88 matches found
CVE-2026-45841
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix divide-by-zero in OSFWSSMODULO nfosfmatchone computes ctx-window % f-wss.val in the OSFWSSMODULO branch with no guard for f-wss.val == 0. A CAPNETADMIN user can add such a fingerprint via nfnetlink; a...
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. This vulnerability stems from the vport netlink reply helper function, which allocates skb packets of a fixed size but h...
CVE-2026-31692
A flaw was found in the Linux kernel's rtnetlink component. An unprivileged local user, leveraging a user namespace, can exploit a missing CAPNETADMIN capability check in the rtnlnewlink function. This allows the user to create paired network devices in arbitrary network namespaces, including the...
kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain()
A flaw was found in the Linux kernel. A local attacker with CAPNETADMIN capabilities, or remote packet traffic, could exploit a use-after-free vulnerability in the nftablesaddchain function's error handling. Successful exploitation could lead to a kernel crash, resulting in a Denial of Service Do...
kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain()
A flaw was found in the Linux kernel. A local attacker with CAPNETADMIN capabilities, or remote packet traffic, could exploit a use-after-free vulnerability in the nftablesaddchain function's error handling. Successful exploitation could lead to a kernel crash, resulting in a Denial of Service Do...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004305)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004305 advisory. An issue was discovered in the Linux kernel before 5.6.7. xdpumemreg in net/xdp/xdpumem.c has an out- of-bounds write by a user with the CAPNETADMIN capability becau...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002863)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002863 advisory. The nfnetlinkrcvbatch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, whi...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001907)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001907 advisory. net/dccp/ccid.h in the Linux kernel before 3.5.4 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash by...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001958)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001958 advisory. The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause ...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002803)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002803 advisory. An issue was discovered in the Linux kernel before 4.18.11. The ipddpioctl function in drivers/net/appletalk/ipddp.c allows local users to obtain sensitive kernel...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003219)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003219 advisory. An issue was discovered in the Linux kernel before 4.18.11. The ipddpioctl function in drivers/net/appletalk/ipddp.c allows local users to obtain sensitive kernel...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003066)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003066 advisory. A security flaw was discovered in the nl80211setrekeydata function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002766)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002766 advisory. A security flaw was discovered in the nl80211setrekeydata function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990068)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990068 advisory. In the Linux kernel, the following vulnerability has been resolved: media: rc: bpf attach/detach requires write permission Note that bpf attach/detach also requires...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988659)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988659 advisory. In the Linux kernel, the following vulnerability has been resolved: media: rc: bpf attach/detach requires write permission Note that bpf attach/detach also requires...
kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval()
An out-of-bounds OOB memory access flaw was found in the Netfilter module in the Linux kernel's nftbyteordereval in net/netfilter/nftbyteorder.c. A bound check failure allows a local attacker with CAPNETADMIN access to cause a local privilege escalation issue due to incorrect data alignment...
kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests
A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAPNETADMIN capability to crash or potentially...
kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval()
An out-of-bounds OOB memory access flaw was found in the Netfilter module in the Linux kernel's nftbyteordereval in net/netfilter/nftbyteorder.c. A bound check failure allows a local attacker with CAPNETADMIN access to cause a local privilege escalation issue due to incorrect data alignment...
kernel: netfilter: use-after-free in nft_trans_gc_catchall_sync leads to privilege escalation
A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFTCHAIN object or NFTOBJECT object, allowing a local...
kernel: netfilter: use-after-free in nft_trans_gc_catchall_sync leads to privilege escalation
A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFTCHAIN object or NFTOBJECT object, allowing a local...