Lucene search
K

24002 matches found

EUVD
EUVD
added 2026/04/25 8:46 a.m.4 views

EUVD-2026-25643

In the Linux kernel, the following vulnerability has been resolved: rxrpc: only handle RESPONSE during service challenge Only process RESPONSE packets while the service connection is still in RXRPCCONNSERVICECHALLENGING. Check that state under statelock before running response verification and...

5.4AI score0.00389EPSS
Exploits0References3
CVE
CVE
added 2026/04/25 8:46 a.m.20 views

CVE-2026-31675

CVE-2026-31675 — Linux kernel netem out-of-bounds in packet corruption The issue arises in net/sched: sch_netem where the packet corruption logic selects an index into skb->data using get_random_u32_below(skb_headlen(skb)). For AF_PACKET TX_RING sending fully non-linear packets over an IPIP tu...

7.8CVSS5.6AI score0.00126EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2026/04/25 8:46 a.m.5 views

CVE-2026-31675

In the Linux kernel, the following vulnerability has been resolved: net/sched: schnetem: fix out-of-bounds access in packet corruption In netemenqueue, the packet corruption logic uses getrandomu32belowskbheadlenskb to select an index for modifying skb-data. When an AFPACKET TXRING sends fully...

7.8CVSS5.4AI score0.00126EPSS
Exploits0
OSV
OSV
added 2026/04/25 5:48 a.m.6 views

OESA-2026-2014 firebird security update

Firebird is a relational database offering many ANSI SQL standard features that runs on Linux, Windows, MacOS and a variety of Unix platforms. Firebird offers excellent concurrency, high performance, and powerful language support for stored procedures and triggers. It has been used in production...

9.9CVSS6.8AI score0.01133EPSS
Exploits8References10
Fedora
Fedora
added 2026/04/25 1:51 a.m.9 views

[SECURITY] Fedora 44 Update: bpfman-0.5.4-7.fc44

bpfman operates as an eBPF manager, focusing on simplifying the deployment and administration of eBPF programs...

8.7CVSS5.2AI score0.005EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2026/04/25 1:39 a.m.7 views

SUSE CVE-2026-31552

In the Linux kernel, the following vulnerability has been resolved: wifi: wlcore: Return -ENOMEM instead of -EAGAIN if there is not enough headroom Since upstream commit e75665dd0968 "wifi: wlcore: ensure skb headroom before skbpush", wl1271txallocate and with it wl1271preparetxframe returns...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.5 views

SUSE CVE-2026-31633

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix integer overflow in rxgkverifyresponse In rxgkverifyresponse, there's a potential integer overflow due to rounding up tokenlen before checking it, thereby allowing the length check to be bypassed. Fix this by checking...

9.8CVSS5.5AI score0.00469EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.3 views

SUSE CVE-2026-31635

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE...

7.5CVSS5.4AI score0.00817EPSS
Exploits4References3
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.6 views

SUSE CVE-2026-31638

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Only put the call ref if one was acquired rxrpcinputpacketonconn can process a to-client packet after the current client call on the channel has already been torn down. In that case chan-call is NULL, rxrpctrygetcall retur...

7.5CVSS5.5AI score0.00441EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.3 views

SUSE CVE-2026-31640

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix use of wrong skb when comparing queued RESP challenge serial In rxrpcpostresponse, the code should be comparing the challenge serial number from the cached response before deciding to switch to a newer response, but...

7.5CVSS5.6AI score0.00426EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-31675

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/sched: schnetem: fix out-of-bounds access in packet corruption In netemenqueue, the packet corruption logic uses getrandomu32belowskbheadlenskb to select an...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31552

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: wlcore: Return -ENOMEM instead of -EAGAIN if there is not enough headroom Since upstream commit e75665dd0968 wifi: wlcore: ensure skb headroom before...

7.5CVSS6AI score0.00501EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.6 views

PT-2026-35144

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the tcf csum act function where nested VLAN headers are processed directly from skb-data when a socket buffer still contains in-payload VLAN tags. The system reads vlan-...

5.5CVSS5.9AI score0.00117EPSS
Exploits0References202
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.7 views

PT-2026-35135

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds memory access exists in the netem enqueue function within the sch netem scheduler. The issue occurs during packet corruption when get random u32 belowskb headlenskb is...

7.8CVSS5.3AI score0.00132EPSS
Exploits0References120
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.9 views

PT-2026-35136

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RxRPC component where RESPONSE packets were not strictly limited to the service challenge phase. This allowed duplicate or late RESPONSE packets to re-run the setu...

8.8CVSS5.8AI score0.93235EPSS
Exploits33References433
RedhatCVE
RedhatCVE
added 2026/04/24 5:45 p.m.7 views

CVE-2026-31563

A flaw was found in the Linux kernel's macb Ethernet driver. The napiconsumeskb function, which is used for freeing network packet buffers SKBs, was incorrectly called in an interrupt-disabled context. This improper handling of network packet freeing can lead to a kernel warning and system...

7.5CVSS5.3AI score0.00479EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/24 5:16 p.m.7 views

CVE-2026-31552

A flaw was found in the Linux kernel's wlcore component. When the system attempts to allocate memory for a network packet and there is insufficient space, an incorrect error code is returned. This error handling issue causes the system to repeatedly attempt to process the same packet in an endles...

7.5CVSS5.4AI score0.00501EPSS
Exploits0References4
OSV
OSV
added 2026/04/24 3:39 p.m.4 views

GHSA-F5V4-2WR6-HQMG russh has pre-auth DoS via unbounded allocation in its keyboard-interactive auth handler

Summary A pre-authentication denial-of-service vulnerability exists in the server's keyboard-interactive authentication handler. A malicious client can crash any russh-based server that implements keyboard-interactive auth e.g., for 2FA/TOTP with a single malformed packet, requiring no credential...

7.5CVSS5.5AI score0.00481EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/04/24 3:39 p.m.19 views

russh has pre-auth DoS via unbounded allocation in its keyboard-interactive auth handler

Summary A pre-authentication denial-of-service vulnerability exists in the server's keyboard-interactive authentication handler. A malicious client can crash any russh-based server that implements keyboard-interactive auth e.g., for 2FA/TOTP with a single malformed packet, requiring no credential...

7.5CVSS5.5AI score0.00481EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/04/24 3:16 p.m.10 views

DEBIAN-CVE-2026-31640

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix use of wrong skb when comparing queued RESP challenge serial In rxrpcpostresponse, the code should be comparing the challenge serial number from the cached response before deciding to switch to a newer response, but...

7.5CVSS5.4AI score0.00426EPSS
Exploits0References1
Rows per page
Query Builder