Lucene search
+L

14 matches found

osv
osv
added 4 days ago2 views

SUSE-SU-2026:2888-1 Security update for the Linux Kernel (Live Patch 52 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.209 fixes various security issues The following security issues were fixed: - CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524. - CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of...

9.8CVSS6.6AI score0.00563EPSS
Exploits8References41
redhat
redhat
added 2026/07/08 4:9 a.m.9 views

Important: Red Hat Security Advisory: kpatch-patch-4_18_0-477_107_1, kpatch-patch-4_18_0-477_120_1, kpatch-patch-4_18_0-477_130_1, and kpatch-patch-4_18_0-477_97_1 security update

An update for multiple packages is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS6AI score0.0049EPSS
Exploits0References4
astralinux
astralinux
added 2026/05/20 5:53 a.m.11 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Bonding: Fixed a use-after-free due to an enslave failure after updating the slave array. This issue occurs because the new slave can be used immediately after being added to the array. Since the new slave can be used for...

7.8CVSS6AI score0.00117EPSS
Exploits0References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: bonding: fix missed rcu protection When removing the rcureadlock in bondethtoolgettsinfo as discussed 1, I didn't notice it could be called via setsockopt, which doesn't hold rcu lock, as syzbot pointed: stack backtrace: CPU: 0...

5.5CVSS5.9AI score0.00243EPSS
Exploits0References2
nessus
nessus
added 2026/05/08 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-43441

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: bonding: Fix ndtbl NULL dereference when IPv6 is disabled When booting with the 'ipv6.disable=1' parameter, the ndtbl is never initialized because inet6ini...

7.5CVSS6.3AI score0.00479EPSS
Exploits0References3
nessus
nessus
added 2026/04/16 12:0 a.m.4 views

RHEL 10 : kernel (RHSA-2026:8342)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:8342 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Local denial of...

7.8CVSS6.2AI score0.00194EPSS
Exploits0References11
nessus
nessus
added 2026/03/25 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-23310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf/bonding: reject vlan+srcmac xmithashpolicy change when XDP is loaded bondoptionmodeset already rejects mode changes that would make a loaded XDP program...

5.5CVSS6.2AI score0.00123EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from bonding's use of freed memory after 802.3ad slave unbundling...

7.8CVSS6AI score0.00281EPSS
Exploits0References9
osv
osv
added 2024/09/04 8:15 p.m.8 views

AZL-48795 CVE-2024-44990 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: bonding: fix null pointer deref in bondipsecoffloadok We must check if there is an active slave before dereferencing the pointer...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References1
osv
osv
added 2024/09/04 7:54 p.m.26 views

CVE-2024-44989 bonding: fix xfrm real_dev null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm realdev null pointer dereference We shouldn't set realdev to NULL because packets can be in transit and xfrm might call xdodevoffloadok in parallel. All callbacks assume realdev is set. Example trace: kernel: BU...

5.5CVSS6AI score0.00239EPSS
Exploits0References14
osv
osv
added 2024/07/09 10:15 a.m.10 views

AZL-47931 CVE-2024-39487 affecting package kernel for versions less than 5.15.164.1-1

In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bondoptionarpiptargetsset In function bondoptionarpiptargetsset, if newval-string is an empty string, newval-string+1 will point to the byte after the string, causing an out-of-bound read. BUG:...

7.1CVSS6.3AI score0.0024EPSS
Exploits0References1
redhatcve
redhatcve
added 2024/05/23 11:10 a.m.28 views

CVE-2023-52784

In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bondsetupbyslave Commit 9eed321cde22 "net: lapbether: only support ethernet devices" has been able to keep syzbot away from net/lapb, until today. In the following splat 1, the issue is that a lapbethe...

4.4CVSS6AI score0.00242EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2024/05/21 3:31 p.m.19 views

CVE-2023-52784 bonding: stop the device in bond_setup_by_slave()

In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bondsetupbyslave Commit 9eed321cde22 "net: lapbether: only support ethernet devices" has been able to keep syzbot away from net/lapb, until today. In the following splat 1, the issue is that a lapbethe...

6.4AI score0.00242EPSS
Exploits0References7
osv
osv
added 2024/04/28 12:59 p.m.17 views

CVE-2022-48640 bonding: fix NULL deref in bond_rr_gen_slave_id

In the Linux kernel, the following vulnerability has been resolved: bonding: fix NULL deref in bondrrgenslaveid Fix a NULL dereference of the struct bonding.rrtxcounter member because if a bond is initially created with an initial mode != zero Round Robin the memory required for the counter is...

5.5CVSS5.9AI score0.00232EPSS
Exploits0References6
Rows per page
Query Builder