Lucene search
K

88 matches found

Amazon
Amazon
added 2025/07/29 12:0 a.m.10 views

Important: kernel-livepatch-6.12.30-34.92

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races CVE-2025-38037 Affected Packages: kernel-livepatch-6.12.30-34.92 Issue Correction: Please ensure you have live patching enabled. Run dnf update kernel-livepatch-6.12.30-34.92...

5.5CVSS6.5AI score0.00178EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/20 6:44 p.m.8 views

CVE-2025-38037

In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races The 'used' and 'updated' fields in the FDB entry structure can be accessed concurrently by multiple threads, leading to reports such as 1. Can be reproduced using 2. Suppress these reports by...

1.9CVSS6.9AI score0.00178EPSS
Exploits0References4
NVD
NVD
added 2025/06/18 10:15 a.m.7 views

CVE-2025-38037

In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races The 'used' and 'updated' fields in the FDB entry structure can be accessed concurrently by multiple threads, leading to reports such as 1. Can be reproduced using 2. Suppress these reports by...

5.5CVSS0.00178EPSS
Exploits0References10
OSV
OSV
added 2025/06/18 10:15 a.m.5 views

AZL-64022 CVE-2025-38037 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races The 'used' and 'updated' fields in the FDB entry structure can be accessed concurrently by multiple threads, leading to reports such as 1. Can be reproduced using 2. Suppress these reports by...

5.5CVSS6.8AI score0.00178EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.2 views

UBUNTU-CVE-2025-38037

In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races The 'used' and 'updated' fields in the FDB entry structure can be accessed concurrently by multiple threads, leading to reports such as 1. Can be reproduced using 2. Suppress these reports by...

5.5CVSS6.2AI score0.00178EPSS
Exploits0References42
CVE
CVE
added 2025/06/18 9:33 a.m.88 views

CVE-2025-38037

The CVE-2025-38037 issue affects the Linux kernel’s VXLAN FDB handling. The root cause is a data race where the FDB entry’s fields used and updated may be concurrently accessed by multiple threads, triggering KCSAN reports in vxlan_xmit paths. The fix is to annotate these accesses with READ_ONCE(...

5.5CVSS6.2AI score0.00178EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2025/06/18 9:33 a.m.10 views

CVE-2025-38037 vxlan: Annotate FDB data races

In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races The 'used' and 'updated' fields in the FDB entry structure can be accessed concurrently by multiple threads, leading to reports such as 1. Can be reproduced using 2. Suppress these reports by...

0.00178EPSS
Exploits0References8
OSV
OSV
added 2025/06/18 9:33 a.m.4 views

CVE-2025-38037 vxlan: Annotate FDB data races

In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races The 'used' and 'updated' fields in the FDB entry structure can be accessed concurrently by multiple threads, leading to reports such as 1. Can be reproduced using 2. Suppress these reports by...

5.5CVSS6.9AI score0.00178EPSS
Exploits0References13
NVD
NVD
added 2025/05/20 4:15 p.m.20 views

CVE-2025-37921

In the Linux kernel, the following vulnerability has been resolved: vxlan: vnifilter: Fix unlocked deletion of default FDB entry When a VNI is deleted from a VXLAN device in 'vnifilter' mode, the FDB entry associated with the default remote assuming one was configured is deleted without holding t...

7.8CVSS0.00168EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/05/20 3:21 p.m.19 views

CVE-2025-37921 vxlan: vnifilter: Fix unlocked deletion of default FDB entry

In the Linux kernel, the following vulnerability has been resolved: vxlan: vnifilter: Fix unlocked deletion of default FDB entry When a VNI is deleted from a VXLAN device in 'vnifilter' mode, the FDB entry associated with the default remote assuming one was configured is deleted without holding t...

0.00168EPSS
Exploits0References5
CVE
CVE
added 2025/05/20 3:21 p.m.114 views

CVE-2025-37921

The CVE-2025-37921 entry covers a Linux kernel VXLAN vnifilter issue where deleting a VNI could remove the default FDB entry without holding the hash lock. Root cause: unlocked deletion of the default FDB entry when a VNI is removed from a VXLAN device in vnifilter mode. Impact: described warning...

7.8CVSS6.5AI score0.00168EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/05/20 3:21 p.m.11 views

CVE-2025-37921 vxlan: vnifilter: Fix unlocked deletion of default FDB entry

In the Linux kernel, the following vulnerability has been resolved: vxlan: vnifilter: Fix unlocked deletion of default FDB entry When a VNI is deleted from a VXLAN device in 'vnifilter' mode, the FDB entry associated with the default remote assuming one was configured is deleted without holding t...

7.8CVSS6.5AI score0.00168EPSS
Exploits0References9
NVD
NVD
added 2025/05/09 7:16 a.m.7 views

CVE-2025-37864

In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d "net: dsa: delete dsalegacyfdbadd and dsalegacyfdbdel", DSA is written given the assumption that higher layers have...

5.5CVSS0.00234EPSS
Exploits0References5
CVE
CVE
added 2025/05/09 6:43 a.m.116 views

CVE-2025-37864

CVE-2025-37864 relates to the Linux kernel DSA subsystem: a cleanup path for FDB, MDB and VLAN entries on unbind was added to fix a scenario where bridge bypass operations could leave stale entries and trigger a leak/warn on unbind. The vulnerability stems from the assumption that higher layers b...

5.5CVSS6.5AI score0.00234EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2025/05/09 6:43 a.m.11 views

CVE-2025-37864 net: dsa: clean up FDB, MDB, VLAN entries on unbind

In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d "net: dsa: delete dsalegacyfdbadd and dsalegacyfdbdel", DSA is written given the assumption that higher layers have...

0.00234EPSS
Exploits0References5
OSV
OSV
added 2025/05/09 6:43 a.m.14 views

CVE-2025-37864 net: dsa: clean up FDB, MDB, VLAN entries on unbind

In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d "net: dsa: delete dsalegacyfdbadd and dsalegacyfdbdel", DSA is written given the assumption that higher layers have...

5.5CVSS6AI score0.00234EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/04/05 2:25 a.m.1 views

SUSE CVE-2025-21970

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Bridge, fix the crash caused by LAG state check When removing LAG device from bridge, NETDEVCHANGEUPPER event is triggered. Driver finds the lower devices PFs to flush all the offloaded entries. And mlx5lagissharedfdb i...

5.5CVSS7.5AI score0.00178EPSS
Exploits0References15
OSV
OSV
added 2025/04/01 4:15 p.m.1 views

DEBIAN-CVE-2025-21970

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Bridge, fix the crash caused by LAG state check When removing LAG device from bridge, NETDEVCHANGEUPPER event is triggered. Driver finds the lower devices PFs to flush all the offloaded entries. And mlx5lagissharedfdb i...

5.5CVSS5.7AI score0.00178EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 4:15 p.m.1 views

DEBIAN-CVE-2025-21975

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: handle errors in mlx5chainscreatetable In mlx5chainscreatetable, the return value of mlx5getfdbsubns and mlx5getflownamespace must be checked to prevent NULL pointer dereferences. If either function fails, the function...

5.5CVSS5.6AI score0.0018EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 4:15 p.m.1 views

UBUNTU-CVE-2025-21975

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: handle errors in mlx5chainscreatetable In mlx5chainscreatetable, the return value of mlx5getfdbsubns and mlx5getflownamespace must be checked to prevent NULL pointer dereferences. If either function fails, the function...

5.5CVSS6.2AI score0.0018EPSS
Exploits0References34
Rows per page
Query Builder