Lucene search
K

141 matches found

Debian CVE
Debian CVE
added 2025/09/11 4:56 p.m.2 views

CVE-2025-39770

In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6CSUM When performing Generic Segmentation Offload GSO on an IPv6 packet that contains extension headers, the kernel incorrectly requests checksum offload if the...

5.5CVSS5.4AI score0.00144EPSS
Exploits0
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the GSO stack not properly disabling IPv6 checksum offloading, which could lead to unsupported device...

5.5CVSS6.7AI score0.00144EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2025/09/06 8:1 a.m.5 views

sctp: linearize cloned gso packets in sctp_rcv

...

7.8CVSS7AI score0.00151EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/09/04 3:33 p.m.5 views

CVE-2025-38718 sctp: linearize cloned gso packets in sctp_rcv

In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctprcv A cloned head skb still shares these frag skbs in fraglist with the original head skb. It's not safe to access these frag skbs. syzbot reported two use-of-uninitialized-memory bugs...

6.6AI score0.00151EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/09/04 3:33 p.m.8 views

CVE-2025-38718 sctp: linearize cloned gso packets in sctp_rcv

In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctprcv A cloned head skb still shares these frag skbs in fraglist with the original head skb. It's not safe to access these frag skbs. syzbot reported two use-of-uninitialized-memory bugs...

0.00151EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/08/24 4:7 p.m.4 views

CVE-2025-38622

In the Linux kernel, the following vulnerability has been resolved: net: drop UFO packets in udprcvsegment When sending a packet with virtionethdr to tun device, if the gsotype in virtionethdr is SKBGSOUDP and the gsosize is less than udphdr size, below crash may happen. ------------ cut here...

5.5CVSS6AI score0.0016EPSS
Exploits0References4
NVD
NVD
added 2025/08/22 4:15 p.m.4 views

CVE-2025-38622

In the Linux kernel, the following vulnerability has been resolved: net: drop UFO packets in udprcvsegment When sending a packet with virtionethdr to tun device, if the gsotype in virtionethdr is SKBGSOUDP and the gsosize is less than udphdr size, below crash may happen. ------------ cut here...

5.5CVSS0.0016EPSS
Exploits0References11
CVE
CVE
added 2025/08/22 4:0 p.m.37 views

CVE-2025-38622

CVE-2025-38622 — Linux kernel UDP/GSO issue : The vulnerability occurs in the UDP receive path when a packet with virtio_net_hdr using SKB_GSO_UDP and a gso_size smaller than the UDP header can trigger a crash in skb_pull_rcsum, leading to a kernel BUG in net/core/skbuff.c and a local attacker ma...

5.5CVSS6.1AI score0.0016EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2025/08/19 5:15 p.m.5 views

AZL-73854 CVE-2025-38572 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ipv6: reject malicious packets in ipv6gsosegment syzbot was able to craft a packet with very long IPv6 extension headers leading to an overflow of skb-transportheader. This 16bit field has a limited range. Add...

7.8CVSS5.7AI score0.0018EPSS
Exploits0References1
OSV
OSV
added 2025/08/19 5:2 p.m.8 views

CVE-2025-38572 ipv6: reject malicious packets in ipv6_gso_segment()

In the Linux kernel, the following vulnerability has been resolved: ipv6: reject malicious packets in ipv6gsosegment syzbot was able to craft a packet with very long IPv6 extension headers leading to an overflow of skb-transportheader. This 16bit field has a limited range. Add...

7.8CVSS6.2AI score0.0018EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2025/08/18 2:11 p.m.7 views

kernel: net: fix udp gso skb_segment after pull from frag_list

A denial of service vulnerability has been discovered in the Linux kernel's UDP Generic Segmentation Offload GSO functionality. This flaw allows a local, unprivileged user to trigger a kernel crash by generating UDP packets with a specially malformed fraglist geometry. Successful exploitation of...

5.5CVSS7.2AI score0.00148EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.5 views

PT-2025-37228

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel related to Generic Segmentation Offload GSO and IPv6 packets with extension headers. Specifically, the kernel incorrectly requests checksum offload fo...

5.5CVSS6.1AI score0.00144EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.3 views

net: ethernet: cortina: Use TOE/TSO on all TCP

...

5.5CVSS6.8AI score0.00145EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.6 views

net: lan743x: Fix memleak issue when GSO enabled

...

5.5CVSS7.4AI score0.00168EPSS
Exploits0
OSV
OSV
added 2025/07/10 9:15 a.m.3 views

UBUNTU-CVE-2025-38331

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: cortina: Use TOE/TSO on all TCP It is desireable to push the hardware accelerator to also process non-segmented TCP frames: we pass the skb-len to the "TOE/TSO" offloader and it will handle them. Without this quirk...

5.5CVSS6AI score0.00145EPSS
Exploits0References30
Debian CVE
Debian CVE
added 2025/07/10 8:15 a.m.4 views

CVE-2025-38331

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: cortina: Use TOE/TSO on all TCP It is desireable to push the hardware accelerator to also process non-segmented TCP frames: we pass the skb-len to the "TOE/TSO" offloader and it will handle them. Without this quirk...

5.5CVSS5.5AI score0.00145EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.5 views

PT-2025-29053

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's ethernet/cortina driver related to the TCP Offload Engine TOE and TCP Segmentation Offload TSO features. The issue causes instability, lockups, and...

7.7CVSS5.9AI score0.00145EPSS
Exploits0
OSV
OSV
added 2025/07/03 9:15 a.m.1 views

DEBIAN-CVE-2025-38124

In the Linux kernel, the following vulnerability has been resolved: net: fix udp gso skbsegment after pull from fraglist Commit a1e40ac5b5e9 "net: gso: fix udp gso fraglist segmentation after pull from fraglist" detected invalid geometry in fraglist skbs and redirects them from skbsegmentlist to...

5.5CVSS5.5AI score0.00148EPSS
Exploits0References1
OSV
OSV
added 2025/07/03 9:15 a.m.2 views

UBUNTU-CVE-2025-38124

In the Linux kernel, the following vulnerability has been resolved: net: fix udp gso skbsegment after pull from fraglist Commit a1e40ac5b5e9 "net: gso: fix udp gso fraglist segmentation after pull from fraglist" detected invalid geometry in fraglist skbs and redirects them from skbsegmentlist to...

5.5CVSS6AI score0.00148EPSS
Exploits0References31
CNNVD
CNNVD
added 2025/07/03 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper handling of udp gso segmentation, which could lead to memory corruption...

5.5CVSS6.9AI score0.00148EPSS
Exploits0References6
Rows per page
Query Builder