Lucene search
K

19 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: net: ti: icssg-prueth: Fixed the issue of missing data copying and incorrect recycling in ZC RX dispatch. The emacdispatchskbzc function allocates a new skb using napiallocskb. However, it never copies the packet data from the...

9.8CVSS5.9AI score0.00308EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/06 1:41 a.m.5 views

SUSE CVE-2026-43039

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emacdispatchskbzc allocates a new skb via napiallocskb but never copies the packet data from the XDP buffer into it. The skb is passed up the stack...

9.8CVSS5.8AI score0.00308EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/01 6:4 p.m.4 views

CVE-2026-43039

A flaw was found in the Linux kernel's icssg-prueth network driver. This vulnerability allows for information disclosure, where uninitialized kernel memory contents can be exposed to user applications. This occurs because the driver fails to properly copy received packet data into a network buffe...

9.8CVSS5.8AI score0.00308EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 3:16 p.m.6 views

CVE-2026-43039

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emacdispatchskbzc allocates a new skb via napiallocskb but never copies the packet data from the XDP buffer into it. The skb is passed up the stack...

9.8CVSS0.00308EPSS
Exploits0References2
CVE
CVE
added 2026/05/01 2:15 p.m.16 views

CVE-2026-43039

CVE-2026-43039 concerns the Linux kernel icssg-prueth driver. In ZC RX dispatch, emac_dispatch_skb_zc() allocates a new skb via napi_alloc_skb() but fails to copy the received packet data from the XDP buffer, causing uninitialized heap memory to be passed up the stack and potentially leaking kern...

9.8CVSS5.9AI score0.00308EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.34 views

CVE-2026-43039 net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emacdispatchskbzc allocates a new skb via napiallocskb but never copies the packet data from the XDP buffer into it. The skb is passed up the stack...

9.8CVSS0.00308EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.7 views

PT-2026-36456

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the emac dispatch skb zc function where a new skb is allocated via napi alloc skb but packet data from the XDP buffer is not copied into it. This results in the skb...

9.8CVSS5.9AI score0.00308EPSS
Exploits0References14
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the emacdispatchskbzc function in the icssg-prueth driver failing to copy XDP buffer data to a new skb,...

9.8CVSS5.9AI score0.00308EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.5 views

SUSE CVE-2026-31501

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix use-after-free of CPPI descriptor in RX path cppi5hdescgetpsdata returns a pointer into the CPPI descriptor. In both emacrxpacket and emacrxpacketzc, the descriptor is freed via k3cppidescpoolfree befor...

9.8CVSS5.6AI score0.00379EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/22 7:39 p.m.6 views

CVE-2026-31501

A flaw was found in the Linux kernel's net: ti: icssg-prueth driver. This use-after-free vulnerability occurs in the receive RX path, where a data structure CPPI descriptor is released from memory before all necessary operations on its contents are complete. A remote attacker could exploit this b...

9.8CVSS5.8AI score0.00379EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 1:54 p.m.10 views

CVE-2026-31501

The CVE-2026-31501 issue affects the Linux kernel net: ti: icssg-prueth driver and is a use-after-free in the RX path. cpp i5_hdesc_get_psdata() returns a pointer into the CPPI descriptor, and the descriptor is freed via k3_cppi_desc_pool_free() before psdata[0]/psdata[1] are used by emac_rx_time...

9.8CVSS5.6AI score0.00379EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the premature release of the CPPI descriptor in the RX path within the icssg-prueth driver. This...

9.8CVSS5.8AI score0.00379EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.4 views

PT-2026-34406

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the RX path of the icssg-prueth component. The function cppi5 hdesc get psdata returns a pointer to the CPPI descriptor. In the functions emac rx packet...

9.8CVSS5.2AI score0.00379EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.3 views

SUSE CVE-2026-23453

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: Fix memory leak in XDPDROP for non-zero-copy mode Page recycling was removed from the XDPDROP path in emacrunxdp to avoid conflicts with AFXDP zero-copy mode, which uses xskbufffree instead. However, this...

7.5CVSS5.7AI score0.00343EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/03 6:52 p.m.6 views

CVE-2026-23453

A flaw was found in the Linux kernel's net: ti: icssg-prueth network driver. When XDP eXpress Data Path programs drop packets in non-zero-copy mode, memory pages are not properly returned to the system's page pool. This memory leak can lead to Out of Memory OOM conditions, causing a Denial of...

7.5CVSS5.9AI score0.00343EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/03 6:31 p.m.7 views

EUVD-2026-18706

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: Fix memory leak in XDPDROP for non-zero-copy mode Page recycling was removed from the XDPDROP path in emacrunxdp to avoid conflicts with AFXDP zero-copy mode, which uses xskbufffree instead. However, this...

5.8AI score0.00343EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.4 views

PT-2026-30148

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: Fix memory leak in XDP DROP for non-zero-copy mode Page recycling was removed from the XDP DROP path in emac run xdp to avoid conflicts with AF XDP zero-copy mode, which uses xsk buff free instead. However,...

5.8AI score0.00343EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-38584

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: ti: icssgprueth: Fix NULL pointer dereference in pruethprobe In the pruethprobe functio...

5.5CVSS6AI score0.00225EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.4 views

The vulnerability of the icssg_prueth component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the icssgprueth component in the Linux operating system is related to the assignment of the NULL pointer in the pruethprobe function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.1AI score0.00225EPSS
Exploits0References20Affected Software4
Rows per page
Query Builder