CVE-2025-21925

In the Linux kernel, the following vulnerability has been resolved: llc: do not use skbget before devqueuexmit syzbot is able to crash hosts 1, using llc and devices not supporting IFFTXSKBSHARING. In this case, e1000 driver calls ethskbpad, while the skb is shared. Simply replace skbget by...

CVE-2024-50083 tcp: fix mptcp DSS corruption due to large pmtu xmit

In the Linux kernel, the following vulnerability has been resolved: tcp: fix mptcp DSS corruption due to large pmtu xmit Syzkaller was able to trigger a DSS corruption: TCP: requestsocksubflowv4: Possible SYN flooding on port :::20002. Sending cookies. ------------ cut here ------------ WARNING:...

CVE-2021-47309

In the Linux kernel, the following vulnerability has been resolved: net: validate lwtstate-data before returning from skbtunnelinfo skbtunnelinfo returns pointer of lwtstate-data as iptunnelinfo type without validation. lwtstate-data can have various types such as mplsiptunnelencap, etc and these...

CVE-2024-26834 netfilter: nft_flow_offload: release dst in case direct xmit path is used

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftflowoffload: release dst in case direct xmit path is used Direct xmit does not use it since it calls devqueuexmit to send packets, hence it calls dstrelease. kmemleak reports: unreferenced object 0xffff88814f440900...

CVE-2024-26834

The CVE-2024-26834 entry concerns the Linux kernel netfilter NFT_FLOW_OFFLOAD path. TECHNICAL DETAILS (from connected docs): Direct xmit path avoids calling dst_release() due to using dev_queue_xmit(), leaving a kmemleak-reported unreferenced object and a route stack path that can affect packet r...

CVE-2024-26804 net: ip_tunnel: prevent perpetual headroom growth

In the Linux kernel, the following vulnerability has been resolved: net: iptunnel: prevent perpetual headroom growth syzkaller triggered following kasan splat: BUG: KASAN: use-after-free in skbflowdissect+0x19d1/0x7a50 net/core/flowdissector.c:1170 Read of size 1 at addr ffff88812fb4000e by task...

Debian DSA-1304-1 : kernel-source-2.6.8 - several vulnerabilities

CVE-2006-6060 CVE-2006-6106 CVE-2006-6535 CVE-2007-0958 CVE-2007-1357 CVE-2007-1592 Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. This update also fixes a regression in the smbfs subsystem...

Linux Kernel dev_queue_xmit本地拒绝服务漏洞

Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel网络子系统的devqueuexmit函数实现上存在漏洞，本地攻击者可能利用此漏洞对系统执行拒绝服务攻击（数据破坏）。 Linux kernel = 2.6.19.2 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux AS 4 RedHat已经为此发布了一个安全公告（RHSA-2007:0014-01）以及相应补丁: RHSA-2007:0014-01：Important: kernel...

Important: kernel security update

2.6.0-42.0.8.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.0-42.0.8 -fix ext2 readdir fpos revalidation logic David Milburn 193877 2.6.9-42.0.7 -re-spin 2.6.9-42.0.6 -x8664: increase nmi watchdog timeout from 5 to 30 seconds Larry Woodman 205 722 2.6.9-42.0.5...

CVE-2006-6535

The devqueuexmit function in Linux kernel 2.6 can fail before calling the localbhdisable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable...

CVE-2006-6535

The devqueuexmit function in Linux kernel 2.6 can fail before calling the localbhdisable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable...

CVE-2006-6535

The devqueuexmit function in Linux kernel 2.6 can fail before calling the localbhdisable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable...

CVE-2006-6535

CVE-2006-6535 affects the Linux kernel 2.6 series, where a flaw in the dev_queue_xmit() error handling path in the network subsystem can lead to data corruption. Multiple advisories and scanners (e.g., Debian DSA-1304-1, Red Hat/CentOS RHSA-2007:0014, OpenVAS entries) map this to a local data cor...

security flaw

The devqueuexmit function in Linux kernel 2.6 can fail before calling the localbhdisable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable...