Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: bnxten: A memory out-of-bounds issue was fixed in bnxtfillhwrsstbl. A recent commit modified the code in bnxtreserverings to set the default RSS indirection table to default only when the number of RX rings is changing. While thi...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fixed the XDPTX path. For the XDPTX action in bnxtrxxdp, clearing the event flags is incorrect. The sequence of calls bnxtpollwork - bnxtrxpkt - bnxtrxxdp may involve looping within the NAPI, and some event flags might be...

SUSE CVE-2025-68770

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix XDPTX path For XDPTX action in bnxtrxxdp, clearing of the event flags is not correct. bnxtpollwork - bnxtrxpkt - bnxtrxxdp may be looping within NAPI and some event flags may be set in earlier iterations. In particula...

CVE-2025-68770 bnxt_en: Fix XDP_TX path

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix XDPTX path For XDPTX action in bnxtrxxdp, clearing of the event flags is not correct. bnxtpollwork - bnxtrxpkt - bnxtrxxdp may be looping within NAPI and some event flags may be set in earlier iterations. In particula...

UBUNTU-CVE-2022-50723

In the Linux kernel, the following vulnerability has been resolved: bnxten: fix memory leak in bnxtnvmtest Free the kzalloc'ed buffer before returning in the success path...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986929)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986929 advisory. In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible crash in bnxthwrmsetcoal During the error recovery sequence, the rtnllock is...

DEBIAN-CVE-2023-53201

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: wraparound mbox producer index Driver is not handling the wraparound of the mbox producer index correctly. Currently the wraparound happens once u32 max is reached. Bit 31 of the producer index register is special an...

bnxt: properly flush XDP redirect lists

...

eth: bnxt: fix truesize for mb-xdp-pass case

...

bnxt_en: Mask the bd_cnt field in the TX BD properly

...

Linux Distros Unpatched Vulnerability : CVE-2025-22108

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bnxten: Mask the bdcnt field in the TX BD properly The bdcnt field in the TX BD specifies the total number of BDs for the TX packet. The bdcnt field has 5 bits...

Linux Distros Unpatched Vulnerability : CVE-2022-49869

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible crash in bnxthwrmsetcoal During the error recovery sequence, the rtnllo...

Linux Distros Unpatched Vulnerability : CVE-2025-21961

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - eth: bnxt: fix truesize for mb-xdp-pass case When mb-xdp is set and return is XDPPASS, packet is converted from xdpbuff to skbuff with xdpupdateskbsharedinfo in...

PT-2025-28874

Vulnerability Summary Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.12.33-cloudflare-2025.6.3 and earlier. Description: A flaw exists in the Linux kernel related to improper flushing of XDP redirect lists within the bnxt driver. This can lead to a kernel crash whe...

UBUNTU-CVE-2025-37895

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix error handling path in bnxtinitchip WARNON is triggered in flushwork if bnxtinitchip fails because we call cancelworksync on dim work that has not been initialized. WARNING: CPU: 37 PID: 5223 at kernel/workqueue.c:420...

CVE-2025-21961 eth: bnxt: fix truesize for mb-xdp-pass case

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix truesize for mb-xdp-pass case When mb-xdp is set and return is XDPPASS, packet is converted from xdpbuff to skbuff with xdpupdateskbsharedinfo in bnxtxdpbuildskb. bnxtxdpbuildskb passes incorrect truesize argument ...

DEBIAN-CVE-2025-21682

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: always recalculate features after XDP clearing, fix null-deref Recalculate features when XDP is detached. Before: ip li set dev eth0 xdp obj xdpdummy.bpf.o sec xdp ip li set dev eth0 xdp off ethtool -k eth0 | grep gro...

UBUNTU-CVE-2024-53209

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix receive ring space parameters when XDP is active The MTU setting at the time an XDP multi-buffer is attached determines whether the aggregation ring will be used and the rxskbfunc handler. This is done in...

SUSE CVE-2024-44933

In the Linux kernel, the following vulnerability has been resolved: bnxten : Fix memory out-of-bounds in bnxtfillhwrsstbl A recent commit has modified the code in bnxtreserverings to set the default RSS indirection table to default only when the number of RX rings is changing. While this works fo...

kernel: bnxt: prevent skb UAF after handing over to PTP worker

A possible use-after-free after handing over to PTP worker was found in the Linux kernel. This may lead to a crash...