EUVD-2026-5215

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

CVE-2026-1788 Buffer Overflow in Xquic Server

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

PT-2026-5770

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

CVE-2026-1788

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

CVE-2025-71156

In the Linux kernel, the following vulnerability has been resolved: gve: defer interrupt enabling until NAPI registration Currently, interrupts are automatically enabled immediately upon request. This allows interrupt to fire before the associated NAPI context is fully initialized and cause...

Juniper Networks Junos OS security vulnerabilities

Juniper Networks Junos OS is a network operating system specifically designed for hardware devices of the company Juniper Networks. This operating system provides secure programming interfaces and the Junos SDK. Vulnerabilities exist in versions prior to Junos OS 21.2R3-S9, versions 21.4 to...

CVE-2023-4809

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not be recognized as the correct ultimate payload. Instead a...

CVE-2022-33213

Memory corruption in modem due to buffer overflow while processing a PPP packet...

PT-2026-6165

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s GUE Generic UDP Encapsulation protocol handler contains a memory leak when processing packets with an inner IP protocol of 0. The issue occurs because gue udp recv...

CVE-2023-54181 bpf: Fix issue in verifying allow_ptr_leaks

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix issue in verifying allowptrleaks After we converted the capabilities of our networking-bpf program from capsysadmin to capnetadmin+capbpf, our networking-bpf program failed to start. Because it failed the bpf verifier, a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992660)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992660 advisory. In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix overwriting ct original tuple for ICMPv6 OVSPACKETCMDEXECUTE has 3 main...

SUSE CVE-2023-54155

In the Linux kernel, the following vulnerability has been resolved: net: core: remove unnecessary framesz check in bpfxdpadjusttail Syzkaller reported the following issue: ======================================= Too BIG xdp-framesz = 131072 WARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121...

CLSA-2025-1765902454 unbound: Fix of CVE-2024-8508

CVE-2024-8508: limit number of name compression calculations per packet to prevent denial of service attacks...

CVE-2025-40264

The CVE-2025-40264 issue affects the Linux kernel be2net code path with OS2BMC. be_insert_vlan_in_pkt() could dereference a NULL wrb_params at the be_send_pkt_to_bmc() call site, due to the wrb_params not being passed from be_xmit(); this could lead to a NULL pointer dereference. The fix involves...

Siemens SIPROTEC 5 Allocation of Resources Without Limits or Throttling (CVE-2025-40570)

Affected devices do not properly limit the bandwidth for incoming network packets over their local USB port. This could allow an attacker with physical access to send specially crafted packets with high bandwidth to the affected devices thus forcing them to exhaust their memory and stop respondin...

CLSA-2025-1762181946 frr: Fix of CVE-2023-38406

CVE-2023-38406: fix BGP Flowspec NLRI overflow vulnerability where zero-length packets could cause packet processing errors...

Security update for ruby2.5

This update for ruby2.5 fixes the following issues: CVE-2025-24294: resolv: insufficient checks on the length of a decompressed domain name when processing a DNS packet can lead to a denial of service due to excessive resource consumption bsc1246430. Patch Instructions: To install this SUSE updat...

CVE-2025-55092

In Eclipse Foundation NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxipv4optionprocess when processing an IPv4 packet with the timestamp option...

CVE-2025-39983

CVE-2025-39983 is a Linux kernel vulnerability affecting Bluetooth HCI code. The issue is a use-after-free (UAF) in hci_conn_tx_dequeue caused by insufficient locking of the hdev during processing of HCI_EV_NUM_COMP_PKTS, leading to a KASAN report in hci_conn.c:3036. Connected advisories (RHSA-20...

PT-2025-42259

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a use-after-free issue identified through syzbot reporting. The issue occurs after commit e6d5dbdd20aa, which added multi-buff support for XDP running in gener...