Lucene search
K

52 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: mctp: unshare packets when reassembling Ensure that the fraglist used for reassembly is not shared with other packets. This prevents incorrect reassembly when packets are cloned, and avoids a memory leak caused by circular...

5.5CVSS6.1AI score0.00174EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: net: gso: Fixed a panic that occurred when using a fraglist with mixed head allocation types. Since the commit 3dcbdb134f32 “net: gso: Fixed an error in skbsegment when splitting a gsosize mangled skb having linear-headed...

5.5CVSS6.1AI score0.00166EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: kcm: Fixed a memory leak in the error path of kcmsendmsg. The syzbot reported a memory leak as follows: BUG: Memory leak Unreferenced object 0xffff88810b088c00 size 240: Comm “syz-executor186”, pid 5012, jiffies 4294943306 age...

5.5AI score0.00177EPSS
Exploits0References2
NVD
NVD
added 2026/05/11 8:16 a.m.40 views

CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS0.92766EPSS
Exploits20References9
ATTACKERKB
ATTACKERKB
added 2026/05/11 6:26 a.m.5 views

CVE-2026-43500

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpcinputcallevent and the RESPONSE handler in rxrpcverifyresponse copy the skb to a linear one before calling into the security o...

7.8CVSS5.8AI score0.92766EPSS
Exploits20References6Affected Software1
RedHat Linux
RedHat Linux
added 2026/05/07 7:41 p.m.13 views

kernel: sctp: avoid NULL dereference when chunk data buffer is missing

In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...

6AI score0.00184EPSS
Exploits0References5
CVE
CVE
added 2026/05/06 11:28 a.m.21 views

CVE-2026-43244

CVE-2026-43244 affects the Linux kernel KCM (Kernel Connection Multiplexer). The issue arises during partial sendmsg operations: when kcm_sendmsg fills MAX_SKB_FRAGS, it allocates a new skb in frag_list and may copy data; if the copy fails, the new tail skb can have zero frags, leaving an empty e...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/25 12:32 a.m.5 views

kernel: sctp: avoid NULL dereference when chunk data buffer is missing

In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...

5.8AI score0.00184EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/18 10:15 a.m.8 views

kernel: sctp: avoid NULL dereference when chunk data buffer is missing

In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...

5.8AI score0.00184EPSS
Exploits0References5
OSV
OSV
added 2026/02/14 4:15 p.m.9 views

AZL-77676 CVE-2026-23154 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment handling by properly checking the SKBGSODODGY flag for fraglist GSO packets, addressing low throughput issues observed when a station accesses IPv4...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References1
OSV
OSV
added 2026/02/14 4:15 p.m.4 views

UBUNTU-CVE-2026-23154

In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment handling by properly checking the SKBGSODODGY flag for fraglist GSO packets, addressing low throughput issues observed when a station accesses IPv4...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/02/14 4:1 p.m.3 views

CVE-2026-23154

In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment handling by properly checking the SKBGSODODGY flag for fraglist GSO packets, addressing low throughput issues observed when a station accesses IPv4...

5.5CVSS5.2AI score0.00114EPSS
Exploits0
Cvelist
Cvelist
added 2026/02/14 4:1 p.m.25 views

CVE-2026-23154 net: fix segmentation of forwarding fraglist GRO

In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment handling by properly checking the SKBGSODODGY flag for fraglist GSO packets, addressing low throughput issues observed when a station accesses IPv4...

0.00114EPSS
Exploits0References5
NVD
NVD
added 2026/01/31 12:16 p.m.9 views

CVE-2026-23016

In the Linux kernel, the following vulnerability has been resolved: inet: frags: drop fraglist conntrack references Jakub added a warning in nfconntrackcleanupnetlist to make debugging leaked skbs/conntrack references more obvious. syzbot reports this as triggering, and I can also reproduce this...

5.5CVSS0.00128EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/31 11:38 a.m.5 views

EUVD-2026-5078

In the Linux kernel, the following vulnerability has been resolved: inet: frags: drop fraglist conntrack references Jakub added a warning in nfconntrackcleanupnetlist to make debugging leaked skbs/conntrack references more obvious. syzbot reports this as triggering, and I can also reproduce this...

5.8AI score0.00128EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/31 12:0 a.m.5 views

PT-2026-5519

In the Linux kernel, the following vulnerability has been resolved: inet: frags: drop fraglist conntrack references Jakub added a warning in nf conntrack cleanup net list to make debugging leaked skbs/conntrack references more obvious. syzbot reports this as triggering, and I can also reproduce...

5.8AI score0.00128EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.2 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: SCTP: Avoid NULL dereferencing when the chunk data buffer is missing. The chunk-skb pointer is dereferenced in the if-block, where it is supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not NULL. Instead,...

6.1AI score0.00184EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.5 views

PT-2026-4479

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the Linux kernel's networking subsystem within the skb segment list function when handling packets aggregated by the GRO Generic Receive Offload engine. Prior to ...

5.5CVSS5.5AI score0.0012EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/25 12:55 a.m.3 views

SUSE CVE-2023-54094

In the Linux kernel, the following vulnerability has been resolved: net: prevent skb corruption on frag list segmentation Ian reported several skb corruptions triggered by rx-gro-list, collecting different oops alike: 62.624003 BUG: kernel NULL pointer dereference, address: 00000000000000c0...

5.5CVSS6.2AI score0.00168EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2025/12/25 12:55 a.m.4 views

SUSE CVE-2023-54112

In the Linux kernel, the following vulnerability has been resolved: kcm: Fix memory leak in error path of kcmsendmsg syzbot reported a memory leak like below: BUG: memory leak unreferenced object 0xffff88810b088c00 size 240: comm "syz-executor186", pid 5012, jiffies 4294943306 age 13.680s hex dum...

5.5CVSS6.4AI score0.00177EPSS
Exploits0References18
Rows per page
Query Builder