Lucene search
K

126 matches found

OSV
OSV
added 2024/09/13 6:15 a.m.7 views

AZL-49167 CVE-2024-46677 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: gtp: fix a potential NULL pointer dereference When sockfdlookup fails, gtpencapenablesocket returns a NULL pointer, but its callers only check for error pointers thus miss the NULL pointer case. Fix it by returning an error point...

5.5CVSS6.3AI score0.00261EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/08/20 2:15 a.m.4 views

SUSE CVE-2024-44070

An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...

7.5CVSS7AI score0.00641EPSS
Exploits0References9
OSV
OSV
added 2024/08/19 2:15 a.m.8 views

AZL-47868 CVE-2024-44070 affecting package frr for versions less than 9.1.1-2

An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...

7.5CVSS7.4AI score0.00641EPSS
Exploits0References1
OSV
OSV
added 2024/08/19 2:15 a.m.11 views

UBUNTU-CVE-2024-44070

An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual remaining stream length before taking the TLV value...

9.8CVSS7.2AI score0.00641EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/08/18 12:0 a.m.3 views

FRRouting 安全漏洞

FRRouting is the FRRouting open source suite of network routing software that runs on Unix-like platforms. A security vulnerability exists in FRRouting versions 10.1 and earlier, which stems from bgpattrencap in bgpd/bgpattr.c that does not check the actual remaining stream length before obtainin...

9.8CVSS8.4AI score0.00641EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/29 12:0 a.m.9 views

PT-2024-33782

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible tunnel refcount underflow in the Linux kernel's l2tp module. When a session is created, it sets a backpointer to its tunnel, and when the session...

5.5CVSS5.5AI score0.00204EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/05/23 3:5 a.m.3 views

SUSE CVE-2021-47247

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

7.8CVSS7.3AI score0.00227EPSS
Exploits0References7
NVD
NVD
added 2024/05/21 3:15 p.m.18 views

CVE-2021-47309

In the Linux kernel, the following vulnerability has been resolved: net: validate lwtstate-data before returning from skbtunnelinfo skbtunnelinfo returns pointer of lwtstate-data as iptunnelinfo type without validation. lwtstate-data can have various types such as mplsiptunnelencap, etc and these...

7.1CVSS6.5AI score0.00247EPSS
Exploits0References8
OSV
OSV
added 2024/05/21 3:15 p.m.1 views

DEBIAN-CVE-2021-47247

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

7.8CVSS5.6AI score0.00227EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 3:15 p.m.18 views

CVE-2021-47247

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

7.8CVSS6.3AI score
Exploits0References4
NVD
NVD
added 2024/05/21 3:15 p.m.29 views

CVE-2021-47247

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

7.8CVSS6.3AI score0.00227EPSS
Exploits0References4
OSV
OSV
added 2024/05/21 3:15 p.m.5 views

UBUNTU-CVE-2021-47247

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

7.8CVSS6.5AI score0.00227EPSS
Exploits0References5
OSV
OSV
added 2024/05/21 3:15 p.m.4 views

UBUNTU-CVE-2021-47309

In the Linux kernel, the following vulnerability has been resolved: net: validate lwtstate-data before returning from skbtunnelinfo skbtunnelinfo returns pointer of lwtstate-data as iptunnelinfo type without validation. lwtstate-data can have various types such as mplsiptunnelencap, etc and these...

7.1CVSS6.2AI score0.00247EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2024/05/21 2:19 p.m.26 views

CVE-2021-47247

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

7.8CVSS7.2AI score0.00227EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/05/21 2:19 p.m.22 views

CVE-2021-47247 net/mlx5e: Fix use-after-free of encap entry in neigh update handler

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

6.7AI score0.00227EPSS
Exploits0References3
CVE
CVE
added 2024/05/21 2:19 p.m.132 views

CVE-2021-47247

CVE-2021-47247 is a Linux kernel use-after-free in the mlx5e_encap_take path during neigh update, caused by improper handling when encap entries are concurrently inserted/deleted after rtnetlink lock changes. The issue is documented in upstream kernel notes and is listed in Debian’s DLA-4178-1 ad...

7.8CVSS6.6AI score0.00227EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2024/05/21 2:19 p.m.28 views

CVE-2021-47247 net/mlx5e: Fix use-after-free of encap entry in neigh update handler

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

6.3AI score0.00227EPSS
Exploits0References3
NVD
NVD
added 2024/04/10 7:15 p.m.21 views

CVE-2021-47199

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: CT, Fix multiple allocations and memleak of mod acts CT clear action offload adds additional mod hdr actions to the flow's original mod actions in order to clear the registers which hold ctstate. When such flow also...

5.5CVSS7.3AI score0.00196EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/04/10 7:15 p.m.27 views

CVE-2021-47199

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: CT, Fix multiple allocations and memleak of mod acts CT clear action offload adds additional mod hdr actions to the flow's original mod actions in order to clear the registers which hold ctstate. When such flow also...

5.5CVSS5.9AI score0.00196EPSS
Exploits0References4
CVE
CVE
added 2024/04/10 6:56 p.m.75 views

CVE-2021-47199

The CVE-2021-47199 issue in the Linux kernel's mlx5e CT offload layer causes a memleak of mod hdr actions due to CT clear action offload flow handling. Specifically, CT clear action offload adds the same set of mod hdr actions to reset ct_state when an encap action is present, potentially repeati...

5.5CVSS6.5AI score0.00196EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder