12632 matches found
vsock: Fix transport_{g2h,h2g} TOCTOU
...
vsock: Do not allow binding to VMADDR_PORT_ANY
...
net: better track kernel sockets lifetime
...
virtio_net: Fix napi_skb_cache_put warning
...
net: fix data-races around sk->sk_forward_alloc
...
net/sched: act_mirred: don't override retval if we already lost the skb
...
espintcp: fix skb leaks
...
ipvlan: ensure network headers are in skb linear part
...
net: allow small head cache usage with large MAX_SKB_FRAGS values
...
ibmvnic: Add tx check to prevent skb leak
...
udp: Deal with race between UDP socket address change and rehash
...
PT-2025-35816
Name of the Vulnerable Software and Affected Versions: Adacore Ada Web Server AWS versions prior to 25.2 Description: The Adacore Ada Web Server AWS is susceptible to a denial-of-service DoS condition resulting from improper handling of SSL handshakes during connection initialization. The server...
PT-2025-40071
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's networking subsystem, specifically within the Xilinx Axienet driver. Insufficient error handling during retrieval of RX metadata pointers can lead to...
CVE-2025-8614 NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...
kernel: can: peak_usb: fix use after free bugs
In the Linux kernel, the following vulnerability has been resolved: can: peakusb: fix use after free bugs After calling peakusbnetifrxniskb, dereferencing skb is unsafe. Especially, the canframe cf which aliases skb memory is accessed after the peakusbnetifrxni. Reordering the lines solves the...
kernel: udp: Fix memory accounting leak.
A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...
Linux Distros Unpatched Vulnerability : CVE-2025-38618
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made ...
PT-2025-38555
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ax25 kiss rcv function where input skbs are not properly checked for sharing before being queued or manipulated. This can lead to skb-dev becoming...
Important: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: hfsc: Fix a potential UAF in hfscdequeue too CVE-2025-37823 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw CVE-2025-38200 kernel: RDMA/iwcm: Fix...
PT-2025-49727
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to a race condition in the sockmap functionality involving skb socket buffer reference counts. Specifically, a race can occur where skbs from the...