Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990349)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990349 advisory. In the Linux kernel, the following vulnerability has been resolved: tun: add missing verification for short frame The cited commit missed to check against the validi...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988933)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988933 advisory. In the Linux kernel, the following vulnerability has been resolved: mac80211: track only QoS data frames for admission control For admission control, obviously all o...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990092)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990092 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989771)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989771 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in...

TencentOS Server 4: lz4 (TSSA-2025:0847)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0847 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Net: Ethernet: Cortina: Use TOE/TSO for all TCP protocols. It is desirable to enable the hardware accelerator to also process non-segmented TCP frames. We can pass the skb-len value to the “TOE/TSO” offloader, which will handle...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Wifi: mwifiex: discards erroneous disassociation frames on the STA interface When operating in concurrent STA/AP mode with the host MLME enabled, the firmware incorrectly sends disassociation frames to the STA interface when...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Wifi: cfg80211: A use-after-free issue was addressed in the cmpbss function. This issue was introduced due to a quirky behavior of the bssfree function introduced in commit 776b3580178f „cfg80211: Properly track hidden SSID...

CVE-2025-12464

CVE-2025-12464 affects the QEMU e1000 network device. The root cause is a stack-based buffer overflow in the e1000_receive_iov path when processing short frames in loopback mode after padding logic was moved to net core. This can crash the QEMU host process (DoS). Public docs show fixes via SUSE/...

CVE-2025-12464

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

OESA-2025-2614 dav1d security update

dav1d is a new AV1 cross-platform Decoder, open-source, and focused on speed and correctness. Security Fixes: An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We recommend upgrading past...

Siemens SIMATIC Devices Buffer Overflow (CVE-2023-45871)

An issue was discovered in drivers/net/ethernet/intel/igb/igbmain.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Sensitive Information in Resource Not Removed Before Reuse (CVE-2024-49997)

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiqetop: fix memory disclosure When applying padding, the buffer is not zeroed, which results in memory disclosure. The mentioned data is observed on the wire. This patch uses skbputpadto to pad Ethernet frames...

Linux Distros Unpatched Vulnerability : CVE-2025-62813

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LZ4 through 1.10.0 allows attackers to cause a denial of service application crash or possibly have unspecified other impact when the application processes...

Linux Distros Unpatched Vulnerability : CVE-2025-39985

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: mcbausb: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit...

Linux Distros Unpatched Vulnerability : CVE-2025-39987

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: hi311x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit...

Linux Distros Unpatched Vulnerability : CVE-2025-39986

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: sun4ican: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit...