14 matches found
Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011025)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011025 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devic...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013063)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013063 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devic...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007532)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007532 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devic...
SUSE CVE-2023-53863
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
CVE-2023-53863
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
DEBIAN-CVE-2023-53863
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
CVE-2023-53863
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
UBUNTU-CVE-2023-53863
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
CVE-2023-53863 netlink: do not hard code device address lenth in fdb dumps
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
CVE-2023-53863
CVE-2023-53863 : In the Linux kernel, netlink fdb dumps previously hard-coded device address length using ETH_ALEN instead of the device’s addr_len. This can expose an information leak (notably kernel-infoleak paths) in scenarios where a netdev device reports an addr_len different from six. The a...
CVE-2023-53863
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
CVE-2023-53863 netlink: do not hard code device address lenth in fdb dumps
In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...
PT-2025-49754
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw in the netlink subsystem related to handling device address lengths in frame database fdb dumps. Specifically, the code hardcoded the device address...
kernel: netlink: do not hard code device address lenth in fdb dumps
A kernel information leak vulnerability was found in the netlink FDB Forwarding Database dump functionality in the Linux kernel. The code incorrectly hard-codes ETHALEN 6 bytes for device addresses, but some network devices have shorter addresses e.g., 4 bytes. When dumping FDB entries for such...