Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: afnetlink: Fixed an out-of-bounds shift in the group mask calculation When a netlink message is received, netlinkrecvmsg fills in the address of the sender. One of the fields is the 32-bit bitfield nlgroups, which carries the...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Added a check on the len parameter to prevent empty skb objects. This prevents a division error in the netemenqueue function, which occurs when skb-len=0 and skb-datalen=0 during the randomized corruption...

ROS-20260407-73-0019

A vulnerability in the net/netlink/afnetlink.c component of the Linux kernel is related to incorrect input of data used as a condition for loop execution. Exploitation of the vulnerability allows an attacker to cause a denial of service...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002486)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002486 advisory. The netlinksendmsg function in net/netlink/afnetlink.c in the Linux kernel before 3.5.5 does not validate the dstpid field, which allows local users to have an...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003464)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003464 advisory. Race condition in the netlinkdump function in net/netlink/afnetlink.c in the Linux kernel before 4.6.3 allows local users to cause a denial of service double free or...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988769)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988769 advisory. In the Linux kernel, the following vulnerability has been resolved: afnetlink: Fix shift out of bounds in group mask calculation When a netlink message is received,...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986402)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986402 advisory. In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len...

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47659: drm/plane: Move range check for formatcount earlier bsc1237839. CVE-2022-49044: dm integrity: fix memory corruption when tagsize is less than digest si...

The vulnerability of the af_netlink component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the afnetlink component in the Linux operating system’s kernel is related to incorrect blocking in the netlinksendmsg function. Exploiting this vulnerability can allow an attacker to cause a service failure...

kernel: net: netlink: af_netlink: Prevent empty skb by adding a check on len.

In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len parameter to avoid empty skb. This prevents a division error in netemenqueue function which is caused when skb-len=0 and skb-datalen=0 in...

SUSE CVE-2021-47606

In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len parameter to avoid empty skb. This prevents a division error in netemenqueue function which is caused when skb-len=0 and skb-datalen=0 in...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the afnetlink component's lack of a length check on skb...

SUSE CVE-2016-9806

Race condition in the netlinkdump function in net/netlink/afnetlink.c in the Linux kernel before 4.6.3 allows local users to cause a denial of service double free or possibly have unspecified other impact via a crafted application that makes sendmsg system calls, leading to a free operation...

The vulnerability of the __netlink_ns_capable() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the netlinknscapable function net/netlink/afnetlink.c in the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...