366 matches found
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50007)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50007 advisory. - tipc: Fix use-after-free in tipcmonreinitself. Kuniyuki Iwashima Orabug: 38788585 CVE-2025-40280 - fs/proc: fix uaf in procreaddirde Wei Yang...
ROS-20260113-7391
A vulnerability in the bnxtsetrxrxskbmode function of the bnxten component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
PT-2026-2613
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt re: Fix OOB write in bnxt re copy err stats Commit ef56081d1864 "RDMA/bnxt re: RoCE related hardware counters update" added three new counters and placed them after BNXT RE OUT OF SEQ ERR. BNXT RE OUT OF SEQ ERR acts as...
PT-2026-6111
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19-rc3 Description The Broadcom network driver in the Linux kernel contains a flaw related to PTP Precision Time Protocol handling. Specifically, a NULL pointer dereference can occur in the bnxt ptp enable...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993077)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993077 advisory. In the Linux kernel, the following vulnerability has been resolved: bnxten: Avoid order-5 memory allocation for TPA data The driver needs to keep track of all the...
SUSE CVE-2023-54048
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Prevent handling any completions after qp destroy HW may generate completions that indicates QP is destroyed. Driver should not be scheduling any more completion handlers for this QP, after the QP is destroyed. Since...
Linux Distros Unpatched Vulnerability : CVE-2022-50723
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bnxten: fix memory leak in bnxtnvmtest Free the kzalloc'ed buffer before returning in the success path. CVE-2022-50723 Note that Nessus relies on the presence o...
EUVD-2023-60278
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Prevent handling any completions after qp destroy HW may generate completions that indicates QP is destroyed. Driver should not be scheduling any more completion handlers for this QP, after the QP is destroyed. Since...
CVE-2022-50723
In the Linux kernel, the following vulnerability has been resolved: bnxten: fix memory leak in bnxtnvmtest Free the kzalloc'ed buffer before returning in the success path...
CVE-2023-54048 RDMA/bnxt_re: Prevent handling any completions after qp destroy
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Prevent handling any completions after qp destroy HW may generate completions that indicates QP is destroyed. Driver should not be scheduling any more completion handlers for this QP, after the QP is destroyed. Since...
CVE-2022-50723
CVE-2022-50723 pertains to the Linux kernel bnxt_en driver, fixing a memory-leak in bnxt_nvm_test(). The patch frees the kzalloc'ed buffer on the success path before returning. Public references link to kernel stable commits implementing this correction. There are no explicit exploit details or i...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the possibility that RDMA bnxtre may process completion events even after destroying QPs, potentially leadin...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memory leak in the bnxtnvmtest function...
PT-2025-53027
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the bnxt nvm test function within the bnxt en module of the Linux kernel. The issue occurs because a buffer allocated using kzalloc is not freed before the functi...
PT-2025-53046
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s RDMA/bnxt re component related to handling completions after queue pair QP destruction. Hardware may generate completions even after a QP is destroyed...
SUSE CVE-2025-68197
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix null pointer dereference in bnxtbstracecheckwrap With older FW, we may get the ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER for FW trace data type that has not been initialized. This will result in a crash in...
Linux Distros Unpatched Vulnerability : CVE-2025-68197
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bnxten: Fix null pointer dereference in bnxtbstracecheckwrap With older FW, we may get the ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER for FW trace data type that has n...
EUVD-2025-203699
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix null pointer dereference in bnxtbstracecheckwrap With older FW, we may get the ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER for FW trace data type that has not been initialized. This will result in a crash in...
CVE-2025-68197
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix null pointer dereference in bnxtbstracecheckwrap With older FW, we may get the ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER for FW trace data type that has not been initialized. This will result in a crash in...
CVE-2025-68197
The CVE-2025-68197 issue affects the Linux kernel bnxt_en driver. It fixes a null pointer dereference in bnxt_bs_trace_check_wrap() that could occur when FW trace data type is uninitialized on older FW, leading to a crash in bnxt_bs_trace_type_wrap(). The patch adds a guard to verify a valid magi...