Lucene search
K

35 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: fou: Do not allow the value 0 for FOUATTRIPPROTO. The function fouudprecv has the same issue mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, the buffer skb is neither freed by fouudprecv nor sent via "resubmit"-ed...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: “fou”: removed the warning in guegroreceive for unsupported protocols. The warning for guegroreceive is removed if the encapsulated type is unknown or does not have a GRO handler. Such packets can be easily constructed. The Syzbo...

7.8CVSS6.3AI score0.00245EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/02/05 12:24 a.m.6 views

SUSE CVE-2026-23083

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

3.3CVSS5.2AI score0.00129EPSS
Exploits0References20
NVD
NVD
added 2026/02/04 5:16 p.m.5 views

CVE-2026-23083

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

7.8CVSS0.00129EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.4 views

CVE-2026-23083

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References25
CVE
CVE
added 2026/02/04 4:8 p.m.22 views

CVE-2026-23083

CVE-2026-23083 is a Linux kernel vulnerability affecting FOU (IPv4/IPv6 over UDP) handling, where setting FOU_ATTR_IPPROTO to 0 could leave the skb unfreed in fou_udp_recv() and not retried in ip_protocol_deliver_rcu(). The fix suppresses 0 for FOU_ATTR_IPPROTO and applies upstream patching to pr...

7.8CVSS5.2AI score0.00129EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/02/04 4:8 p.m.4 views

CVE-2026-23083

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

7.8CVSS5.1AI score0.00129EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:8 p.m.3 views

CVE-2026-23083

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

5.2AI score0.00129EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/02/04 4:8 p.m.6 views

CVE-2026-23083 fou: Don't allow 0 for FOU_ATTR_IPPROTO.

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

7.8CVSS5.2AI score0.00129EPSS
Exploits0References11
Vulnrichment
Vulnrichment
added 2026/02/04 4:8 p.m.7 views

CVE-2026-23083 fou: Don't allow 0 for FOU_ATTR_IPPROTO.

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

5.3AI score0.00129EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/02/04 4:8 p.m.27 views

CVE-2026-23083 fou: Don't allow 0 for FOU_ATTR_IPPROTO.

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

0.00129EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from allowing FOUATTRIPPROTO to be set to 0, potentially leading to packets not being released properly...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23083

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by...

7.8CVSS7.1AI score0.00129EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-6153

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the fou module. Specifically, the FOU ATTR IPPROTO attribute should not be set to 0. When FOU ATTR IPPROTO is 0, the skb socket buffer is not...

7.8CVSS6.4AI score0.00129EPSS
Exploits0
OSV
OSV
added 2025/12/30 12:17 p.m.18 views

OESA-2025-2887 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3-sva: Fix mm use-after-free We currently call arm64mmcontextput without holding a reference to the mm, which can result in use-after-free. Call...

8.5CVSS7.1AI score0.00391EPSS
Exploits2References16
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-395260)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-395260 advisory. In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down...

5.5CVSS6.3AI score0.00238EPSS
Exploits0References3
OSV
OSV
added 2025/05/21 11:52 a.m.7 views

SUSE-SU-2025:01640-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48933: netfilter: nftables: fix memory leak during stateful obj update bsc1229621. - CVE-2022-49110: netfilter: conntrack: revisit gc autotuning...

7.8CVSS6.6AI score0.00266EPSS
Exploits0References88
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: “fou”: fixed the initialization of “grc”. “grc” must be initialized first. There may be a situation where if “fou” is NULL, “goto out” will be executed, and “grc” will be used in an uninitialized state...

7.1CVSS6.2AI score0.00226EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.11 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-46763)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46763 advisory. - In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References2
Amazon
Amazon
added 2024/10/31 12:0 a.m.5 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use CVE-2024-26921 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapo: walk over current view on netlink dump...

9.1CVSS7AI score0.01367EPSS
Exploits1
Rows per page
Query Builder