Lucene search
K

28 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.3 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: etases58x: allows partial RX URB allocation to succeed. When es58xallocrxurbs fails to allocate the requested number of URs, but manages to allocate some of them, it returns an error code. This causes es58xopen to return early,...

5.7AI score0.00217EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: etases58x: It is necessary to populate ndochangemtu to prevent buffer overflows. Sending a PFPACKET allows bypassing the CAN framework logic and directly reaching the xmit function of a CAN driver. The only check performed by the...

7.1AI score0.00215EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/18 12:0 a.m.6 views

Siemens RUGGEDCOM RST2428P Improper Input Validation (CVE-2026-23037)

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some, it returns an error code. This causes es58xopen to return early,...

5.7AI score0.00217EPSS
Exploits0References3
OSV
OSV
added 2026/03/25 11:16 a.m.4 views

UBUNTU-CVE-2026-23324

In the Linux kernel, the following vulnerability has been resolved: can: usb: etases58x: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwise it could be leaked if usbkillanchoredurbs is...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.17 views

CVE-2026-23324 can: usb: etas_es58x: correctly anchor the urb in the read bulk callback

In the Linux kernel, the following vulnerability has been resolved: can: usb: etases58x: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwise it could be leaked if usbkillanchoredurbs is...

0.00123EPSS
Exploits0References7
OSV
OSV
added 2026/03/25 10:27 a.m.2 views

CVE-2026-23324 can: usb: etas_es58x: correctly anchor the urb in the read bulk callback

In the Linux kernel, the following vulnerability has been resolved: can: usb: etases58x: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwise it could be leaked if usbkillanchoredurbs is...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2026/02/01 12:23 a.m.7 views

SUSE CVE-2026-23037

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some, it returns an error code. This causes es58xopen to return early,...

3.3CVSS5.7AI score0.00217EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2026/02/01 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some,...

5.7AI score0.00217EPSS
Exploits0References2
NVD
NVD
added 2026/01/31 12:16 p.m.9 views

CVE-2026-23037

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some, it returns an error code. This causes es58xopen to return early,...

0.00217EPSS
Exploits0References7
OSV
OSV
added 2026/01/31 12:16 p.m.4 views

UBUNTU-CVE-2026-23037

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some, it returns an error code. This causes es58xopen to return early,...

5.7AI score0.00217EPSS
Exploits0References28
EUVD
EUVD
added 2026/01/31 11:42 a.m.6 views

EUVD-2026-5057

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some, it returns an error code. This causes es58xopen to return early,...

5.7AI score0.00217EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/31 11:42 a.m.6 views

CVE-2026-23037

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some, it returns an error code. This causes es58xopen to return early,...

5.7AI score0.00217EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/01/31 11:42 a.m.8 views

CVE-2026-23037 can: etas_es58x: allow partial RX URB allocation to succeed

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: allow partial RX URB allocation to succeed When es58xallocrxurbs fails to allocate the requested number of URBs but succeeds in allocating some, it returns an error code. This causes es58xopen to return early,...

5.7AI score0.00217EPSS
Exploits0References9
CVE
CVE
added 2026/01/31 11:42 a.m.15 views

CVE-2026-23037

CVE-2026-23037 concerns the Linux kernel around the can: etas_es58x driver. When es58x_alloc_rx_urbs() fails to allocate all requested URBs but succeeds with some, returning an error previously caused es58x_open() to skip cleanup and leak anchored URBs. The fix restores intended behavior by retur...

5.7AI score0.00217EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-21773)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21773 advisory. - In the Linux kernel, the following vulnerability has been resolved: can: etases58x: fix potential NULL point...

5.5CVSS5.4AI score0.00201EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-39988

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: etases58x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit...

7.5AI score0.00215EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/10/16 11:24 p.m.2 views

SUSE CVE-2025-39988

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit function of a CAN driver. The only check which is performed by the...

5.5CVSS6.9AI score0.00215EPSS
Exploits0References19
RedhatCVE
RedhatCVE
added 2025/10/16 12:30 p.m.11 views

CVE-2025-39988

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit function of a CAN driver. The only check which is performed by the...

5.5CVSS6.3AI score0.00215EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/15 9:30 a.m.5 views

EUVD-2025-34584

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit function of a CAN driver. The only check which is performed by the...

6.5AI score0.00215EPSS
Exploits0References7
CVE
CVE
added 2025/10/15 7:56 a.m.17 views

CVE-2025-39988

CVE-2025-39988 (Linux kernel) describes a buffer overflow in the etas_es58x CAN driver when MTU is set beyond CAN_MTU/CANFD_MTU via PF_PACKET, enabling crafted CAN XL frames to bypass canDev checks. Root cause: net_device_ops->ndo_change_mtu() not populated, allowing invalid MTU configuration ...

6.6AI score0.00215EPSS
Exploits0References6
Rows per page
Query Builder