CVE-2025-39973 i40e: add validation for ring_len param

In the Linux kernel, the following vulnerability has been resolved: i40e: add validation for ringlen param The ringlen parameter provided by the virtual function VF is assigned directly to the hardware memory context HMC without any validation. To address this, introduce an upper boundary check f...

CVE-2025-39968 i40e: add max boundary check for VF filters

In the Linux kernel, the following vulnerability has been resolved: i40e: add max boundary check for VF filters There is no check for max filters that VF can request. Add it...

CVE-2025-39968

CVE-2025-39968: In the Linux kernel i40e driver, a missing boundary check allowed a VF to request more filters than supported. The fix adds a max boundary check for VF filters to prevent out-of-bounds or excessive requests. Connected advisories confirm the issue and the patch/commit references im...

CVE-2025-39969 i40e: fix validation of VF state in get resources

In the Linux kernel, the following vulnerability has been resolved: i40e: fix validation of VF state in get resources VF state I40EVFSTATEACTIVE is not the only state in which VF is actually active so it should not be used to determine if a VF is allowed to obtain resources. Use...

CVE-2025-39969 i40e: fix validation of VF state in get resources

In the Linux kernel, the following vulnerability has been resolved: i40e: fix validation of VF state in get resources VF state I40EVFSTATEACTIVE is not the only state in which VF is actually active so it should not be used to determine if a VF is allowed to obtain resources. Use...

CVE-2025-39968 i40e: add max boundary check for VF filters

In the Linux kernel, the following vulnerability has been resolved: i40e: add max boundary check for VF filters There is no check for max filters that VF can request. Add it...

PT-2025-42244

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the i40e network driver. The issue involves incorrect validation of Virtual Function VF state when obtaining resources. Specifically, the I40...

PT-2025-42243

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue in the i40e driver where there is no check for the maximum number of filters that a Virtual Function VF can request. A boundary check has been added to...

PT-2025-42248

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The ring len parameter, received from a virtual function VF, was directly assigned to the hardware memory context HMC without validation. This allowed for potential issues due to...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from incorrectly verifying VF status, which could lead to improper resource acquisition...

EUVD-2021-27012

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986382)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986382 advisory. In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: Register VF in netvscprobe if NETDEVICEREGISTER missed If hvnetvsc driver is unloaded a...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-381376)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-381376 advisory. In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash when uninstalling driver When the driver is uninstalled and the VF i...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987199)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987199 advisory. In the Linux kernel, the following vulnerability has been resolved: igb: Initialize mailbox message for VF reset When a MAC address is not assigned to the VF, that...

PT-2025-40698

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free flaw within the i40e network driver, specifically in the free netdev function. This issue arises from adding network interface netif New...

EUVD-2022-55331

Malicious code in bioql PyPI...

EUVD-2025-26786

Malicious code in bioql PyPI...

EUVD-2023-34858

Malicious code in bioql PyPI...

EUVD-2022-55324

Malicious code in bioql PyPI...

EUVD-2022-55312

Malicious code in bioql PyPI...