770 matches found
CVE-2026-31695
In the Linux kernel, the following vulnerability has been resolved: wifi: virtwifi: remove SETNETDEVDEV to avoid use-after-free Currently we execute SETNETDEVDEVdev, &priv-;lowerdev-dev for the virtwifi net devices. However, unregistering a virtwifi device in netdevruntodo can happen together wit...
CVE-2026-31695
CVE-2026-31695 is a Linux kernel issue affecting the virt_wifi driver. The root cause is a race during unregistration where a device’s parent pointer could reference freed memory, causing a use-after-free during ethtool operations. The vulnerability arises from using SET_NETDEV_DEV(dev, &priv->...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of the virtwifi device to reallocate memory after release. This could lead to access to...
SUSE CVE-2026-31494
In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current queue number for stats There's a potential mismatch between the memory reserved for statistics and the amount of memory written. gemgetssetcount correctly computes the number of stats based on the activ...
SUSE CVE-2026-31505
In the Linux kernel, the following vulnerability has been resolved: iavf: fix out-of-bounds writes in iavfgetethtoolstats iavf incorrectly uses realnumtxqueues for ETHSSSTATS. Since the value could change in runtime, we should use numtxqueues instead. Moreover iavfgetethtoolstats uses...
CVE-2026-31505
A flaw was found in the Linux kernel's iavf driver. This vulnerability, an out-of-bounds write, occurs when a user simultaneously executes specific ethtool commands, specifically "ethtool -L" and "ethtool -S". This can lead to memory corruption, potentially causing a system crash and resulting in...
CVE-2026-31494
A flaw was found in the Linux kernel's macb network driver. A local user can exploit this vulnerability due to an out-of-bounds write in the gemgetethtoolstats function. This occurs when the driver incorrectly copies data using the maximum number of queues instead of the active number, leading to...
EUVD-2026-24864
In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current queue number for stats There's a potential mismatch between the memory reserved for statistics and the amount of memory written. gemgetssetcount correctly computes the number of stats based on the activ...
CVE-2026-31505
In the Linux kernel, the following vulnerability has been resolved: iavf: fix out-of-bounds writes in iavfgetethtoolstats iavf incorrectly uses realnumtxqueues for ETHSSSTATS. Since the value could change in runtime, we should use numtxqueues instead. Moreover iavfgetethtoolstats uses...
CVE-2026-31494
In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current queue number for stats There's a potential mismatch between the memory reserved for statistics and the amount of memory written. gemgetssetcount correctly computes the number of stats based on the activ...
CVE-2026-31505
The CVE-2026-31505 issue affects the Linux kernel iavf driver: out-of-bounds writes occur because iavf_get_ethtool_stats() uses real_num_tx_queues for ETH_SS_STATS while other paths use num_tx_queues, enabling memory corruption when ethtool -L and ethtool -S run concurrently. The fix is to use im...
CVE-2026-31505 iavf: fix out-of-bounds writes in iavf_get_ethtool_stats()
In the Linux kernel, the following vulnerability has been resolved: iavf: fix out-of-bounds writes in iavfgetethtoolstats iavf incorrectly uses realnumtxqueues for ETHSSSTATS. Since the value could change in runtime, we should use numtxqueues instead. Moreover iavfgetethtoolstats uses...
CVE-2026-31494 net: macb: use the current queue number for stats
In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current queue number for stats There's a potential mismatch between the memory reserved for statistics and the amount of memory written. gemgetssetcount correctly computes the number of stats based on the activ...
CVE-2026-31494
Technical details for CVE-2026-31494 are not publicly provided in the supplied documents; monitor for updates.
PT-2026-34410
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the iavf driver where the iavf get ethtool stats function incorrectly uses the num active queues variable, while iavf get sset count and iavf get stat strings use real...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the iavfgetethtoolstats function using realnumtxqueues, leading to out-of-bounds writes. This...
Linux Distros Unpatched Vulnerability : CVE-2026-31505
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iavf: fix out-of-bounds writes in iavfgetethtoolstats iavf incorrectly uses realnumtxqueues for ETHSSSTATS. Since the value could change in runtime, we should u...
PT-2026-34399
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A mismatch exists between the memory reserved for statistics and the amount of memory written in the macb network driver. The function gem get sset count calculates the number of...
Linux Distros Unpatched Vulnerability : CVE-2026-31494
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: macb: use the current queue number for stats There's a potential mismatch between the memory reserved for statistics and the amount of memory written...
Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-007499)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007499 advisory. In the Linux kernel, the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when...