8849 matches found
Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-150600108 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708...
SUSE-SU-2025:20431-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_2
This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: - CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231 - CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708 - CVE-2024-50301:...
The vulnerability of the br_vlan_tunnel_lookup() function in the net/bridge/br_vlan_tunnel.c module, a component of the Linux kernel’s networking functions, allows a hacker to trigger a service failure.
The vulnerability of the brvlantunnellookup function in the net/bridge/brvlantunnel.c module, which is part of the Linux kernel’s networking functions, is related to the use of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the function ieee802154_llsec_parse_dev_addr() in the net/ieee802154/nl802154.c module, which is part of the networking functions in the Linux kernel, allows a hacker to cause a service failure.
The vulnerability of the function ieee802154llsecparsedevaddr in the net/ieee802154/nl802154.c module, which is part of the networking functions in the Linux kernel, is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the mptcp_get_options() function in the net/mptcp/options.c module, which is part of the Linux kernel’s networking functions, allows a hacker to cause a service failure.
The vulnerability of the mptcpgetoptions function in the net/mptcp/options.c module, which implements networking functions in the Linux kernel, relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the cfusbl_create() function in the net/caif/caif_usb.c module, which is part of the Linux kernel’s networking functions, allows a hacker to gain access to protected information.
The vulnerability of the cfusblcreate function in the net/caif/caifusb.c module, which implements kernel networking functions in the Linux operating system, is related to improper memory release before deleting the last reference „memory leak“. Exploiting this vulnerability may allow an attacker ...
The Trip to ZigBee Backscatter across a Decade, a Systematic Review
The field of backscatter communication has undergone a profound transformation, evolving from a niche technology for radio-frequency identification RFID into a sophisticated paradigm poised to enable a truly battery-free Internet of Things IoT. This evolution is built upon a deepening understandi...
CVE-2022-50070
In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...
USN-7585-2: Linux kernel (FIPS) vulnerabilities
It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...
USN-7585-2 linux-aws-fips, linux-gcp-fips vulnerabilities
It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...
CVE-2022-49979
In the Linux kernel, the following vulnerability has been resolved: net: fix refcount bug in skpsockget 2 Syzkaller reports refcount bug as follows: ------------ cut here ------------ refcountt: saturated; leaking memory. WARNING: CPU: 1 PID: 3605 at lib/refcount.c:19...
ALSA-2025:9143 Moderate: containernetworking-plugins security update
The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...
RHEL 9 : containernetworking-plugins (RHSA-2025:9143)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9143 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfaces in Lin...
RHSA-2025:9061 Red Hat Security Advisory: containernetworking-plugins security update
Bulletin has no description...
RHEL 9 : containernetworking-plugins (RHSA-2025:9061)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9061 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfaces in Lin...
SUSE-SU-2025:20408-1 Security update for the Linux Kernel
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52888: media: mediatek: vcodec: Only free buffer VA that is not NULL bsc1228557. - CVE-2024-46713: kabi fix for perf/aux: Fix AUX buffer...
CVE-2025-37100
A vulnerability in the APIs of HPE Aruba Networking Private 5G Core could potentially expose sensitive information to unauthorized users. A successful exploitation could allow an attacker to iteratively navigate through the filesystem and ultimately download protected system files containing...
RHEL 9 : containernetworking-plugins (RHSA-2025:9019)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9019 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfaces in Lin...
CVE-2025-37100
A vulnerability in the APIs of HPE Aruba Networking Private 5G Core could potentially expose sensitive information to unauthorized users. A successful exploitation could allow an attacker to iteratively navigate through the filesystem and ultimately download protected system files containing...
CVE-2025-37100 Exposure of Sensitive Information to an Unauthorized User in HPE Aruba Networking Private 5G Core
A vulnerability in the APIs of HPE Aruba Networking Private 5G Core could potentially expose sensitive information to unauthorized users. A successful exploitation could allow an attacker to iteratively navigate through the filesystem and ultimately download protected system files containing...