1169 matches found
CVE-2026-63801
In the Linux kernel, the following vulnerability has been resolved: tipc: fix slab-use-after-free Read in tipcaeaddecryptdone tipcaeaddecrypt goes straight from tipcbearerholdb to cryptoaeaddecryptreq without taking a reference on the netns, unlike the encrypt path. When cryptoaeaddecrypt is...
CVE-2026-63801 tipc: fix slab-use-after-free Read in tipc_aead_decrypt_done
In the Linux kernel, the following vulnerability has been resolved: tipc: fix slab-use-after-free Read in tipcaeaddecryptdone tipcaeaddecrypt goes straight from tipcbearerholdb to cryptoaeaddecryptreq without taking a reference on the netns, unlike the encrypt path. When cryptoaeaddecrypt is...
CVE-2026-63801
Summary (CVE-2026-63801): In the Linux kernel TIPC crypto path, tipc_aead_decrypt() fails to take a netns reference before calling crypto_aead_decrypt(), unlike the encrypt path. When crypto_aead_decrypt() offloads asynchronously (e.g., cryptd), the completion can run after netns teardown, leadin...
EUVD-2026-45467
In the Linux kernel, the following vulnerability has been resolved: tipc: fix slab-use-after-free Read in tipcaeaddecryptdone tipcaeaddecrypt goes straight from tipcbearerholdb to cryptoaeaddecryptreq without taking a reference on the netns, unlike the encrypt path. When cryptoaeaddecrypt is...
CVE-2026-63801
In the Linux kernel, the following vulnerability has been resolved: tipc: fix slab-use-after-free Read in tipcaeaddecryptdone tipcaeaddecrypt goes straight from tipcbearerholdb to cryptoaeaddecryptreq without taking a reference on the netns, unlike the encrypt path. When cryptoaeaddecrypt is...
PT-2026-61117
In the Linux kernel, the following vulnerability has been resolved: tipc: fix slab-use-after-free Read in tipc aead decrypt done tipc aead decrypt goes straight from tipc bearer holdb to crypto aead decryptreq without taking a reference on the netns, unlike the encrypt path. When crypto aead...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31771: Bluetooth: hcievent: move wake reason storage into validated event handlers bsc1264145. CVE-2026-43038: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31771: Bluetooth: Ignore HCIERRORCANCELLEDBYHOST on adv set terminated event bsc1264145. CVE-2026-43038: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach...
SUSE-SU-2026:2841-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31771: Bluetooth: Ignore HCIERRORCANCELLEDBYHOST on adv set terminated event bsc1264145. - CVE-2026-43038: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach...
tipc: fix double-free in tipc_buf_append()
...
SUSE CVE-2026-52993
In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...
Linux Distros Unpatched Vulnerability : CVE-2026-52993
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being...
EUVD-2026-38861
In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...
CVE-2026-52993
In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...
CVE-2026-52993
Summary (CVE-2026-52993): In the Linux kernel TIPC module, a double-free flaw occurs in tipc_buf_append() when tipc_msg_validate() reallocates an skb and the code incorrectly frees the original skb. The root cause is that the validation path may free a previously freed skb if reallocation occurs,...
CVE-2026-52993
In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...
CVE-2026-52993 tipc: fix double-free in tipc_buf_append()
In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...
CVE-2026-52993 tipc: fix double-free in tipc_buf_append()
In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...
PT-2026-51887
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double-free flaw exists in the Transparent Inter-Process Communication TIPC module. The issue occurs within the tipc buf append function when it incorrectly handles memory after a sock...
Astra Linux – Vulnerability in Linux
A remote denial-of-service vulnerability was discovered in the Linux kernel’s TIPC kernel module. The while loop in tipclinkxmit encounters an unknown state while attempting to parse SKBs that are not present in the queue. Sending two small UDP packets to a system with a UDP interface causes the...