40 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net: dcb: The correct policy must be chosen to parse DCBATTRBCN. The function dcbnlbcnsetcfg uses an incorrect policy to parse tbDCBATTRBCN. This issue was introduced in commit 859ee3c43812 “DCB: Add support for DCB BCN”. Please...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: qlcnic: Prevent “dbc use-after-free” in qlcnicdcbenable. The “adapter-dcb” pointer would be silently freed within qlcnicdcbenable if qlcnicdcbattach returns an error—something that always occurs under OOM conditions. This could...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013022)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013022 advisory. In the Linux kernel, the following vulnerability has been resolved: drm: nv04: Fix out of bounds access When Output Resource dcb-or value is assigned in...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007277)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007277 advisory. In the Linux kernel, the following vulnerability has been resolved: drm: nv04: Fix out of bounds access When Output Resource dcb-or value is assigned in...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006829)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006829 advisory. In the Linux kernel, the following vulnerability has been resolved: drm: nv04: Fix out of bounds access When Output Resource dcb-or value is assigned in...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004833)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004833 advisory. In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently fre...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992761)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992761 advisory. In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently fre...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992429)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992429 advisory. In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently fre...
Linux Distros Unpatched Vulnerability : CVE-2023-53369
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: dcb: choose correct policy to parse DCBATTRBCN The dcbnlbcnsetcfg uses erroneous policy to parse tbDCBATTRBCN, which is introduced in commit 859ee3c43812...
CVE-2023-53369 net: dcb: choose correct policy to parse DCB_ATTR_BCN
In the Linux kernel, the following vulnerability has been resolved: net: dcb: choose correct policy to parse DCBATTRBCN The dcbnlbcnsetcfg uses erroneous policy to parse tbDCBATTRBCN, which is introduced in commit 859ee3c43812 "DCB: Add support for DCB BCN". Please see the comment in below code...
SUSE CVE-2022-50288
In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently freed inside qlcnicdcbenable in case qlcnicdcbattach would return an error, which always happens under OOM conditions. This would lead ...
CVE-2022-50288
In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently freed inside qlcnicdcbenable in case qlcnicdcbattach would return an error, which always happens under OOM conditions. This would lead ...
DEBIAN-CVE-2022-50288
In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently freed inside qlcnicdcbenable in case qlcnicdcbattach would return an error, which always happens under OOM conditions. This would lead ...
UBUNTU-CVE-2022-50288
In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently freed inside qlcnicdcbenable in case qlcnicdcbattach would return an error, which always happens under OOM conditions. This would lead ...
CVE-2022-50288 qlcnic: prevent ->dcb use-after-free on qlcnic_dcb_enable() failure
In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently freed inside qlcnicdcbenable in case qlcnicdcbattach would return an error, which always happens under OOM conditions. This would lead ...
CVE-2022-50288
The CVE-2022-50288 issue affects the Linux kernel qlcnic driver: under OOM, qlcnic_dcb_attach() can fail inside qlcnic_dcb_enable(), leading to adapter->dcb being freed while callers still use it via qlcnic_dcb_get_info(), causing a use-after-free. The fix propagates errors from qlcnic_dcb_ena...
CVE-2022-50288 qlcnic: prevent ->dcb use-after-free on qlcnic_dcb_enable() failure
In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently freed inside qlcnicdcbenable in case qlcnicdcbattach would return an error, which always happens under OOM conditions. This would lead ...
PT-2025-37590
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw in the qlcnic driver where a use-after-free condition can occur during DCB Data Center Bridging operations. Specifically, the adapter-dcb pointer could...
DEBIAN-CVE-2024-49977
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Fix zero-division error when disabling tc cbs The commit b8c43360f6e4 "net: stmmac: No need to calculate speed divider when offload is disabled" allows the "porttransmitratekbps" to be set to a value of 0, which is...
SUSE-SU-2024:2902-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name bsc1227716. - CVE-2024-41069: ASoC: topology: Fix route memory corruption bsc1228644. -...