Lucene search
+L

14 matches found

OSV
OSV
added 3 days ago2 views

SUSE-SU-2026:2945-1 Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.34 fixes various security issues The following security issues were fixed: - CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524. - CVE-2026-31505: iavf: fix out-of-bounds writes in iavfgetethtoolstats...

9.8CVSS6.7AI score0.00563EPSS
Exploits8References49
EUVD
EUVD
added 2026/07/08 3:23 p.m.6 views

EUVD-2026-42306

node-tar is a tar archive manipulation library for Node.js. Prior to 7.5.18, tar.replace accepts a checksum-valid tar header with a negative base-256 encoded entry size, causing the archive scanner to make no progress while repeatedly parsing the same header. This issue is fixed in version 7.5.18...

8.7CVSS5.9AI score0.00358EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-45850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipvs: skip ipv6 extension headers for csum checks Protocol checksum validation fails for IPv6 if there are extension headers before the protocol header. iph-len...

5.5CVSS6AI score0.0016EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/12 12:30 p.m.5 views

EUVD-2025-124954

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix null pointer dereference on zero-length checksum In xdrstreamdecodeopaqueauth, zero-length checksum.len causes checksum.data to be set to NULL. This triggers a NPD when accessing checksum.data in gsskrb5verifymicv2...

5.7AI score0.00197EPSS
Exploits0References5
OSV
OSV
added 2025/10/22 1:23 p.m.2 views

CVE-2023-53726 arm64: csum: Fix OoB access in IP checksum code for negative lengths

In the Linux kernel, the following vulnerability has been resolved: arm64: csum: Fix OoB access in IP checksum code for negative lengths Although commit c2c24edb1d9c "arm64: csum: Fix pathological zero-length calls" added an early return for zero-length input, syzkaller has popped up with an...

6.6AI score0.00187EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/08/24 12:0 a.m.6 views

PT-2025-34558 · Appneta +1 · Tcprewrite +2

Name of the Vulnerable Software and Affected Versions: appneta tcpreplay versions through 4.5.1 Description: A use-after-free issue exists in the fix ipv6 checksums function within the edit packet.c file of the tcprewrite component. This manipulation is exploitable locally. Recommendations: Upgra...

5.3CVSS5.1AI score0.00218EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-43845

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: udf: Fix bogus checksum computation in udfrename Syzbot reports uninitialized memory access ...

3.3CVSS5.6AI score0.00207EPSS
Exploits0References2
OSV
OSV
added 2025/04/16 3:16 p.m.8 views

UBUNTU-CVE-2025-22101

In the Linux kernel, the following vulnerability has been resolved: net: libwx: fix Tx L4 checksum The hardware only supports L4 checksum offload for TCP/UDP/SCTP protocol. There was a bug to set Tx checksum flag for the other protocol that results in Tx ring hang. Fix to compute software checksu...

5.5CVSS5.9AI score0.00173EPSS
Exploits0References24
OSV
OSV
added 2025/04/16 2:12 p.m.8 views

CVE-2025-22101 net: libwx: fix Tx L4 checksum

In the Linux kernel, the following vulnerability has been resolved: net: libwx: fix Tx L4 checksum The hardware only supports L4 checksum offload for TCP/UDP/SCTP protocol. There was a bug to set Tx checksum flag for the other protocol that results in Tx ring hang. Fix to compute software checksu...

5.5CVSS6.1AI score0.00173EPSS
Exploits0References6
OSV
OSV
added 2024/11/09 11:15 a.m.10 views

AZL-53277 CVE-2024-50251 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: sanitize offset and length before calling skbchecksum If access to offset + length is larger than the skbuff length, then skbchecksum triggers BUGON. skbchecksum internally subtracts the length parameter...

6.2CVSS6.3AI score0.00529EPSS
Exploits1References1
OSV
OSV
added 2024/08/17 10:15 a.m.3 views

UBUNTU-CVE-2024-43845

In the Linux kernel, the following vulnerability has been resolved: udf: Fix bogus checksum computation in udfrename Syzbot reports uninitialized memory access in udfrename when updating checksum of '..' directory entry of a moved directory. This is indeed true as we pass on-stack diriter.fi to t...

3.3CVSS6.5AI score0.00207EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.5 views

SUSE CVE-2007-1357

The atalksumskb function in AppleTalk for Linux kernel 2.6.x before 2.6.21, and possibly 2.4.x, allows remote attackers to cause a denial of service crash via an AppleTalk frame that is shorter than the specified length, which triggers a BUGON call when an attempt is made to perform a checksum...

7.8CVSS6.9AI score0.13529EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:6 a.m.4 views

SUSE CVE-2016-2126

Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC Privilege Attribute Certificate checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local service with access to the...

6.5CVSS7.5AI score0.06585EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2019/07/02 12:0 a.m.6 views

PT-2019-11592 · Red Hat +1 · Spacewalk +1

Name of the Vulnerable Software and Affected Versions: Spacewalk versions prior to 2.10 Description: The issue arises from the unsafe computation of client token checksums. An attacker with a valid but expired authenticated set of headers could manipulate the session validity without altering the...

9.8CVSS4.6AI score0.03121EPSS
Exploits0References47
Rows per page
Query Builder