Lucene search
+L

11 matches found

SUSE CVE
SUSE CVE
added 2026/06/26 2:9 a.m.6 views

SUSE CVE-2026-53238

In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlblunlabeladdrinfoget used the address attribute length to determine whether the attribute data could be read as an IPv4 or IPv6 address, but did not independentl...

5.8AI score0.00128EPSS
Exploits0References3
CVE
CVE
added 2026/06/25 8:56 p.m.22 views

CVE-2026-6331

CVE-2026-6331 describes an HMAC zero-length tag forgery in EVP_DigestVerifyFinal. The OpenSSL-compatibility HMAC verify path allowed a zero-length or truncated tag to pass because the signature length check only ensured it did not exceed the MAC length. The fixed behavior now requires the supplie...

7.5CVSS5.8AI score0.00147EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/06/25 9:16 a.m.7 views

CVE-2026-53238

In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlblunlabeladdrinfoget used the address attribute length to determine whether the attribute data could be read as an IPv4 or IPv6 address, but did not independentl...

5.5CVSS0.00128EPSS
Exploits0References8
OSV
OSV
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53238

In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlblunlabeladdrinfoget used the address attribute length to determine whether the attribute data could be read as an IPv4 or IPv6 address, but did not independentl...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References11
OSV
OSV
added 2026/06/25 8:39 a.m.2 views

CVE-2026-53238 netlabel: validate unlabeled address and mask attribute lengths

In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlblunlabeladdrinfoget used the address attribute length to determine whether the attribute data could be read as an IPv4 or IPv6 address, but did not independentl...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2026/06/25 8:39 a.m.6 views

CVE-2026-53238

In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlblunlabeladdrinfoget used the address attribute length to determine whether the attribute data could be read as an IPv4 or IPv6 address, but did not independentl...

5.7AI score0.00128EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/06/25 8:39 a.m.14 views

CVE-2026-53238

CVE-2026-53238 affects the Linux kernel netlabel/privacy path in netlbl_unlabel_addrinfo_get, where the address attribute length was used to infer IPv4/IPv6 data but the corresponding mask length was not independently validated. A crafted Generic Netlink request could supply a valid IPv4/IPv6 add...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.8 views

PT-2026-52333

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netlabel component where the netlbl unlabel addrinfo get function fails to independently validate the length of the mask attribute. While the function uses the...

5.5CVSS6.1AI score0.00128EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/07/10 11:22 p.m.2 views

SUSE CVE-2025-38310

In the Linux kernel, the following vulnerability has been resolved: seg6: Fix validation of nexthop addresses The kernel currently validates that the length of the provided nexthop address does not exceed the specified length. This can lead to the kernel reading uninitialized memory if user space...

6.1CVSS7.7AI score0.00137EPSS
Exploits0References16
OSV
OSV
added 2025/07/10 8:15 a.m.5 views

UBUNTU-CVE-2025-38310

In the Linux kernel, the following vulnerability has been resolved: seg6: Fix validation of nexthop addresses The kernel currently validates that the length of the provided nexthop address does not exceed the specified length. This can lead to the kernel reading uninitialized memory if user space...

5.5CVSS6.1AI score0.00137EPSS
Exploits0References41
Positive Technologies
Positive Technologies
added 2025/06/04 12:0 a.m.4 views

PT-2025-29030

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contained a flaw in the seg6 module where the validation of nexthop addresses was insufficient. The kernel validated that the length of the provided nexthop address di...

6CVSS6.7AI score0.00137EPSS
Exploits0
Rows per page
Query Builder