14 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-27016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: validate pppoe header Ensure there is sufficient room to access the...
Azure Linux 3.0 Security Update: hyperv-daemons / kernel (CVE-2024-27016)
The version of hyperv-daemons / kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27016 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable:...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-27016)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27016 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: validate pppoe...
ALSA-2024:5928 Important: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nftables: nftsetrbtree skip end interval element from gc CVE-2024-26581 kernel: netfilter: nftlimit: reject configurations that cause integer overflow CVE-2024-26668 kernel: vfio/pci: Loc...
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2024-048)
The version of kernel installed on the remote host is prior to 5.15.158-103.164. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2024-048 advisory. In the Linux kernel, the following vulnerability has been resolved: tls: fix race between async notify a...
SUSE SLED15: cluster-md-kmp-64kb / cluster-md-kmp-default / dlm-kmp-64kb / etc (SUSE-SU-2024:2802-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2802-1 advisory. The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The...
RHEL 9 : kernel-rt (RHSA-2024:4831)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4831 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...
CVE-2024-27016 affecting package hyperv-daemons for versions less than 6.6.35.1-1
CVE-2024-27016 affecting package hyperv-daemons for versions less than 6.6.35.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-27016 affecting package kernel for versions less than 6.6.35.1-5
CVE-2024-27016 affecting package kernel for versions less than 6.6.35.1-5. An upgraded version of the package is available that resolves this issue...
CVE-2024-27016 affecting package kernel for versions less than 5.15.158.1-1
CVE-2024-27016 affecting package kernel for versions less than 5.15.158.1-1. An upgraded version of the package is available that resolves this issue...
Debian: Security Advisory (DSA-5680-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-27016
In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: validate pppoe header Ensure there is sufficient room to access the protocol field of the PPPoe header. Validate it once before the flowtable lookup, then use a helper function to access protocol field...
CVE-2024-27016 netfilter: flowtable: validate pppoe header
In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: validate pppoe header Ensure there is sufficient room to access the protocol field of the PPPoe header. Validate it once before the flowtable lookup, then use a helper function to access protocol field...
CVE-2024-27016
CVE-2024-27016 affects the Linux kernel netfilter flowtable path and is mitigated by a fix that ensures sufficient room to access the PPPoE header’s protocol field. The patch validates the protocol field before the flowtable lookup and uses a helper to access it, preventing out-of-bounds access. ...