Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: In the ice function, there was a issue where the untrusted value of pktlen was used in icevcfdirparseRaw. This vulnerability was fixed by checking that the value of pktlen does not exceed the VIRTCHNLMAXSIZERAWPACKET value...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: Netwerk: Ethernet: mtkethsoc: out-of-bounds read in mtkhwlrogetfdirentry The “fsp-location” variable comes from the user via ethtoolgetrxnfc. Verifying that it is valid prevents an out-of-bounds read...

EUVD-2023-60401

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix possible NULL pointer dereference in mtkhwlrogetfdirall rulelocs is allocated in ethtoolgetrxnfc and the size is determined by rulecnt from user space. So rulecnt needs to be check before using...

CVE-2023-54240

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix possible NULL pointer dereference in mtkhwlrogetfdirall rulelocs is allocated in ethtoolgetrxnfc and the size is determined by rulecnt from user space. So rulecnt needs to be check before using...

CVE-2023-54240

The CVE-2023-54240 issue is a Linux kernel NULL pointer dereference in the MTK ethernet driver (net: ethernet: mtk_eth_soc) during fdir all handling in mtk_hwlro_get_fdir_all(). The root cause is that rule_locs is allocated based on rule_cnt from user space in ethtool_get_rxnfc, and rule_cnt is n...

PT-2025-54069

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's ethernet functionality, specifically within the mtk eth soc module and the mtk hwlro get fdir all function. The issue involves a potential NULL pointe...

CVE-2023-54040

In the Linux kernel, the following vulnerability has been resolved: ice: fix wrong fallback logic for FDIR When adding a FDIR filter, if icevcfdirsetirqctx returns failure, the inserted fdir entry will not be removed and if icevcfdirwritefltr returns failure, the fdir context info for irq handler...

UBUNTU-CVE-2023-54040

In the Linux kernel, the following vulnerability has been resolved: ice: fix wrong fallback logic for FDIR When adding a FDIR filter, if icevcfdirsetirqctx returns failure, the inserted fdir entry will not be removed and if icevcfdirwritefltr returns failure, the fdir context info for irq handler...

CVE-2023-54040

In the Linux kernel, the following vulnerability has been resolved: ice: fix wrong fallback logic for FDIR When adding a FDIR filter, if icevcfdirsetirqctx returns failure, the inserted fdir entry will not be removed and if icevcfdirwritefltr returns failure, the fdir context info for irq handler...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991179)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991179 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: out of bounds read in mtkhwlrogetfdirentry The fsp-location variable...

Linux Distros Unpatched Vulnerability : CVE-2025-22117

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ice: fix using untrusted value of pktlen in icevcfdirparseraw Fix using the untrusted value ...

UBUNTU-CVE-2025-37912

In the Linux kernel, the following vulnerability has been resolved: ice: Check VF VSI Pointer Value in icevcaddfdirfltr As mentioned in the commit baeb705fd6a7 "ice: always check VF VSI pointer values", we need to perform a null pointer check on the return value of icegetvfvsi before using it...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to check for VF VSI pointers in the icevcaddfdirfltr function, which could result in a null pointe...

PT-2025-22174

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability has been resolved in the Linux kernel. The issue concerns the ice vc add fdir fltr function, where a null pointer check is required on the return value of ice get vf vsi...

SUSE CVE-2025-22117

In the Linux kernel, the following vulnerability has been resolved: ice: fix using untrusted value of pktlen in icevcfdirparseraw Fix using the untrusted value of proto-raw.pktlen in function icevcfdirparseraw by verifying if it does not exceed the VIRTCHNLMAXSIZERAWPACKET value...

DEBIAN-CVE-2025-22117

In the Linux kernel, the following vulnerability has been resolved: ice: fix using untrusted value of pktlen in icevcfdirparseraw Fix using the untrusted value of proto-raw.pktlen in function icevcfdirparseraw by verifying if it does not exceed the VIRTCHNLMAXSIZERAWPACKET value...

CVE-2025-22117

In the Linux kernel, the following vulnerability has been resolved: ice: fix using untrusted value of pktlen in icevcfdirparseraw Fix using the untrusted value of proto-raw.pktlen in function icevcfdirparseraw by verifying if it does not exceed the VIRTCHNLMAXSIZERAWPACKET value...

DEBIAN-CVE-2022-49368

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: out of bounds read in mtkhwlrogetfdirentry The "fsp-location" variable comes from user via ethtoolgetrxnfc. Check that it is valid to prevent an out of bounds read...

CVE-2022-49368 net: ethernet: mtk_eth_soc: out of bounds read in mtk_hwlro_get_fdir_entry()

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: out of bounds read in mtkhwlrogetfdirentry The "fsp-location" variable comes from user via ethtoolgetrxnfc. Check that it is valid to prevent an out of bounds read...

Unbreakable Enterprise kernel security update

5.15.0-302.167.6 - ice: Add a per-VF limit on number of FDIR filters Ahmed Zaki Orabug: 36964088 CVE-2024-42291 - scsi: lpfc: Fix a possible null pointer dereference Huai-Yuan Liu Orabug: 36964437 CVE-2024-43821 - power: reset: pwr-mlxbf: support graceful shutdown Asmaa Mnebhi Orabug: 37208029 -...