Lucene search
K

165 matches found

RedHat Linux
RedHat Linux
added yesterday10 views

kernel: Linux kernel: netfilter: ebtables SNAT target writes to shared memory pages during ARP hardware address rewrite

A flaw was found in the Linux kernel's netfilter bridge ebtables SNAT Source Network Address Translation module. This vulnerability allows a local attacker on a system configured with specific bridge netfilter rules to improperly modify underlying memory pages during an ARP Address Resolution...

8.8CVSS6.1AI score0.00129EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added last week4 views

kernel: Linux kernel: netfilter: ebtables SNAT target writes to shared memory pages during ARP hardware address rewrite

A flaw was found in the Linux kernel's netfilter bridge ebtables SNAT Source Network Address Translation module. This vulnerability allows a local attacker on a system configured with specific bridge netfilter rules to improperly modify underlying memory pages during an ARP Address Resolution...

8.8CVSS5.9AI score0.00129EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added last week6 views

Important: Red Hat Security Advisory: kernel update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.2AI score0.00129EPSS
Exploits2References4
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:16 a.m.6 views

netfilter: ebtables: fix OOB read in compat_mtw_from_user

...

7.8CVSS5.8AI score0.0012EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/25 8:39 a.m.48 views

CVE-2026-53266 netfilter: bridge: make ebt_snat ARP rewrite writable

In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebtsnat ARP rewrite writable The ebtables SNAT target keeps the Ethernet source address rewrite behind skbensurewritableskb, 0. This is intentional: at the bridge ebtables hooks the Ethernet header is...

8.8CVSS0.00129EPSS
Exploits0References8
OSV
OSV
added 2026/06/25 8:39 a.m.2 views

CVE-2026-53266 netfilter: bridge: make ebt_snat ARP rewrite writable

In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebtsnat ARP rewrite writable The ebtables SNAT target keeps the Ethernet source address rewrite behind skbensurewritableskb, 0. This is intentional: at the bridge ebtables hooks the Ethernet header is...

8.8CVSS5.8AI score0.00129EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2026/06/24 8:39 p.m.8 views

CVE-2026-52927

A flaw was found in the Linux kernel's netfilter ebtables component. The compatmtwfromuser function, responsible for converting ebtables extensions, does not properly validate user-supplied sizes for match or target extensions. An attacker providing a size smaller than expected by an extension ca...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:29 p.m.14 views

CVE-2026-53001

CVE-2026-53001 in the Linux kernel concerns the netfilter xtables extensions. The fix partially reverts a previous change to restrict several matches (xt_mac, xt_owner, xt_physdev) to the inet family (IPv4/IPv6), with xt_realm limited to IPv4. The intent is to apply these restrictions and avoid u...

5.5CVSS5.8AI score0.00176EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/06/24 4:29 p.m.1 views

CVE-2026-53001 netfilter: xtables: restrict several matches to inet family

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict several matches to inet family This is a partial revert of: commit ab4f21e6fb1c "netfilter: xtables: use NFPROTOUNSPEC in more extensions" to allow ipv4 and ipv6 only. - xtmac - xtowner - xtphysdev...

5.5CVSS5.8AI score0.00176EPSS
Exploits0References11
NVD
NVD
added 2026/06/24 8:16 a.m.8 views

CVE-2026-52927

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures to kernel native structures. However, it lacks proper validation of th...

7.8CVSS0.0012EPSS
Exploits0References8
OSV
OSV
added 2026/06/24 8:16 a.m.3 views

UBUNTU-CVE-2026-52927

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures to kernel native structures. However, it lacks proper validation of th...

7.8CVSS5.6AI score0.0012EPSS
Exploits0References11
CVE
CVE
added 2026/06/24 7:14 a.m.20 views

CVE-2026-52927

Summary (CVE-2026-52927) Linux kernel: netfilter/ebtables: fix OOB read in compat_mtw_from_user. The issue arises from insufficient validation of user-supplied match_size/target_size when converting 32-bit user structures to kernel-native structures in compat_from_user(). If an extension provides...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/06/24 7:14 a.m.2 views

CVE-2026-52927 netfilter: ebtables: fix OOB read in compat_mtw_from_user

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures to kernel native structures. However, it lacks proper validation of th...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2026/06/24 7:14 a.m.6 views

CVE-2026-52927

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures to kernel native structures. However, it lacks proper validation of th...

7.8CVSS5.7AI score0.0012EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/24 7:14 a.m.43 views

CVE-2026-52927 netfilter: ebtables: fix OOB read in compat_mtw_from_user

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures to kernel native structures. However, it lacks proper validation of th...

7.8CVSS0.0012EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/24 7:14 a.m.11 views

EUVD-2026-38730

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures to kernel native structures. However, it lacks proper validation of th...

5.8AI score0.0012EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/24 7:14 a.m.5 views

CVE-2026-52927

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures to kernel native structures. However, it lacks proper validation of th...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.5 views

PT-2026-51895

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter xtables component where certain matches were not properly restricted to the inet family. This affects the xt mac, xt owner, and xt physdev extensions,...

5.9AI score0.00176EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.10 views

PT-2026-51720

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds read exists in the compat mtw from user function within the netfilter ebtables component. The issue occurs because the function fails to properly validate the...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-52927

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: ebtables: fix OOB read in compatmtwfromuser Luxiao Xu says: The function compatmtwfromuser converts ebtables extensions from 32-bit user structures t...

7.8CVSS6AI score0.0012EPSS
Exploits0References3
Rows per page
Query Builder