Lucene search
K

13 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: In the ice module, the value of fragsize in the XDP RxQ information was changed from the DMA write length to xdp.framesz. The only user of the fragsize field in the XDP RxQ information is bpfxdpfragsincreasetail. This function...

5.5CVSS5.8AI score0.001EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/25 11:28 p.m.4 views

CVE-2026-23377

A flaw was found in the Linux kernel, specifically within the ice network driver and the eXpress Data Path XDP component. This vulnerability arises from an incorrect calculation of the fragsize in XDP receive queue information, which can lead to an invalid memory state known as "negative tailroom...

5.5CVSS5.8AI score0.001EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.10 views

CVE-2026-23377

In the Linux kernel, the following vulnerability has been resolved: ice: change XDP RxQ fragsize from DMA write length to xdp.framesz The only user of fragsize field in XDP RxQ info is bpfxdpfragsincreasetail. It clearly expects whole buff size instead of DMA write size. Different assumptions in...

5.5CVSS5.8AI score0.001EPSS
Exploits0References4
OSV
OSV
added 2026/03/25 11:16 a.m.4 views

UBUNTU-CVE-2026-23343

In the Linux kernel, the following vulnerability has been resolved: xdp: produce a warning when calculated tailroom is negative Many ethernet drivers report xdp Rx queue frag size as being the same as DMA write size. However, the only user of this field, namely bpfxdpfragsincreasetail, clearly...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References9
OSV
OSV
added 2026/03/25 11:16 a.m.4 views

UBUNTU-CVE-2026-23377

In the Linux kernel, the following vulnerability has been resolved: ice: change XDP RxQ fragsize from DMA write length to xdp.framesz The only user of fragsize field in XDP RxQ info is bpfxdpfragsincreasetail. It clearly expects whole buff size instead of DMA write size. Different assumptions in...

5.5CVSS5.9AI score0.001EPSS
Exploits0References5
CVE
CVE
added 2026/03/25 10:27 a.m.12 views

CVE-2026-23377

CVE-2026-23377 affects the Linux kernel in the ice network driver under XDP. The root cause is an incorrect use of frag_size in XDP RxQ info, which should reflect the whole buffer size but was treated as a DMA write length, causing negative tailroom and potential kernel panic when crafting packet...

5.5CVSS5.8AI score0.001EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/03/25 10:27 a.m.7 views

CVE-2026-23377 ice: change XDP RxQ frag_size from DMA write length to xdp.frame_sz

In the Linux kernel, the following vulnerability has been resolved: ice: change XDP RxQ fragsize from DMA write length to xdp.framesz The only user of fragsize field in XDP RxQ info is bpfxdpfragsincreasetail. It clearly expects whole buff size instead of DMA write size. Different assumptions in...

5.5CVSS5.8AI score0.001EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.20 views

CVE-2026-23343 xdp: produce a warning when calculated tailroom is negative

In the Linux kernel, the following vulnerability has been resolved: xdp: produce a warning when calculated tailroom is negative Many ethernet drivers report xdp Rx queue frag size as being the same as DMA write size. However, the only user of this field, namely bpfxdpfragsincreasetail, clearly...

0.00129EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, caused by an incorrect configuration of the XDP RxQ fragsize field, which may lead to negative tail space...

5.5CVSS6AI score0.001EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-23377

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ice: change XDP RxQ fragsize from DMA write length to xdp.framesz The only user of fragsize field in XDP RxQ info is bpfxdpfragsincreasetail. It clearly expects...

5.5CVSS6.3AI score0.001EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.5 views

kernel: virtio-net: fix overflow inside virtnet_rq_alloc

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix overflow inside virtnetrqalloc When the frag just got a page, then may lead to regression on VM. Specially if the sysctl net.core.highorderallocdisable value is 1, then the frag always get a page when do refill...

5.5CVSS6.9AI score0.00198EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/01/13 5:50 a.m.13 views

CVE-2024-57843

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix overflow inside virtnetrqalloc When the frag just got a page, then may lead to regression on VM. Specially if the sysctl net.core.highorderallocdisable value is 1, then the frag always get a page when do refill...

5.5CVSS7.1AI score0.00198EPSS
Exploits0References4
OSV
OSV
added 2025/01/11 3:15 p.m.4 views

UBUNTU-CVE-2024-57843

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix overflow inside virtnetrqalloc When the frag just got a page, then may lead to regression on VM. Specially if the sysctl net.core.highorderallocdisable value is 1, then the frag always get a page when do refill...

5.5CVSS6.4AI score0.00198EPSS
Exploits0References20
Rows per page
Query Builder