Lucene search
+L

188 matches found

nvd
nvd
added 2026/03/25 11:16 a.m.4 views

CVE-2026-23300

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop When a standalone IPv6 nexthop object is created with a loopback device e.g., "ip -6 nexthop add id 100 dev lo", fib6nhinit misclassifies it as a reject route...

5.5CVSS0.00129EPSS
Exploits0References10
osv
osv
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23316

In the Linux kernel, the following vulnerability has been resolved: net: ipv4: fix ARM64 alignment fault in multipath hash seed struct sysctlfibmultipathhashseed contains two u32 fields userseed and mpseed, making it an 8-byte structure with a 4-byte alignment requirement. In...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References7
nvd
nvd
added 2026/02/14 5:15 p.m.8 views

CVE-2026-23200

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix ECMP sibling count mismatch when clearing RTFADDRCONF syzbot reported a kernel BUG in fib6addrt2node when adding an IPv6 route. 0 Commit f72514b3c569 "ipv6: clear RA flags when adding a static route" introduced logic to...

5.5CVSS0.00114EPSS
Exploits0References4
osv
osv
added 2026/01/28 2:33 p.m.23 views

CLSA-2026-1769610819 kernel: Fix of 39 CVEs

Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times CVE-2022-50419 - firewire: net: fix use after free in fwnetfinishincomingpacket CVE-2023-53432 - wifi: brcmfmac: fix use-after-free bug in brcmfnetdevstartxmit CVE-2022-50408 - wifi: brcmfmac: slab-out-of-bounds read in...

7.8CVSS7AI score0.21314EPSS
Exploits0References1
astralinux
astralinux
added 2026/01/27 5:1 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fixed a memory leak in nhcpcpurthoutput within fibchecknhv6gw. The function fibchecknhv6gw expects that fib6nhinit will clean up everything when it fails. The commit 7dd73168e273 „ipv6: Always allocate pcpu memory in fib6nh...

5.5CVSS6.4AI score0.00185EPSS
Exploits0References3
astralinux
astralinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipv6: A possible infinite loop has been fixed in fib6infousesdev. fib6infousesdev appears to rely on RCU without proper protection. Similar to the previous fix in rt6nlmsgsize, we need to ensure that fib6delroute or fib6addrt2nod...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References3
nessus
nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-56703)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56703 advisory. - In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix soft lockups in fib6selectpath...

5.5CVSS6.6AI score0.00203EPSS
Exploits0References2
redos
redos
added 2026/01/21 12:0 a.m.6 views

ROS-20260121-73-0021

A vulnerability in the fibchecknhv6gw function of the Linux operating system kernel is related to a possible memory leak. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.2AI score0.00185EPSS
Exploits0
nessus
nessus
added 2026/01/16 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000743)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000743 advisory. Race condition in the ioctlsendfib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service...

5.1CVSS6.5AI score0.00339EPSS
Exploits0References17
nessus
nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002628 advisory. Race condition in the ioctlsendfib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service...

5.1CVSS6.5AI score0.00339EPSS
Exploits0References17
nessus
nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002931)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002931 advisory. Race condition in the ioctlsendfib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service...

5.1CVSS6.5AI score0.00339EPSS
Exploits0References17
vulnrichment
vulnrichment
added 2026/01/13 3:34 p.m.5 views

CVE-2025-71097 ipv4: Fix reference count leak when using error routes with nexthop objects

In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix reference count leak when using error routes with nexthop objects When a nexthop object is deleted, it is marked as dead and then fibtableflush is called to flush all the routes that are using the dead nexthop. The...

5.7AI score0.00114EPSS
Exploits0References7
cve
cve
added 2026/01/13 3:34 p.m.40 views

CVE-2025-71097

Technical details for CVE-2025-71097 are not provided in the connected documents. The sources confirm the CVE exists and is tracked in various advisories, but no further product/version/impact/fix specifics are included here. Monitor vendor advisories for updates.

5.5CVSS6AI score0.00114EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/01/13 3:34 p.m.32 views

CVE-2025-71097 ipv4: Fix reference count leak when using error routes with nexthop objects

In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix reference count leak when using error routes with nexthop objects When a nexthop object is deleted, it is marked as dead and then fibtableflush is called to flush all the routes that are using the dead nexthop. The...

0.00114EPSS
Exploits0References7
cve
cve
added 2026/01/13 3:29 p.m.17 views

CVE-2025-68813

The CVE-2025-68813 affects the Linux kernel IPVS IPv4 route error path. A NULL pointer dereference occurs when dst_link_failure() is called with skb->dev unset, leading to ipv4_link_failure() → ipv4_send_dest_unreach() → fib_compute_spec_dst() dereferencing skb->dev. The root cause is that ...

6.2AI score0.00173EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2026/01/13 12:0 a.m.17 views

PT-2026-2545

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.114 Description The Linux kernel contains a flaw within the IPv4 code path in the ip vs get out rt function. This function can call dst link failure without verifying that skb-dev is set, leading to a NULL...

5.5AI score0.00173EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/01/01 12:0 a.m.10 views

PT-2026-8208

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's IPv6 implementation related to ECMP Equal-Cost Multi-Path routing. Specifically, a mismatch in sibling counts can occur when clearing the RTF ADDRCONF...

5.5CVSS6.6AI score0.00114EPSS
Exploits0
nessus
nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988811)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988811 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6: fix memory leak in fib6rulesuppress The kernel leaks memory when a fib rule is present in...

5.5CVSS6AI score0.00222EPSS
Exploits0References4
nessus
nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989509)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989509 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in fibmetricsmatch if !type continue; if type RTAXMAX...

5.5CVSS5.7AI score0.00246EPSS
Exploits0References4
nessus
nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990207)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990207 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in fibmetricsmatch if !type continue; if type RTAXMAX...

5.5CVSS5.7AI score0.00246EPSS
Exploits0References4
Rows per page
Query Builder