a.m.5 views

CVE-2022-49979

In the Linux kernel, the following vulnerability has been resolved: net: fix refcount bug in skpsockget 2 Syzkaller reports refcount bug as follows: ------------ cut here ------------ refcountt: saturated; leaking memory. WARNING: CPU: 1 PID: 3605 at lib/refcount.c:19...

5.5CVSS5.5AI score0.00201EPSS
Exploits0
OSV
OSV
added 2025/06/17 12:0 a.m.5 views

ALSA-2025:9143 Moderate: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

9.1CVSS8AI score0.00724EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/06/17 12:0 a.m.2 views

RHEL 9 : containernetworking-plugins (RHSA-2025:9143)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9143 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfaces in Lin...

9.1CVSS7.2AI score0.00724EPSS
Exploits0References5
OSV
OSV
added 2025/06/16 10:2 a.m.3 views

RHSA-2025:9061 Red Hat Security Advisory: containernetworking-plugins security update

Bulletin has no description...

5.4CVSS7.8AI score0.00724EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

RHEL 9 : containernetworking-plugins (RHSA-2025:9061)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9061 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfaces in Lin...

9.1CVSS7.2AI score0.00724EPSS
Exploits0References5
OSV
OSV
added 2025/06/15 1:6 p.m.4 views

SUSE-SU-2025:20408-1 Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52888: media: mediatek: vcodec: Only free buffer VA that is not NULL bsc1228557. - CVE-2024-46713: kabi fix for perf/aux: Fix AUX buffer...

7.8CVSS6.8AI score0.00618EPSS
Exploits3References381
RedhatCVE
RedhatCVE
added 2025/06/12 3:21 p.m.5 views

CVE-2025-37100

A vulnerability in the APIs of HPE Aruba Networking Private 5G Core could potentially expose sensitive information to unauthorized users. A successful exploitation could allow an attacker to iteratively navigate through the filesystem and ultimately download protected system files containing...

7.7CVSS7.2AI score0.00406EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/06/12 12:0 a.m.4 views

RHEL 9 : containernetworking-plugins (RHSA-2025:9019)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9019 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfaces in Lin...

9.1CVSS7.2AI score0.00724EPSS
Exploits0References5
NVD
NVD
added 2025/06/10 3:15 p.m.7 views

CVE-2025-37100

A vulnerability in the APIs of HPE Aruba Networking Private 5G Core could potentially expose sensitive information to unauthorized users. A successful exploitation could allow an attacker to iteratively navigate through the filesystem and ultimately download protected system files containing...

7.7CVSS0.00406EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/10 3:5 p.m.2 views

CVE-2025-37100 Exposure of Sensitive Information to an Unauthorized User in HPE Aruba Networking Private 5G Core

A vulnerability in the APIs of HPE Aruba Networking Private 5G Core could potentially expose sensitive information to unauthorized users. A successful exploitation could allow an attacker to iteratively navigate through the filesystem and ultimately download protected system files containing...

7.7CVSS7.3AI score0.00406EPSS
Exploits0References1
Rows per page
Query Builder