Lucene search
K

130 matches found

CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an error in the calculation of the BQL of a multi BD TX packet in the xilinx axienet driver, which could lea...

7.5CVSS5.8AI score0.00426EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.6 views

SUSE CVE-2026-31518

In the Linux kernel, the following vulnerability has been resolved: esp: fix skb leak with espintcp and async crypto When the TX queue for espintcp is full, espoutputtailtcp will return an error and not free the skb, because with synchronous crypto, the common xfrm output code will drop the packe...

4.7CVSS5.7AI score0.00123EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2026/04/22 8:15 p.m.8 views

CVE-2026-31518

A flaw was found in the Linux kernel. When the espintcp component processes network traffic using asynchronous cryptography, a memory leak can occur. This happens because a socket buffer skb is not correctly released if the transmit queue becomes full. This continuous leak of memory can lead to...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/22 3:31 p.m.5 views

EUVD-2026-24902

In the Linux kernel, the following vulnerability has been resolved: esp: fix skb leak with espintcp and async crypto When the TX queue for espintcp is full, espoutputtailtcp will return an error and not free the skb, because with synchronous crypto, the common xfrm output code will drop the packe...

5.7AI score0.00123EPSS
Exploits0References9
CVE
CVE
added 2026/04/22 1:54 p.m.16 views

CVE-2026-31518

CVE-2026-31518 affects the Linux kernel espintcp path when using asynchronous crypto. If the TX queue for espintcp is full, esp_output_tail_tcp returns an error and the skb is not freed under earlier synchronous handling; with async crypto (esp_output_done) the skb must be dropped when esp_output...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/04/22 1:54 p.m.26 views

CVE-2026-31509

CVE-2026-31509 affects the Linux kernel NFC NCI subsystem. The vulnerability stems from nci_close_device() flushing rx_wq and tx_wq while holding req_lock, creating a circular locking dependency with nci_rx_work() and related paths. The fix moves the rx_wq flush to after req_lock is released, rel...

5.5CVSS5.6AI score0.00095EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31518

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - esp: fix skb leak with espintcp and async crypto When the TX queue for espintcp is full, espoutputtailtcp will return an error and not free the skb, because wit...

5.5CVSS6.6AI score0.00123EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010954)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010954 advisory. In the Linux kernel, the following vulnerability has been resolved: net/netfailover: fix txq exceeding warning The failover txq is inited as 16 queues. when a packet...

5.8AI score0.0018EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/24 12:0 a.m.6 views

SonicWALL TZ Insufficient Verification of Data Authenticity (CVE-2022-47522)

The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept possibly cleartext target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point such as authentication...

7.5CVSS5.5AI score0.00897EPSS
Exploits1References5
NVD
NVD
added 2026/02/14 4:15 p.m.4 views

CVE-2026-23150

In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: Fix memleak in nfcllcpsenduiframe. syzbot reported various memory leaks related to NFC, struct nfcllcpsock, skbuff, nfcdev, etc. 0 The leading log hinted that nfcllcpsenduiframe failed to allocate skb due to sockerrors...

5.5CVSS0.00115EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/02/14 4:15 p.m.5 views

CVE-2026-23150

In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: Fix memleak in nfcllcpsenduiframe. syzbot reported various memory leaks related to NFC, struct nfcllcpsock, skbuff, nfcdev, etc. 0 The leading log hinted that nfcllcpsenduiframe failed to allocate skb due to sockerrors...

5.5CVSS5.7AI score0.00115EPSS
Exploits0References28
EUVD
EUVD
added 2026/02/14 4:1 p.m.7 views

EUVD-2026-5886

In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: Fix memleak in nfcllcpsenduiframe. syzbot reported various memory leaks related to NFC, struct nfcllcpsock, skbuff, nfcdev, etc. 0 The leading log hinted that nfcllcpsenduiframe failed to allocate skb due to sockerrors...

5.2AI score0.00115EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/02/14 3:16 p.m.8 views

CVE-2026-23122

In the Linux kernel, the following vulnerability has been resolved: igc: Reduce TSN TX packet buffer from 7KB to 5KB per queue The previous 7 KB per queue caused TX unit hangs under heavy timestamping load. Reducing to 5 KB avoids these hangs and matches the TSN recommendation in I225/I226 SW Use...

5.5CVSS5.9AI score0.001EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/01/14 12:29 a.m.2 views

kernel: i40e: add validation for ring_len param

A flaw was identified in the Intel “i40e” Ethernet driver in the Linux Kernel where the ringlen parameter supplied by a VF virtual function is passed unchecked to the hardware memory context. If a malicious Virtual function provides a too-large or misaligned ringlen, it may allow the device to...

5.8AI score0.00193EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/13 3:31 p.m.23 views

CVE-2025-71064 net: hns3: using the num_tqps in the vf driver to apply for resources

In the Linux kernel, the following vulnerability has been resolved: net: hns3: using the numtqps in the vf driver to apply for resources Currently, hdev-htqp is allocated using hdev-numtqps, and kinfo-tqp is allocated using kinfo-numtqps. However, kinfo-numtqps is set to minnewtqps, hdev-numtqps;...

0.00173EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-8145

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a memory leak in the NFC LLCP Logical Link Control Protocol implementation, specifically within the nfc llcp send ui frame function. The issue stemmed from a...

5.5CVSS6.5AI score0.00115EPSS
Exploits0
EUVD
EUVD
added 2025/12/30 3:30 p.m.6 views

EUVD-2023-60405

In the Linux kernel, the following vulnerability has been resolved: net/netfailover: fix txq exceeding warning The failover txq is inited as 16 queues. when a packet is transmitted from the failover device firstly, the failover device will select the queue which is returned from the primary devic...

5.9AI score0.0018EPSS
Exploits0References7
NVD
NVD
added 2025/12/30 1:16 p.m.4 views

CVE-2023-54236

In the Linux kernel, the following vulnerability has been resolved: net/netfailover: fix txq exceeding warning The failover txq is inited as 16 queues. when a packet is transmitted from the failover device firstly, the failover device will select the queue which is returned from the primary devic...

0.0018EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.4 views

CVE-2023-54236

In the Linux kernel, the following vulnerability has been resolved: net/netfailover: fix txq exceeding warning The failover txq is inited as 16 queues. when a packet is transmitted from the failover device firstly, the failover device will select the queue which is returned from the primary devic...

5.9AI score0.0018EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.7 views

CVE-2023-54166

In the Linux kernel, the following vulnerability has been resolved: igc: Fix Kernel Panic during ndotxtimeout callback The Xeon validation group has been carrying out some loaded tests with various HW configurations, and they have seen some transmit queue time out happening during the test. This...

6.2AI score0.00168EPSS
Exploits0References6
Rows per page
Query Builder