Lucene search
K

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 a.m.23 views

Security Bulletin: IBM Guardium Data Protection is affected by multiple kernel vulnerabilities

Summary IBM Guardium Data Protection has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2024-26641 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could...

5.5CVSS7.9AI score0.00241EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2024/11/15 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-7088-5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.6AI score0.00879EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2024/10/18 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-7069-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.02701EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2024/10/15 12:0 a.m.96 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-7069-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7069-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

7.8CVSS7.5AI score0.02701EPSS
Exploits2References36
Tenable Nessus
Tenable Nessus
added 2024/08/08 12:0 a.m.77 views

SUSE SLED15: cluster-md-kmp-64kb / cluster-md-kmp-default / dlm-kmp-64kb / etc (SUSE-SU-2024:2802-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2802-1 advisory. The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The...

8.8CVSS6.7AI score0.00935EPSS
Exploits2References384
Ubuntu
Ubuntu
added 2024/06/11 10:9 p.m.136 views

USN-6819-2: Linux kernel vulnerabilities

Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference vulnerability. A remote attacker could use this to cause a denial of service system crash. CVE-2023-6356, CVE-2023-6535, CVE-2023-6536 Chenyuan...

7.8CVSS6.9AI score0.78388EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/06/11 12:0 a.m.45 views

Ubuntu 23.10 : Linux kernel vulnerabilities (USN-6819-2)

The remote Ubuntu 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6819-2 advisory. Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference...

7.8CVSS7.1AI score0.78388EPSS
Exploits2References148
OSV
OSV
added 2024/03/18 10:19 a.m.3 views

CVE-2024-26641 ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

5.5CVSS5.8AI score0.00241EPSS
Exploits0References11
Cvelist
Cvelist
added 2024/03/18 10:19 a.m.40 views

CVE-2024-26641 ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

7.5AI score0.00241EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/03/18 10:19 a.m.38 views

CVE-2024-26641

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

5.5CVSS7.5AI score0.00241EPSS
Exploits0
CVE
CVE
added 2024/03/18 10:19 a.m.210 views

CVE-2024-26641

CVE-2024-26641 affects the Linux kernel’s IPv6/IP tunneling path. The issue arises in ip6_tunnel when receiving inner headers in __ip6_tnl_rcv(), which could access uninitialized data via a chained path (KMSAN warnings). The fix, as described in the description, is to call pskb_inet_may_pull() to...

5.5CVSS6.1AI score0.00241EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder