Lucene search
+L

128 matches found

SUSE CVE
SUSE CVE
added 2025/07/03 11:24 p.m.3 views

SUSE CVE-2025-38097

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.3CVSS7.8AI score0.00157EPSS
Exploits0References16
NVD
NVD
added 2025/07/03 9:15 a.m.4 views

CVE-2025-38097

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.5CVSS0.00157EPSS
Exploits0References6
OSV
OSV
added 2025/07/03 9:15 a.m.2 views

DEBIAN-CVE-2025-38097

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.5CVSS5.5AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2025/07/03 9:15 a.m.8 views

AZL-72584 CVE-2025-38097 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.5CVSS5.6AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2025/07/03 9:15 a.m.12 views

UBUNTU-CVE-2025-38097

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.5CVSS6AI score0.00157EPSS
Exploits0References31
Cvelist
Cvelist
added 2025/07/03 8:13 a.m.12 views

CVE-2025-38097 espintcp: remove encap socket caching to avoid reference leak

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

0.00157EPSS
Exploits0References5
OSV
OSV
added 2025/07/03 8:13 a.m.5 views

CVE-2025-38097 espintcp: remove encap socket caching to avoid reference leak

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.5CVSS6.3AI score0.00157EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/05/03 2:50 a.m.5 views

SUSE CVE-2023-53105

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix cleanup null-ptr deref on encap lock During module is unloaded while a peer tc flow is still offloaded, first the peer uplink rep profile is changed to a nic profile, and so neigh encap lock is destroyed. Next duri...

5.5CVSS6.1AI score0.00164EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/05/02 4:15 p.m.4 views

CVE-2023-53105

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix cleanup null-ptr deref on encap lock During module is unloaded while a peer tc flow is still offloaded, first the peer uplink rep profile is changed to a nic profile, and so neigh encap lock is destroyed. Next duri...

5.5CVSS6.1AI score0.00164EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/05/02 4:15 p.m.2 views

DEBIAN-CVE-2023-53105

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix cleanup null-ptr deref on encap lock During module is unloaded while a peer tc flow is still offloaded, first the peer uplink rep profile is changed to a nic profile, and so neigh encap lock is destroyed. Next duri...

5.5CVSS5.5AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 4:15 p.m.12 views

AZL-69923 CVE-2023-53105 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix cleanup null-ptr deref on encap lock During module is unloaded while a peer tc flow is still offloaded, first the peer uplink rep profile is changed to a nic profile, and so neigh encap lock is destroyed. Next duri...

5.5CVSS6.3AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 4:15 p.m.10 views

UBUNTU-CVE-2023-53105

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix cleanup null-ptr deref on encap lock During module is unloaded while a peer tc flow is still offloaded, first the peer uplink rep profile is changed to a nic profile, and so neigh encap lock is destroyed. Next duri...

5.5CVSS6.1AI score0.00164EPSS
Exploits0References6
CVE
CVE
added 2025/05/02 3:55 p.m.123 views

CVE-2023-53105

CVE-2023-53105 affects the Linux kernel mlx5 driver, specifically a NULL pointer dereference in encap lock cleanup when unloading a module with a peer offloaded TC flow. The underlying issue occurs when the peer uplink rep profile is changed to a NIC profile and the encap lock is destroyed during...

5.5CVSS6.4AI score0.00164EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/09 12:0 a.m.3 views

PT-2025-27684

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A reference leak issue has been identified in the Linux kernel, specifically in the espintcp component. The current caching scheme for the encap socket can lead to reference leaks when...

5.5CVSS6.3AI score0.00157EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/06 3:50 a.m.7 views

SUSE CVE-2024-49940

In the Linux kernel, the following vulnerability has been resolved: l2tp: prevent possible tunnel refcount underflow When a session is created, it sets a backpointer to its tunnel. When the session refcount drops to 0, l2tpsessionfree drops the tunnel refcount if session-tunnel is non-NULL...

6.8CVSS6.7AI score0.00204EPSS
Exploits0References16
OSV
OSV
added 2024/10/21 6:15 p.m.8 views

AZL-52917 CVE-2024-49940 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: l2tp: prevent possible tunnel refcount underflow When a session is created, it sets a backpointer to its tunnel. When the session refcount drops to 0, l2tpsessionfree drops the tunnel refcount if session-tunnel is non-NULL...

5.5CVSS6.6AI score0.00204EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 6:15 p.m.9 views

UBUNTU-CVE-2024-49940

In the Linux kernel, the following vulnerability has been resolved: l2tp: prevent possible tunnel refcount underflow When a session is created, it sets a backpointer to its tunnel. When the session refcount drops to 0, l2tpsessionfree drops the tunnel refcount if session-tunnel is non-NULL...

5.5CVSS6.5AI score0.00204EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/10/21 6:1 p.m.12 views

CVE-2024-49940 l2tp: prevent possible tunnel refcount underflow

In the Linux kernel, the following vulnerability has been resolved: l2tp: prevent possible tunnel refcount underflow When a session is created, it sets a backpointer to its tunnel. When the session refcount drops to 0, l2tpsessionfree drops the tunnel refcount if session-tunnel is non-NULL...

6.8AI score0.00204EPSS
Exploits0References2
OSV
OSV
added 2024/09/27 1:23 p.m.19 views

SUSE-SU-2024:3478-1 Security update for quagga

This update for quagga fixes the following issues: - CVE-2017-15865: sensitive information disclosed when malformed BGP UPDATE packets are processed. bsc1230866 - CVE-2024-44070: crash when parsing Tunnel Encap attribute due to no length check. bsc1229438 - CVE-2022-37032: out-of-bounds read when...

9.8CVSS8AI score0.02494EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/09/26 12:0 a.m.27 views

SUSE SLES15: libfpm_pb0 / libospf0 / libospfapiclient0 / libquagga_pb0 / etc (SUSE-SU-2024:3433-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3433-1 advisory. - CVE-2017-15865: sensitive information disclosed when malformed BGP UPDATE packets are processed. bsc1230866 - CVE-2024-44070: cra...

9.8CVSS7.2AI score0.02494EPSS
Exploits1References10
Rows per page
Query Builder