Lucene search
K

25 matches found

RedHat Linux
RedHat Linux
added 4 days ago5 views

kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nfconntrackhelper. When a connection tracking helper is unregistered, its associated expectations are not properly cleaned up. This oversight can lead to a use-after-free vulnerability, where the system attempts t...

7.8CVSS6AI score0.00126EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/28 8:47 a.m.32 views

kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nfconntrackhelper. When a connection tracking helper is unregistered, its associated expectations are not properly cleaned up. This oversight can lead to a use-after-free vulnerability, where the system attempts t...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/28 2:41 a.m.10 views

kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nfconntrackhelper. When a connection tracking helper is unregistered, its associated expectations are not properly cleaned up. This oversight can lead to a use-after-free vulnerability, where the system attempts t...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/28 2:21 a.m.15 views

kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nfconntrackhelper. When a connection tracking helper is unregistered, its associated expectations are not properly cleaned up. This oversight can lead to a use-after-free vulnerability, where the system attempts t...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2026/05/28 12:0 a.m.16 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: proc: use the same treatment to check proclseek as ones for procreaditer et.al CVE-2025-38653 kernel: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr CVE-2025-68183...

9.4CVSS5.5AI score0.00514EPSS
Exploits0References40
CNVD
CNVD
added 2026/05/11 12:0 a.m.8 views

Linux kernel netfilter nf_conntrack_helper function memory misreference vulnerability

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A memory misreference vulnerability exists in the Linux kernel. The vulnerability stems from passing a NULL pointer when expecting cleanup in netfilter nfconntrackhelper, which...

7.8CVSS5.8AI score0.00126EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/05 3:17 p.m.34 views

CVE-2026-43060 netfilter: nft_ct: drop pending enqueued packets on removal

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: drop pending enqueued packets on removal Packets sitting in nfqueue might hold a reference to: - templates that specify the conntrack zone, because a percpu area is used and module removal is possible. - conntra...

7.8CVSS0.0012EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.8 views

SUSE CVE-2026-43025

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ignore explicit helper on new expectations Use the existing master conntrack helper, anything else is not really supported and it just makes validation more complicated, so just ignore what helper userspace...

7CVSS5.8AI score0.00126EPSS
Exploits0References23
SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.9 views

SUSE CVE-2026-43027

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackhelper: pass helper to expect cleanup nfconntrackhelperunregister calls nfctexpectiteratedestroy to remove expectations belonging to the helper being unregistered. However, it passes NULL instead of the help...

7CVSS5.8AI score0.00126EPSS
Exploits0References25
RedhatCVE
RedhatCVE
added 2026/05/01 5:8 p.m.6 views

CVE-2026-43025

A flaw was found in the Linux kernel's netfilter component. A local user could exploit a slab-out-of-bounds vulnerability by providing a different helper than the existing master conntrack helper when creating new expectations. This could allow an attacker to read kernel memory bytes off the...

7.3CVSS5.8AI score0.00126EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 3:16 p.m.5 views

CVE-2026-43025

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ignore explicit helper on new expectations Use the existing master conntrack helper, anything else is not really supported and it just makes validation more complicated, so just ignore what helper userspace...

7.3CVSS0.00126EPSS
Exploits0References6
CVE
CVE
added 2026/05/01 2:15 p.m.23 views

CVE-2026-43027

The CVE-2026-43027 vulnerability in the Linux kernel arises from nf_conntrack_helper_unregister() freeing a helper while expectations still reference it due to NULL data in nf_ct_expect_iterate_destroy(), leading to use-after-free when later access occurs. The fix is to pass the actual helper poi...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:15 p.m.3 views

CVE-2026-43027

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackhelper: pass helper to expect cleanup nfconntrackhelperunregister calls nfctexpectiteratedestroy to remove expectations belonging to the helper being unregistered. However, it passes NULL instead of the help...

5.7AI score0.00126EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/05/01 2:15 p.m.5 views

EUVD-2026-26626

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackhelper: pass helper to expect cleanup nfconntrackhelperunregister calls nfctexpectiteratedestroy to remove expectations belonging to the helper being unregistered. However, it passes NULL instead of the help...

5.8AI score0.00126EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/01 2:15 p.m.4 views

CVE-2026-43027

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackhelper: pass helper to expect cleanup nfconntrackhelperunregister calls nfctexpectiteratedestroy to remove expectations belonging to the helper being unregistered. However, it passes NULL instead of the help...

7.8CVSS5.7AI score0.00126EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.30 views

CVE-2026-43027 netfilter: nf_conntrack_helper: pass helper to expect cleanup

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackhelper: pass helper to expect cleanup nfconntrackhelperunregister calls nfctexpectiteratedestroy to remove expectations belonging to the helper being unregistered. However, it passes NULL instead of the help...

0.00126EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.31 views

CVE-2026-43025 netfilter: ctnetlink: ignore explicit helper on new expectations

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ignore explicit helper on new expectations Use the existing master conntrack helper, anything else is not really supported and it just makes validation more complicated, so just ignore what helper userspace...

7.3CVSS0.00126EPSS
Exploits0References6
CVE
CVE
added 2026/05/01 2:15 p.m.24 views

CVE-2026-43025

CVE-2026-43025 affects the Linux kernel netfilter component. A local attacker can trigger a slab-out-of-bounds read when creating new expectations by supplying a non-master conntrack helper, potentially enabling information disclosure from kernel memory. The issue is described across multiple sou...

7.3CVSS5.8AI score0.00126EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/01 2:15 p.m.9 views

EUVD-2026-26624

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ignore explicit helper on new expectations Use the existing master conntrack helper, anything else is not really supported and it just makes validation more complicated, so just ignore what helper userspace...

5.8AI score0.00126EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013138)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013138 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: Avoid nfcthelperhash uses after free If nfconntrackinitstart fails for...

7.8CVSS5.7AI score0.00202EPSS
Exploits0References4
Rows per page
Query Builder