25 matches found
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Net: Reenabling NETIFFIPV6CSUM offloading for BIG TCP packets The problematic commit disabled the hardware offloading of IPv6 packets with extension headers on devices that advertise NETIFFIPV6CSUM. This was based on the definiti...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed the issue where skbcopyubufs was used in conjunction with BIG TCP, causing crashes due to TCP tx zerocopy using hugepages, and when the skb length exceeded approximately 68 KB. skbcopyubufs assumed that it could copy a...
SUSE CVE-2023-53669
In the Linux kernel, the following vulnerability has been resolved: tcp: fix skbcopyubufs vs BIG TCP David Ahern reported crashes in skbcopyubufs caused by TCP tx zerocopy using hugepages, and skb length bigger than 68 KB. skbcopyubufs assumed it could copy all payload using up to MAXSKBFRAGS...
CVE-2023-53669
In the Linux kernel, the following vulnerability has been resolved: tcp: fix skbcopyubufs vs BIG TCP David Ahern reported crashes in skbcopyubufs caused by TCP tx zerocopy using hugepages, and skb length bigger than 68 KB. skbcopyubufs assumed it could copy all payload using up to MAXSKBFRAGS...
UBUNTU-CVE-2023-53669
In the Linux kernel, the following vulnerability has been resolved: tcp: fix skbcopyubufs vs BIG TCP David Ahern reported crashes in skbcopyubufs caused by TCP tx zerocopy using hugepages, and skb length bigger than 68 KB. skbcopyubufs assumed it could copy all payload using up to MAXSKBFRAGS...
CVE-2023-53669
The CVE-2023-53669 vulnerability affects the Linux kernel’s skb_copy_ubufs handling for BIG TCP payloads. The root cause was an assumption that payload could be copied using up to MAX_SKB_FRAGS order-0 pages, which breaks when BIG TCP can hold up to 512 KB per skb, causing crashes in TCP TX zeroc...
CVE-2023-53669 tcp: fix skb_copy_ubufs() vs BIG TCP
In the Linux kernel, the following vulnerability has been resolved: tcp: fix skbcopyubufs vs BIG TCP David Ahern reported crashes in skbcopyubufs caused by TCP tx zerocopy using hugepages, and skb length bigger than 68 KB. skbcopyubufs assumed it could copy all payload using up to MAXSKBFRAGS...
CVE-2023-53669 tcp: fix skb_copy_ubufs() vs BIG TCP
In the Linux kernel, the following vulnerability has been resolved: tcp: fix skbcopyubufs vs BIG TCP David Ahern reported crashes in skbcopyubufs caused by TCP tx zerocopy using hugepages, and skb length bigger than 68 KB. skbcopyubufs assumed it could copy all payload using up to MAXSKBFRAGS...
EUVD-2025-2578
Malicious code in bioql PyPI...
SUSE CVE-2025-39770
In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6CSUM When performing Generic Segmentation Offload GSO on an IPv6 packet that contains extension headers, the kernel incorrectly requests checksum offload if the...
CVE-2025-39770
In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6CSUM When performing Generic Segmentation Offload GSO on an IPv6 packet that contains extension headers, the kernel incorrectly requests checksum offload if the...
DEBIAN-CVE-2025-39770
In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6CSUM When performing Generic Segmentation Offload GSO on an IPv6 packet that contains extension headers, the kernel incorrectly requests checksum offload if the...
CVE-2025-39770 net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6_CSUM
In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6CSUM When performing Generic Segmentation Offload GSO on an IPv6 packet that contains extension headers, the kernel incorrectly requests checksum offload if the...
PT-2025-37228
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel related to Generic Segmentation Offload GSO and IPv6 packets with extension headers. Specifically, the kernel incorrectly requests checksum offload fo...
Linux Distros Unpatched Vulnerability : CVE-2025-21629
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: reenable NETIFFIPV6CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that...
SUSE CVE-2025-21629
In the Linux kernel, the following vulnerability has been resolved: net: reenable NETIFFIPV6CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that advertise NETIFFIPV6CSUM, based on the definition of that feature in...
CVE-2025-21629
In the Linux kernel, the following vulnerability has been resolved: net: reenable NETIFFIPV6CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that advertise NETIFFIPV6CSUM, based on the definition of that feature in...
AZL-68552 CVE-2025-21629 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: net: reenable NETIFFIPV6CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that advertise NETIFFIPV6CSUM, based on the definition of that feature in...
CVE-2025-21629
In the Linux kernel, the following vulnerability has been resolved: net: reenable NETIFFIPV6CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that advertise NETIFFIPV6CSUM, based on the definition of that feature in...
DEBIAN-CVE-2025-21629
In the Linux kernel, the following vulnerability has been resolved: net: reenable NETIFFIPV6CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that advertise NETIFFIPV6CSUM, based on the definition of that feature in...