Lucene search
K

127 matches found

NVD
NVD
added 2025/06/06 1:15 p.m.11 views

CVE-2025-38000

In the Linux kernel, the following vulnerability has been resolved: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue When enqueuing the first packet to an HFSC class, hfscenqueue calls the child qdisc's peek operation before incrementing sch-q.qlen and sch-qstats.backlog. If the...

7.8CVSS0.00179EPSS
Exploits0References10
OSV
OSV
added 2025/06/06 1:15 p.m.3 views

UBUNTU-CVE-2025-38000

In the Linux kernel, the following vulnerability has been resolved: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue When enqueuing the first packet to an HFSC class, hfscenqueue calls the child qdisc's peek operation before incrementing sch-q.qlen and sch-qstats.backlog. If the...

7.8CVSS6.2AI score0.00179EPSS
Exploits0References42
CVE
CVE
added 2025/06/06 1:3 p.m.160 views

CVE-2025-38000

CVE-2025-38000 affects the Linux kernel HFSC scheduler qlen accounting: when enqueuing the first packet, hfsc_enqueue() previously used child qdisc peek() before updating sch->q.qlen and sch->qstats.backlog, which could trigger a dequeue and leave the HFSC class in an inconsistent state (po...

7.8CVSS6.6AI score0.00179EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2025/06/06 1:3 p.m.6 views

CVE-2025-38000 sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()

In the Linux kernel, the following vulnerability has been resolved: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue When enqueuing the first packet to an HFSC class, hfscenqueue calls the child qdisc's peek operation before incrementing sch-q.qlen and sch-qstats.backlog. If the...

7.8CVSS6.1AI score0.00179EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/05/22 12:0 a.m.14 views

PT-2025-24197

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A bug in the Linux kernel's HFSC qdisc has been identified, which can lead to inconsistent queue accounting. This occurs when the hfsc enqueue function calls the child qdisc's peek...

7.8CVSS5.5AI score0.00179EPSS
Exploits0
CVE
CVE
added 2025/04/16 2:12 p.m.141 views

CVE-2025-22058

CVE-2025-22058 affects the Linux kernel UDP memory accounting. When INT_MAX was used for SO_RCVBUF, an overflow in udp_rmem_release() could wrap the total UDP memory, causing memory accounting to double after socket close and potentially leading to packet drops once rmem_alloc exceeded net.ipv4.u...

5.5CVSS6.1AI score0.00177EPSS
Exploits0References10Affected Software1
SUSE CVE
SUSE CVE
added 2025/04/02 1:29 p.m.11 views

SUSE CVE-2025-21903

In the Linux kernel, the following vulnerability has been resolved: mctp i3c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is...

5.5CVSS7.8AI score0.00187EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.23 views

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2025-096)

The version of kernel installed on the remote host is prior to 5.4.290-205.405. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-096 advisory. Insufficient control flow management for the IntelR 82599 Ethernet Controllers and Adapters may allow an...

7.8CVSS6.2AI score0.00283EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2025/02/18 2:37 p.m.11 views

CVE-2025-21702

In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's queue and decrease scheduler's qlen by one. Then, pfifotailenqueue...

7.8CVSS5.6AI score0.00256EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/02/01 3:47 a.m.5 views

SUSE CVE-2025-21676

In the Linux kernel, the following vulnerability has been resolved: net: fec: handle pagepooldevallocpages error The fecenetupdatecbd function calls pagepooldevallocpages but did not handle the case when it returned NULL. There was a WARNON!newpage but it would still proceed to use the NULL point...

4.7CVSS7.6AI score0.002EPSS
Exploits0References13
NVD
NVD
added 2025/01/31 12:15 p.m.17 views

CVE-2025-21676

In the Linux kernel, the following vulnerability has been resolved: net: fec: handle pagepooldevallocpages error The fecenetupdatecbd function calls pagepooldevallocpages but did not handle the case when it returned NULL. There was a WARNON!newpage but it would still proceed to use the NULL point...

5.5CVSS0.002EPSS
Exploits0References4
OSV
OSV
added 2025/01/31 12:15 p.m.3 views

DEBIAN-CVE-2025-21676

In the Linux kernel, the following vulnerability has been resolved: net: fec: handle pagepooldevallocpages error The fecenetupdatecbd function calls pagepooldevallocpages but did not handle the case when it returned NULL. There was a WARNON!newpage but it would still proceed to use the NULL point...

5.5CVSS5.7AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2025/01/31 12:15 p.m.3 views

UBUNTU-CVE-2025-21676

In the Linux kernel, the following vulnerability has been resolved: net: fec: handle pagepooldevallocpages error The fecenetupdatecbd function calls pagepooldevallocpages but did not handle the case when it returned NULL. There was a WARNON!newpage but it would still proceed to use the NULL point...

5.5CVSS6.2AI score0.002EPSS
Exploits0References16
OSV
OSV
added 2025/01/31 11:25 a.m.10 views

CVE-2025-21676 net: fec: handle page_pool_dev_alloc_pages error

In the Linux kernel, the following vulnerability has been resolved: net: fec: handle pagepooldevallocpages error The fecenetupdatecbd function calls pagepooldevallocpages but did not handle the case when it returned NULL. There was a WARNON!newpage but it would still proceed to use the NULL point...

5.5CVSS6AI score0.002EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/11/20 3:49 a.m.5 views

SUSE CVE-2024-53043

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is...

5.5CVSS7.7AI score0.00244EPSS
Exploits0References13
OSV
OSV
added 2024/11/19 6:15 p.m.1 views

DEBIAN-CVE-2024-53043

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is...

5.5CVSS5.6AI score0.00244EPSS
Exploits0References1
OSV
OSV
added 2024/11/19 6:15 p.m.3 views

UBUNTU-CVE-2024-53043

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is...

5.5CVSS6.2AI score0.00244EPSS
Exploits0References19
OSV
OSV
added 2024/11/07 10:15 a.m.1 views

UBUNTU-CVE-2024-50145

In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...

5.5CVSS6.6AI score0.00226EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2024/10/23 1:22 p.m.3 views

SUSE CVE-2024-49997

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiqetop: fix memory disclosure When applying padding, the buffer is not zeroed, which results in memory disclosure. The mentioned data is observed on the wire. This patch uses skbputpadto to pad Ethernet frames...

5.5CVSS7.8AI score0.01087EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/08/23 2:53 a.m.3 views

SUSE CVE-2022-48911

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfqueue: fix possible use-after-free Eric Dumazet says: The sockhold side seems suspect, because there is no guarantee that skrefcnt is not already 0. On failure, we cannot queue the packet and need to indicate an erro...

7CVSS6.3AI score0.00207EPSS
Exploits0References31
Rows per page
Query Builder