23 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: ipv4: route: Prevent rtbindexception from rebinding stale fnhe The packet transmission path of the sit driver calls sittunnelxmit - updateorcreatefnhe. This leads to fnheremoveoldest being called to delete entries that exceed...
Linux Distros Unpatched Vulnerability : CVE-2026-46172
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: xfrm6: release dst on error in xfrm6rcvencap xfrm6rcvencap performs an IPv6 route lookup when the skb does not already have a dst attached...
CVE-2026-46172
In the Linux kernel, the following vulnerability has been resolved: ipv6: xfrm6: release dst on error in xfrm6rcvencap xfrm6rcvencap performs an IPv6 route lookup when the skb does not already have a dst attached. ip6routeinputlookup returns a referenced dst entry even when the lookup resolves to...
CVE-2026-46172
** CWE-XXXX**: CVE-2026-46172 affects the Linux kernel IPv6 xfrm6 path. The issue occurs in xfrm6_rcv_encap() during an IPv6 route lookup when a dst is not yet attached; ip6_route_input_lookup() can return a dst with an error, and if dst->error is set, the skb is dropped without attaching/rele...
CVE-2026-46172 ipv6: xfrm6: release dst on error in xfrm6_rcv_encap()
In the Linux kernel, the following vulnerability has been resolved: ipv6: xfrm6: release dst on error in xfrm6rcvencap xfrm6rcvencap performs an IPv6 route lookup when the skb does not already have a dst attached. ip6routeinputlookup returns a referenced dst entry even when the lookup resolves to...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021582)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021582 advisory. In the Linux kernel, the following vulnerability has been resolved: net/ipv6: release expired exception dst cached in socket Dst objects get leaked in...
Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011168)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011168 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forc...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013013)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013013 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forc...
Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011394)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011394 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv4: route: Prevent rtbindexception from rebinding stale fnhe The sit driver's packet transmissi...
SUSE CVE-2025-68241
In the Linux kernel, the following vulnerability has been resolved: ipv4: route: Prevent rtbindexception from rebinding stale fnhe The sit driver's packet transmission path calls: sittunnelxmit - updateorcreatefnhe, which lead to fnheremoveoldest being called to delete entries exceeding...
UBUNTU-CVE-2025-68241
In the Linux kernel, the following vulnerability has been resolved: ipv4: route: Prevent rtbindexception from rebinding stale fnhe The sit driver's packet transmission path calls: sittunnelxmit - updateorcreatefnhe, which lead to fnheremoveoldest being called to delete entries exceeding...
CVE-2025-68241
CVE-2025-68241 in the Linux kernel concerns IPv4 route handling in the SIT path. The race occurs when fnhe entries are reclaimed: fnhe_remove_oldest() may select a stale fnheX that is about to be freed, and __mkroute_output() can fetch that same fnheX, allowing rt_bind_exception() to bind a dst w...
PT-2025-51654
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the IPv4 routing mechanism related to stale function handle exceptions fnhe. Specifically, the rt bind exception function can rebind to a function...
Linux Distros Unpatched Vulnerability : CVE-2025-68241
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv4: route: Prevent rtbindexception from rebinding stale fnhe The sit driver's packet transmission path calls: sittunnelxmit - updateorcreatefnhe, which lead t...
EUVD-2025-150391
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...
Linux Distros Unpatched Vulnerability : CVE-2025-40183
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress...
CVE-2025-40183
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...
UBUNTU-CVE-2025-40183
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...
CVE-2025-40183
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...
PT-2025-46740
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to a metadata destination metadata dst leak within the bpf redirect neigh v4,6 function. This issue occurs in systems utilizing the Cilium BPF...