8 matches found
kernel: Linux kernel (net/mlx5): Use-after-free in ECVF vports unload leads to denial of service
A flaw was found in the Linux kernel's net/mlx5 component. A local user could exploit a use-after-free vulnerability during the shutdown process when embedded chip virtual function ECVF vports are unloaded. This occurs because the vport access control list ACL ingress table is not properly...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38109)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38109 advisory. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on...
EUVD-2025-19834
Malicious code in bioql PyPI...
DEBIAN-CVE-2025-38109
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF when a virtual function is created on the embedded chip ECVF of a BlueField device. In such case the vport acl ingress table is not properly destroyed. ECVF...
CVE-2025-38109
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF when a virtual function is created on the embedded chip ECVF of a BlueField device. In such case the vport acl ingress table is not properly destroyed. ECVF...
CVE-2025-38109 net/mlx5: Fix ECVF vports unload on shutdown flow
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF when a virtual function is created on the embedded chip ECVF of a BlueField device. In such case the vport acl ingress table is not properly destroyed. ECVF...
CVE-2025-38109 net/mlx5: Fix ECVF vports unload on shutdown flow
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF when a virtual function is created on the embedded chip ECVF of a BlueField device. In such case the vport acl ingress table is not properly destroyed. ECVF...
CVE-2025-38109
CVE-2025-38109 — Linux kernel : Affected component is the mlx5/eswitch path used for ECVF vports on BlueField devices. The issue is a use-after-free (UAF) during shutdown when a virtual function is created on the embedded BlueField chip, causing the vport ACL ingress table to not be properly dest...