Lucene search
K

42 matches found

CNNVD
CNNVD
added 2024/12/02 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the active flag for FTEs in the net/mlx5 component not being checked by locking during deletion, causing the...

5.5CVSS6.5AI score0.00198EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/10/22 2:22 p.m.4 views

SUSE CVE-2022-48976

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtableoffload: fix using thiscpuadd in preemptible flowoffloadqueuework can be called in workqueue without bh disabled, like the call trace showed in my actct testing, calling NFFLOWTABLESTATINC there would cause a...

5.5CVSS5.8AI score0.00203EPSS
Exploits0References3
OSV
OSV
added 2024/10/21 8:15 p.m.13 views

AZL-51327 CVE-2022-48976 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtableoffload: fix using thiscpuadd in preemptible flowoffloadqueuework can be called in workqueue without bh disabled, like the call trace showed in my actct testing, calling NFFLOWTABLESTATINC there would cause a...

5.5CVSS6.1AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 8:15 p.m.3 views

DEBIAN-CVE-2022-48976

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtableoffload: fix using thiscpuadd in preemptible flowoffloadqueuework can be called in workqueue without bh disabled, like the call trace showed in my actct testing, calling NFFLOWTABLESTATINC there would cause a...

5.5CVSS5.3AI score0.00203EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/10/15 12:42 a.m.4 views

kernel: net/sched: Fix UAF when resolving a clash

A use-after-free vulnerability was found in the net/sshd tcfctflowtableprocessconn of the Linux kernel. This flaw allows an attacker with a crafted payload to induce a system crash, resulting in a loss of system availability...

7CVSS6.8AI score0.00282EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.3 views

kernel: net/sched: Fix UAF when resolving a clash

A use-after-free vulnerability was found in the net/sshd tcfctflowtableprocessconn of the Linux kernel. This flaw allows an attacker with a crafted payload to induce a system crash, resulting in a loss of system availability...

7CVSS6.8AI score0.00282EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 12:40 a.m.5 views

kernel: net/sched: Fix UAF when resolving a clash

A use-after-free vulnerability was found in the net/sshd tcfctflowtableprocessconn of the Linux kernel. This flaw allows an attacker with a crafted payload to induce a system crash, resulting in a loss of system availability...

7CVSS6.8AI score0.00282EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/11 1:10 a.m.7 views

kernel: net/sched: Fix UAF when resolving a clash

A use-after-free vulnerability was found in the net/sshd tcfctflowtableprocessconn of the Linux kernel. This flaw allows an attacker with a crafted payload to induce a system crash, resulting in a loss of system availability...

7CVSS6.8AI score0.00282EPSS
Exploits0References5
OSV
OSV
added 2024/09/04 8:15 p.m.9 views

AZL-49015 CVE-2024-44983 affecting package kernel for versions less than 6.6.51.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: validate vlan header Ensure there is sufficient room to access the protocol field of the VLAN header, validate it once before the flowtable lookup. ===================================================== BUG:...

7.1CVSS6.6AI score0.00251EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/29 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue that could result if a connection trace conntrack is resolved but still passed to...

7CVSS6.4AI score0.00282EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/05/21 2:2 a.m.9 views

SUSE CVE-2023-52667

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a potential double-free in fsanycreategroups When kcalloc for ft-g succeeds but kvzalloc for in fails, fsanycreategroups will free ft-g. However, its caller fsanycreatetable will free ft-g again through calling...

5.5CVSS6.5AI score0.00269EPSS
Exploits0References16
OSV
OSV
added 2024/05/17 2:15 p.m.1 views

DEBIAN-CVE-2024-35835

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a double-free in arfscreategroups When in allocated by kvzalloc fails, arfscreategroups will free ft-g and return an error. However, arfscreatetable, the only caller of arfscreategroups, will hold this error and ca...

5.3CVSS5.7AI score0.00861EPSS
Exploits0References1
OSV
OSV
added 2024/05/17 2:15 p.m.0 views

DEBIAN-CVE-2023-52667

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a potential double-free in fsanycreategroups When kcalloc for ft-g succeeds but kvzalloc for in fails, fsanycreategroups will free ft-g. However, its caller fsanycreatetable will free ft-g again through calling...

7.8CVSS5.9AI score0.00269EPSS
Exploits0References1
OSV
OSV
added 2024/05/17 2:15 p.m.4 views

UBUNTU-CVE-2023-52667

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a potential double-free in fsanycreategroups When kcalloc for ft-g succeeds but kvzalloc for in fails, fsanycreategroups will free ft-g. However, its caller fsanycreatetable will free ft-g again through calling...

7.8CVSS6.2AI score0.00269EPSS
Exploits0References16
OSV
OSV
added 2024/05/17 2:15 p.m.7 views

UBUNTU-CVE-2024-35835

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a double-free in arfscreategroups When in allocated by kvzalloc fails, arfscreategroups will free ft-g and return an error. However, arfscreatetable, the only caller of arfscreategroups, will hold this error and ca...

5.3CVSS6.2AI score0.00861EPSS
Exploits0References23
OSV
OSV
added 2024/05/01 6:15 a.m.7 views

DEBIAN-CVE-2024-27015

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: incorrect pppoe tuple pppoe traffic reaching ingress path does not match the flowtable entry because the pppoe header is expected to be at the network header offset. This bug causes a mismatch in the flow...

5.5CVSS5.6AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2023/04/06 8:59 p.m.33 views

CVE-2023-1668

A flaw was found in openvswitch OVS. When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results for both kernel and userspace datapath in installing a datapath flow matching all IP protocols nwproto is wildcarded...

8.2CVSS7.7AI score0.01216EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/04/06 12:0 a.m.34 views

Cisco IOS XE Common Flow Table DoS

The Cisco IOS XE software running on the remote device is affected by a denial of service vulnerability in the Common Flow Table CFT feature due to improper processing of IPv6 packets encapsulated inside IPv4 UDP packets. An unauthenticated, remote attacker, using malformed packets, can exploit...

7.8CVSS5.7AI score0.01967EPSS
Exploits0References3
CNVD
CNVD
added 2015/03/28 12:0 a.m.4 views

Cisco IOS XE Common Flow Table (CFT) Malformed IPv6 Message Handling Denial of Service Vulnerability

Cisco IOS is a popular Internet operating system. A security vulnerability in the Cisco IOS XE Common Flow Table CFT feature allows remote attackers to conduct denial-of-service attacks by sending malformed IPv6 messages encapsulating IPv4 UDP...

7.8CVSS6.9AI score0.01967EPSS
Exploits0References1
NVD
NVD
added 2015/03/26 10:59 a.m.24 views

CVE-2015-0639

The Common Flow Table CFT feature in Cisco IOS XE 3.6 and 3.7 before 3.7.1S, 3.8 before 3.8.0S, 3.9 before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S, when MMON or NBAR is enabled, allows remote attacker...

7.8CVSS6.6AI score0.01967EPSS
Exploits0References2
Rows per page
Query Builder