kernel: af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK

In the Linux kernel, the following vulnerability has been resolved: afpacket: fix vlangetprotocoldgram vs MSGPEEK Blamed commit forgot MSGPEEK case, allowing a crash 1 as found by syzbot. Rework vlangetprotocoldgram to not touch skb at all, so that it can be used from many cpus on the same skb. A...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990403)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990403 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: at86rf230: Stop leaking skb's Upon error the ieee802154xmitcomplete helper is no...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990161)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990161 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: at86rf230: Stop leaking skb's Upon error the ieee802154xmitcomplete helper is no...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989192)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989192 advisory. In the Linux kernel, the following vulnerability has been resolved: ethernet: aeroflex: fix potential skb leak in grethinitrings The grethinitrings function won't fr...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989174)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989174 advisory. In the Linux kernel, the following vulnerability has been resolved: can: dev: cangetechoskb: prevent call to kfreeskb in hard IRQ context If a driver calls...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988726)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988726 advisory. In the Linux kernel, the following vulnerability has been resolved: qede: confirm skb is allocated before using qedebuildskb assumes buildskb always works and goes...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989803)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989803 advisory. In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988736)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988736 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: re-fetch conntrack after insertion In case the conntrack is clashing,...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988822)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988822 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix a memleak when uncloning an skb dst and its metadata When uncloning an skb dst and its...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988840)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988840 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: at86rf230: Stop leaking skb's Upon error the ieee802154xmitcomplete helper is no...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988701)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988701 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: fdp: Fix potential memory leak in fdpncisend fdpncisend will call fdpncii2cwrite that will n...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: Fix double free of skb in coredump hcidevcdappend would free the skb on error so the caller don't have to free it again otherwise it would cause the double free of skb. Reported-by : Dan Carpenter...

kernel: net: usb: smsc75xx: Limit packet length to skb->len

In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Limit packet length to skb-len Packet length retrieved from skb data may be larger than the actual socket buffer length up to 9026 bytes. In such case the cloned skb passed up the network stack will leak kerne...

Siemens SIMATIC Devices Improper Validation of Specified Type of Input (CVE-2024-33621)

In the Linux kernel, the following vulnerability has been resolved: ipvlan: Dont Use skb-sk in ipvlanprocessv4 / 6outbound. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...

CVE-2025-40053

In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copythresh allocation failure The driver did not handle failure of netdevallocskbipalign. If the allocation failed, dereferencing skb-protocol could lead to a NULL pointer dereference. This patch tries to...

EUVD-2025-36475

In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copythresh allocation failure The driver did not handle failure of netdevallocskbipalign. If the allocation failed, dereferencing skb-protocol could lead to a NULL pointer dereference. This patch tries to...

CVE-2025-40053 net: dlink: handle copy_thresh allocation failure

In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copythresh allocation failure The driver did not handle failure of netdevallocskbipalign. If the allocation failed, dereferencing skb-protocol could lead to a NULL pointer dereference. This patch tries to...

kernel: vsock/virtio: Validate length in packet header before skb_put()

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Validate length in packet header before skbput When receiving a vsock packet in the guest, only the virtqueue buffer size is validated prior to virtiovsockskbrxput. Unfortunately, virtiovsockskbrxput uses the length...

SUSE CVE-2023-53716

In the Linux kernel, the following vulnerability has been resolved: net: fix skb leak in skbtstamptx Commit 50749f2dd685 "tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp." added a call to skborphanfragsrx to fix leaks with zerocopy skbs. But it ended up adding a leak of its own...

EUVD-2023-60007

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix a NULL pointer dereference in ath12kmacophwscan In ath12kmacophwscan, the return value of kzalloc is directly used in memcpy, which may lead to a NULL pointer dereference on failure of kzalloc. Fix this bug by...