ROS-20260119-7364

A vulnerability in the drivers/net/team component of the Linux operating system kernel involves the use of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002982)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002982 advisory. An issue was discovered in the Linux kernel before 4.16.7. A use-after-free can be caused by the function rsimac80211detach in the file...

The vulnerability of the veth_xmit() function in the drivers/net/veth.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the vethxmit function in the drivers/net/veth.c module of the Linux kernel is related to improper error handling. Exploiting this vulnerability can allow an attacker to cause a system failure...

Vulnerability of the geneve_rx() function in the drivers/net/geneve.c module – This driver for network devices in the Linux operating system allows a hacker to cause a service failure.

Vulnerability of the geneverx function in the drivers/net/geneve.c module – The Linux kernel’s network device driver framework is vulnerable due to incorrect input validation. Exploiting this vulnerability could allow an attacker to cause system failures...

The vulnerability of the macsec_free_netdev() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the macsecfreenetdev function in the drivers/net/macsec.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

CVE-2024-50252

CVE-2024-50252 describes a memory leak in the Linux kernel mlxsw spectrum_ipip implementation when changing the remote IPv6 address of an ip6gre net device. The root cause is that the driver failed to add the new address to its hash table and did not remove the old one, leading to leaks and a war...

CVE-2024-42148

In the Linux kernel, the following vulnerability has been resolved: bnx2x: Fix multiple UBSAN array-index-out-of-bounds Fix UBSAN warnings that occur when using a system with 32 physical cpu cores or more, or when the user defines a number of Ethernet queues greater than or equal to FPSBMAXE1x...

CVE-2024-42148 bnx2x: Fix multiple UBSAN array-index-out-of-bounds

In the Linux kernel, the following vulnerability has been resolved: bnx2x: Fix multiple UBSAN array-index-out-of-bounds Fix UBSAN warnings that occur when using a system with 32 physical cpu cores or more, or when the user defines a number of Ethernet queues greater than or equal to FPSBMAXE1x...

CVE-2024-42148 bnx2x: Fix multiple UBSAN array-index-out-of-bounds

In the Linux kernel, the following vulnerability has been resolved: bnx2x: Fix multiple UBSAN array-index-out-of-bounds Fix UBSAN warnings that occur when using a system with 32 physical cpu cores or more, or when the user defines a number of Ethernet queues greater than or equal to FPSBMAXE1x...

kernel: team: NULL pointer dereference when team device type is changed

A NULL pointer dereference flaw was found in drivers/net/team/team.c in the Linux kernel...

kernel: team: NULL pointer dereference when team device type is changed

A NULL pointer dereference flaw was found in drivers/net/team/team.c in the Linux kernel...

CVE-2024-35973 geneve: fix header validation in geneve[6]_xmit_skb

In the Linux kernel, the following vulnerability has been resolved: geneve: fix header validation in geneve6xmitskb syzbot is able to trigger an uninit-value in genevexmit 1 Problem : While most ip tunnel helpers like iptunnelgetdsfield uses skbprotocolskb, true, pskbinetmaypull is only using...

CVE-2024-35913

CVE-2024-35913 affects the Linux kernel’s wireless stack (iwlwifi, iwlmvm). The issue arises in SESSION_PROTECTION_NOTIF handling: when determining whether to read mac_id or link_id in struct iwl_mvm_session_prot_notif, the code does not consistently pick the correct field based on the version, l...

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a...

CentOS 7 : kernel (RHSA-2024:1249)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1249 advisory. - There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2capcore.c's l2capconnect and l2capleconnectreq functions which may all...

Double free

In the Linux kernel, the following vulnerability has been resolved: tun: avoid double free in tunfreenetdev Avoid double free in tunfreenetdev by moving the dev-tstats and tun-security allocs to a new ndoinit routine tunnetinit that will be called by registernetdevice. ndoinit is paired with the...

CVE-2021-47101

In the Linux kernel, the following vulnerability has been resolved: asix: fix uninit-value in asixmdioread asixreadcmd may read less than sizeofsmsr bytes and in this case smsr will be uninitialized. Fail log: BUG: KMSAN: uninit-value in asixcheckhostenable drivers/net/usb/asixcommon.c:82 inline...

kernel security update

5.14.0-362.18.0.13.OL9 - nfp: fix use-after-free in areacacheget Jialiang Wang CVE-2022-3545 - drivers: net: slip: fix NPD bug in sltxtimeout Duoming Zhou CVE-2022-41858 - can: afcan: fix NULL pointer dereference in canrcvfilter Oliver Hartkopp CVE-2023-2166 - RDMA/core: Fix resolvepreparesrc...

RHEL 9 : kpatch-patch (RHSA-2024:0381)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0381 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

Fedora 38 : kernel (2024-c4ec5006e3)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c4ec5006e3 advisory. The 6.6.12 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly...