542 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-68795
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ethtool: Avoid overflowing userspace buffer on stats query The ethtool -S command operates across three ioctl calls: ETHTOOLGSSETINFO for the size,...
Linux Distros Unpatched Vulnerability : CVE-2025-71092
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix OOB write in bnxtrecopyerrstats Commit ef56081d1864 RDMA/bnxtre: RoCE relat...
undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability
A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the "MadeYouReset" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts...
undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability
A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the "MadeYouReset" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts...
Linux Distros Unpatched Vulnerability : CVE-2023-54276
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da nfsd: move reply cache initialization into nfsd startup moved the...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993278)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993278 advisory. In the Linux kernel, the following vulnerability has been resolved: tracing: Have traceeventfile have ref counters The following can crash the kernel: cd...
EUVD-2023-60528
In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...
CVE-2023-54276
In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...
UBUNTU-CVE-2023-54276
In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...
CVE-2023-54276
In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...
CVE-2023-54276 nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net
In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...
CVE-2023-54276
Summary of CVE-2023-54276 (Linux kernel, nfsd): A regression caused a NULL pointer dereference when userland accessed /proc/fs/nfsd/reply_cache_stats before nfsd started. The bug arose after moving per-net+per-cpu reply-cache counters into nfsd startup, which did not account for the stats counter...
CVE-2023-54276 nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net
In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...
CVE-2023-54276
In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...
CVE-2023-54238
CVE-2023-54238 affects the Linux kernel in the mlx5 area. Two issues are described: (1) a SKB leak during ptp resync where SKBs were popped from the fifo but not freed (addressed by adding napi_consume_skb to properly free SKBs); and (2) an overrun in mlx5e_skb_fifo_has_room() where a counter com...
PT-2025-54105
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s Network File System daemon nfsd related to the initialization of per-CPU reply cache statistics counters. A previous commit moved the initialization o...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992368)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992368 advisory. In the Linux kernel, the following vulnerability has been resolved: md: fix a crash in mempoolfree There's a crash in mempoolfree when running the lvm test...
PT-2025-52911
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s perf/x86 component related to handling PEBS records and interrupt throttling. Specifically, when the intel pmu drain pebs icl function processes the...
kernel: RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device
An out-of-bounds write vulnerability exists in the linux kernel, such that when mlx5ibgethwstats is used forthe device portnum = 0, There is a special handling in order to use the correct counters, but, portnum is being passed down the stack without any change leading to damage in system...
SUSE CVE-2025-40359
In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix KASAN global-out-of-bounds warning When running "perf mem record" command on CWF, the below KASAN global-out-of-bounds warning is seen. ================================================================== BUG:...