Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: The enicsetvfport function assumes that the nl attribute IFLAPORTPROFILE has a length of PORTPROFILEMAX, and that the nl attributes IFLAPORTINSTANCEUUID and IFLAPORTHOSTUUID have a length of PORTUUIDMAX. These attributes are...

Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerability has been resolved: ethernet:enic: Fix a use after free bug in enichardstartxmit In enichardstartxmit, it calls enicqueuewqskb. Inside enicqueuewqskb, if some error happens, the skb will be freed by devkfreeskbskb. But the freed skb is still used in...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993252)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993252 advisory. In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribu...

CLSA-2025-1763731262 kernel: Fix of 63 CVEs

media: bttv: fix use after free error due to btv-timeout timer CVE-2023-52847 CVE-2023-52847 - firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails CVE-2022-50087 CVE-2022-50087 - wifi: mwifiex: Fix OOB and integer underflow when rx packets CVE-2023-53226 CVE-2023-53226 - vsock:...

CLSA-2025-1763734783 kernel: Fix of 64 CVEs

media: bttv: fix use after free error due to btv-timeout timer CVE-2023-52847 - firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails CVE-2022-50087 - wifi: mwifiex: Fix OOB and integer underflow when rx packets CVE-2023-53226 - vsock: Fix transport TOCTOU CVE-2025-38461 - ALSA:...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990831)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990831 advisory. In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribu...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38659)

enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribute IFLAPORTPROFILE is of length PORTPROFILEMAX and that the nl attributes IFLAPORTINSTANCEUUID, IFLAPORTHOSTUUID are of length PORTUUIDMAX. These attributes are validated in the function dosetlink in...

CLSA-2025-1760546935 kernel: Fix of 43 CVEs

locking/wwmutex/test: Fix potential workqueue corruption CVE-2023-52836 - netfilter: ipset: Fix suspicious rcudereferenceprotected CVE-2024-40993 - netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type CVE-2024-39503 - netfilter: ipset: Missing gc cancellations fixed...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414355)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414355 advisory. Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network backe...

Linux Distros Unpatched Vulnerability : CVE-2022-3643

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network...

Linux Distros Unpatched Vulnerability : CVE-2024-38659

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribute IFLAPORTPROFILE is of length PORTPROFILEMAX and that the nl...

Linux Distros Unpatched Vulnerability : CVE-2021-46998

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ethernet:enic: Fix a use after free bug in enichardstartxmit In enichardstartxmit, it calls...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2024-12611)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12611 advisory. - MIPS: Octeon: Add PCIe link status check Dave Kleikamp Orabug: 36952386 CVE-2024-40968 - net: relax socket state check at accept time. Paolo Abeni...

EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2024-2120)

"According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In the Linux kernel, the following vulnerability has been resolved: Input: appletouch - initialize work before device registration...

CLSA-2024-1723809128 Fix of 39 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-36939 - NFS: Cleanup - add nfsclientsexit to mirror nfsclientsinit - nfs: expose /proc/net/sunrpc/nfs in net namespaces - sunrpc: add a struct rpcstats arg to rpccreateargs - nfs: make the rpcstat per net namespace - nfs: Handle error of rpcprocregist...

CLSA-2024-1723807956 Fix of 55 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-39467 - f2fs: fix to do sanity check on ixattrnid in sanitycheckinode CVE-url: https://ubuntu.com/security/CVE-2024-36940 - pinctrl: core: delete incorrect free in pinctrlenable CVE-url: https://ubuntu.com/security/CVE-2024-38659 - enic: Validate leng...

CLSA-2024-1723806933 Fix of 55 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-39467 - f2fs: fix to do sanity check on ixattrnid in sanitycheckinode CVE-url: https://ubuntu.com/security/CVE-2024-36940 - pinctrl: core: delete incorrect free in pinctrlenable CVE-url: https://ubuntu.com/security/CVE-2024-38659 - enic: Validate leng...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12581)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12581 advisory. - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879157 CVE-2024-41090 CVE-2024-41091 - netfilter: ipset: Fix race between...

SUSE CVE-2024-38659

In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribute IFLAPORTPROFILE is of length PORTPROFILEMAX and that the nl attributes IFLAPORTINSTANCEUUID, IFLAPORTHOSTUUID are of length...

CVE-2024-38659

In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribute IFLAPORTPROFILE is of length PORTPROFILEMAX and that the nl attributes IFLAPORTINSTANCEUUID, IFLAPORTHOSTUUID are of length...