378 matches found
UBUNTU-CVE-2025-21742
In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: use static NDP16 location in URB Original code allowed for the start of NDP16 to be anywhere within the URB based on the wNdpIndex value in NTH16. Only the start position of NDP16 was checked, so it was possible f...
CVE-2025-21788 net: ethernet: ti: am65-cpsw: fix memleak in certain XDP cases
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: fix memleak in certain XDP cases If the XDP program doesn't result in XDPPASS then we leak the memory allocated by am65cpswbuildskb. It is pointless to allocate SKB memory before running the XDP...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the XDP program not handling memory allocation properly, resulting in a memory leak...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an xdprxqinfo error in virtionet after a hang/recovery...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the sfc driver failing to reinitialize the xdp queue after changing the size of the rx/tx ring buffer, causi...
The vulnerability of the vduse_vdpa_get_config() function in the vDPA driver of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the vdusevdpagetconfig function in the vDPA driver, located in the drivers/vdpa/vdpauser/vdusedev.c file of the Linux kernel, involves reading memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2025-21682 eth: bnxt: always recalculate features after XDP clearing, fix null-deref
In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: always recalculate features after XDP clearing, fix null-deref Recalculate features when XDP is detached. Before: ip li set dev eth0 xdp obj xdpdummy.bpf.o sec xdp ip li set dev eth0 xdp off ethtool -k eth0 | grep gro...
Linux kernel 代码问题漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a code issue vulnerability that stems from the bnxt driver not properly recalculating network device characteristics after XDP is disabled, which...
iTop VPN 代码问题漏洞
iTop VPN is a VPN software from iTop Inc. which allows users to remain anonymous and secure with advanced Salsa20 chacha20 256-bit encryption. A code issue vulnerability exists in iTop VPN version 16.0, which stems from the presence of a DLL hijacking vulnerability that allows an attacker to...
PT-2025-2972 · Itop Vpn · Itop Vpn
Name of the Vulnerable Software and Affected Versions: iTop VPN version 16.0 Description: A DLL hijacking issue allows attackers to execute arbitrary code by placing a crafted DLL file into the path ProgramDataiTop VPNDownloadervpn6. This enables attackers to trick iTop VPN into loading a fake DL...
DEBIAN-CVE-2024-57932
In the Linux kernel, the following vulnerability has been resolved: gve: guard XDP xmit NDO on existence of xdp queues In GVE, dedicated XDP queues only exist when an XDP program is installed and the interface is up. As such, the NDO XDP XMIT callback should return early if either of these...
UBUNTU-CVE-2024-57932
In the Linux kernel, the following vulnerability has been resolved: gve: guard XDP xmit NDO on existence of xdp queues In GVE, dedicated XDP queues only exist when an XDP program is installed and the interface is up. As such, the NDO XDP XMIT callback should return early if either of these...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the gve module not properly handling XDP xmit callbacks when XDP queues do not exist. This could result in a...
PT-2025-30775
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the virtio-net module. Specifically, a missing check in the xdp linearize page function allows for an out-of-bound read when processing buffers fr...
UBUNTU-CVE-2024-53126
In the Linux kernel, the following vulnerability has been resolved: vdpa: solidrun: Fix UB bug with devres In psnetopenpfbar and snetopenvfbar a string later passed to pcimiomapregions is placed on the stack. Neither pcimiomapregions nor the functions it calls copy that string. Should the string...
kernel: net: veth: clear GRO when clearing XDP even when down
In the Linux kernel, the following vulnerability has been resolved: net: veth: clear GRO when clearing XDP even when down The Linux kernel CVE team has assigned CVE-2024-26803 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024040404-CVE-2024-26803-9985@gregkh/T...
kernel: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT
A flaw was found in the bnxten module in the Linux kernel. A double DMA unmapping can trigger a kernel warning and cause a denial of service...
net: dpaa: Pad packets to ETH_ZLEN
...
SUSE CVE-2024-50185
In the Linux kernel, the following vulnerability has been resolved: mptcp: handle consistently DSS corruption Bugged peer implementation can send corrupted DSS options, consistently hitting a few warning in the data path. Use DEBUGNET assertions, to avoid the splat on some builds and handle...
UBUNTU-CVE-2024-50185
In the Linux kernel, the following vulnerability has been resolved: mptcp: handle consistently DSS corruption Bugged peer implementation can send corrupted DSS options, consistently hitting a few warning in the data path. Use DEBUGNET assertions, to avoid the splat on some builds and handle...