Lucene search
K

88 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013063)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013063 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devic...

5.9AI score0.00223EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007532)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007532 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devic...

5.9AI score0.00223EPSS
Exploits0References4
OSV
OSV
added 2025/12/19 5:38 p.m.6 views

OPENSUSE-SU-2025:20172-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2025-37916: pdscore: remove write-after-free of clientid bsc1243474. -...

7.8CVSS6.8AI score0.00236EPSS
Exploits1References219
SUSE CVE
SUSE CVE
added 2025/12/10 12:34 a.m.6 views

SUSE CVE-2023-53863

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

5.5CVSS6.5AI score0.00223EPSS
Exploits0References18
NVD
NVD
added 2025/12/09 4:17 p.m.4 views

CVE-2023-53863

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

0.00223EPSS
Exploits0References9
OSV
OSV
added 2025/12/09 4:17 p.m.4 views

DEBIAN-CVE-2023-53863

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

5.5AI score0.00223EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/12/09 4:17 p.m.5 views

CVE-2023-53863

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

6AI score0.00223EPSS
Exploits0References11
OSV
OSV
added 2025/12/09 4:17 p.m.2 views

UBUNTU-CVE-2023-53863

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

5.8AI score0.00223EPSS
Exploits0References12
CVE
CVE
added 2025/12/09 1:30 a.m.15 views

CVE-2023-53863

CVE-2023-53863 : In the Linux kernel, netlink fdb dumps previously hard-coded device address length using ETH_ALEN instead of the device’s addr_len. This can expose an information leak (notably kernel-infoleak paths) in scenarios where a netdev device reports an addr_len different from six. The a...

6.1AI score0.00223EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/12/09 1:30 a.m.28 views

CVE-2023-53863 netlink: do not hard code device address lenth in fdb dumps

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

0.00223EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2025/12/09 1:30 a.m.5 views

CVE-2023-53863

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

5.4AI score0.00223EPSS
Exploits0
OSV
OSV
added 2025/12/09 1:30 a.m.4 views

CVE-2023-53863 netlink: do not hard code device address lenth in fdb dumps

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

6.4AI score0.00223EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-49754

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw in the netlink subsystem related to handling device address lengths in frame database fdb dumps. Specifically, the code hardcoded the device address...

6.2AI score0.00223EPSS
Exploits0
OSV
OSV
added 2025/12/08 1:16 a.m.2 views

UBUNTU-CVE-2025-40297

In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix use-after-free due to MST port state bypass syzbot reported1 a use-after-free when deleting an expired fdb. It is due to a race condition between learning still happening and a port being deleted, after all its...

5.7AI score0.00176EPSS
Exploits0References29
OSV
OSV
added 2025/12/08 12:46 a.m.5 views

CVE-2025-40297 net: bridge: fix use-after-free due to MST port state bypass

In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix use-after-free due to MST port state bypass syzbot reported1 a use-after-free when deleting an expired fdb. It is due to a race condition between learning still happening and a port being deleted, after all its...

6.3AI score0.00176EPSS
Exploits0References8
CVE
CVE
added 2025/12/08 12:46 a.m.21 views

CVE-2025-40297

The CVE-2025-40297 fix applies to the Linux kernel net/bridge code. It addresses a use-after-free race that could occur when deleting an expired fdb if MST is enabled. The race happens between ongoing learning and port deletion, where the port state is disabled but MST can bypass the port state, ...

6AI score0.00176EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.3 views

PT-2025-49430

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free issue within the networking bridge component. This flaw arises from a race condition during the deletion of a forwarding database fdb entry,...

6CVSS5.8AI score0.00176EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2025/11/28 12:59 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-38008: mm/pagealloc: fix race condition in unaccepted memory handling bsc1244939. CVE-2025-38539: trace/fgraph: Fix the warning caused by missing unregister...

8.5CVSS7.4AI score0.08942EPSS
Exploits3References850
SUSE Linux
SUSE Linux
added 2025/11/18 1:51 p.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-38008: mm/pagealloc: fix race condition in unaccepted memory handling bsc1244939. CVE-2025-38539: trace/fgraph: Fix the warning caused by missing unregister...

8.5CVSS6.3AI score0.08942EPSS
Exploits3References840
AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fixed NPD in arp,neighreduce, when using nexthop objects. When the “proxy” option is enabled on a VXLAN device, the device will suppress ARP requests and IPv6 Neighbor Solicitation messages if it is able to reply on behalf...

5.5CVSS6.6AI score0.00135EPSS
Exploits0References3
Rows per page
Query Builder