Lucene search
K

161 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

A out-of-bounds read vulnerability was discovered in the SR-IPv6 implementation within the Linux kernel. The flaw arises from the processing of seg6 attributes. The issue stems from the improper validation of user-provided data, which can lead to reading data beyond the bounds of an allocated...

4.4CVSS6.4AI score0.00353EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: ipv6: sr – fixed possible use-after-free and nullptrderef issues. The pernet operations structure for the subsystem must be registered before registering the generic netlink family...

5.5CVSS5.7AI score0.00272EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: seg6: Fixed validation of nexthop addresses The kernel currently validates that the length of the provided nexthop address does not exceed the specified length. This could lead to the kernel reading uninitialized memory if the us...

5.5CVSS6.2AI score0.00137EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix out-of-bounds read when setting HMAC data. The SRv6 layer allows defining HMAC data that can later be used to sign IPv6 Segment Routing Headers. This configuration is realized through netlink using four attributes:...

5.5CVSS6AI score0.00242EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/06/13 12:5 a.m.25 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

9.8CVSS5.2AI score0.00563EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2026/06/12 9:14 a.m.8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables bsc1261700. CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks bsc1263790...

9.3CVSS5.1AI score0.00563EPSS
Exploits5References52
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.15 views

AlmaLinux 9 : kernel (ALSA-2026:25217)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:25217 advisory. kernel: scsi: target: iscsi: Fix use-after-free in iscsitdecconnusagecount CVE-2026-23216 kernel: Linux kernel: Use-after-free in bonding driver leads to...

9.8CVSS5.3AI score0.00563EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.9 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : FRR vulnerabilities (USN-8376-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8376-1 advisory. It was discovered that FRR incorrectly handled certain OSPF Traffic Engineering and Segment Routing TLVs. An attacker cou...

7.5CVSS5.7AI score0.00389EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2026/06/03 1:15 p.m.10 views

USN-8376-1: FRR vulnerabilities

It was discovered that FRR incorrectly handled certain OSPF Traffic Engineering and Segment Routing TLVs. An attacker could possibly use this issue to cause FRR to crash, resulting in a denial of service. CVE-2026-28532 It was discovered that FRR incorrectly handled certain BGP FlowSpec component...

7.5CVSS5.5AI score0.00389EPSS
Exploits0
OSV
OSV
added 2026/06/03 1:15 p.m.8 views

USN-8376-1 frr vulnerabilities

It was discovered that FRR incorrectly handled certain OSPF Traffic Engineering and Segment Routing TLVs. An attacker could possibly use this issue to cause FRR to crash, resulting in a denial of service. CVE-2026-28532 It was discovered that FRR incorrectly handled certain BGP FlowSpec component...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/05/28 8:10 a.m.7 views

net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels

...

8.1CVSS5.4AI score0.00321EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/27 4:49 p.m.10 views

CVE-2026-46099

A flaw was found in the Linux kernel's IPv6 networking implementation, specifically within the seg6 and rpl lwtunnels. A race condition can occur when handling destination cache entries, where a NOREF no reference destination object is used after it has been freed. This use-after-free vulnerabili...

8.1CVSS5.7AI score0.00321EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/27 12:59 p.m.9 views

CVE-2026-46099

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6inputcore and rplinput call ip6routeinput which sets a NOREF dst on the skb, then pass it to dstcachesetip6 invoking dsthold unconditionally. On PREEMPTRT, ksoftirqd is...

8.1CVSS5.7AI score0.00321EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.16 views

CVE-2026-46099

net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels...

8.1CVSS5.8AI score0.00321EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/05/22 8:1 a.m.7 views

ipv6: rpl: reserve mac_len headroom when recompressed SRH grows

...

9.8CVSS5.4AI score0.00475EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021600)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021600 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix missing skbuff release in seg6inputcore The seg6input function is responsible for...

6.2CVSS5.9AI score0.00223EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/05 1:46 a.m.5 views

SUSE CVE-2026-28532

FRRouting before 10.5.3 contains an integer overflow vulnerability in seven OSPF Traffic Engineering and Segment Routing TLV parser functions where a uint16t accumulator variable truncates uint32t values returned by the TLVSIZE macro, causing the loop termination condition to fail while pointer...

6.5CVSS5.9AI score0.00225EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/05/04 6:32 a.m.11 views

GoBGP has an Improper Resource Shutdown or Release

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

7.5CVSS5.5AI score0.00464EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/04 5:0 a.m.4 views

CVE-2026-7734

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

6.9CVSS5.6AI score0.00464EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.9 views

PT-2026-36763

Name of the Vulnerable Software and Affected Versions osrg GoBGP versions prior to 4.4.0 Description A remote denial of service can occur in the SRv6 L3 Service component. The issue exists within the SRv6L3ServiceAttribute.DecodeFromBytes function located in the pkg/packet/bgp/prefix sid.go file,...

7.5CVSS6.3AI score0.00464EPSS
Exploits0References22
Rows per page
Query Builder