Lucene search
+L

7 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookiehmacalg: avoid using current-nsproxy As mentioned in a previous commit of this series, using the net structure via current is not recommended for various reasons: - Inconsistency: obtaining information from th...

5.5CVSS6.3AI score0.00229EPSS
Exploits0References2
nessus
nessus
added 2025/10/27 12:0 a.m.2 views

Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2025-21640)

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookiehmacalg: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS6.1AI score0.00229EPSS
Exploits0References2
mscve
mscve
added 2025/03/14 7:0 a.m.4 views

sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy

...

5.5CVSS7.3AI score0.00229EPSS
Exploits0
osv
osv
added 2025/01/19 11:15 a.m.1 views

DEBIAN-CVE-2025-21640

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookiehmacalg: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS5.6AI score0.00229EPSS
Exploits0References1
osv
osv
added 2025/01/19 11:15 a.m.4 views

UBUNTU-CVE-2025-21640

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookiehmacalg: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS6.2AI score0.00229EPSS
Exploits0References45
debiancve
debiancve
added 2025/01/19 10:17 a.m.4 views

CVE-2025-21640

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookiehmacalg: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS5.6AI score0.00229EPSS
Exploits0
cve
cve
added 2025/01/19 10:17 a.m.185 views

CVE-2025-21640

Summary (CVE-2025-21640) : In the Linux kernel, the sctp: sysctl: cookie_hmac_alg path was fixed to avoid using current->nsproxy. The root cause involved dereferencing current->nsproxy (which can be NULL, e.g., when the task is exiting), leading to an OOPs condition. The patch replaces the ...

5.5CVSS6.9AI score0.00229EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder