11 matches found
SUSE CVE-2026-23011
In the Linux kernel, the following vulnerability has been resolved: ipv4: ipgre: make ipgreheader robust Analog to commit db5b4e39c4e6 "ip6gre: make ip6greheader robust" Over the years, syzbot found many ways to crash the kernel in ipgreheader 1. This involves team or bonding drivers ability to...
CVE-2026-23011
CVE-2026-23011: In the Linux kernel, ip_gre: make ipgre_header() robust to prevent skb under_panic when a device (e.g., bonding/team) changes dev->needed_headroom or dev->hard_header_len. The crash described involves mld_newpack/mld_sendpack path with an skb that had insufficient headroom, ...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001483)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001483 advisory. In grehandleoffloads of ipgre.c, there is a possible page fault due to an invalid memory access. This could lead to local information disclosure with no additional...
PT-2026-4673
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ipv4/ip gre module related to the ipgre header function. This issue can lead to kernel crashes when devices dynamically change their headroom or...
The vulnerability of the gre_handle_offloads function in the ip_gre.c component of the Linux operating system allows a hacker to gain access to confidential data.
The vulnerability of the grehandleoffloads function in the ipgre.c component of the Linux operating system is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability allows an attacker to gain access to confidential data...
GSD-2022-1003258 ip_gre: test csum_start instead of transport header
ipgre: test csumstart instead of transport header This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.47 by commit...
GSD-2022-1002589 ip_gre: test csum_start instead of transport header
ipgre: test csumstart instead of transport header This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.4 by commit...
Denial Of Service (DoS)
linux is vulnerable to denial of service. The vulnerability exists in grehandleoffloads of ipgre.c due to improper checks which allows an attacker to cause a buffer overflow that leads to an application crash...
ASB-A-150694665
In grehandleoffloads of ipgre.c, there is a possible page fault due to an invalid memory access. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
Enabling Faster DDoS Mitigation for Cloud Assets
The cloud journey was considered a visionary approach less than a decade ago. Today, more than half of organizations rely on a cloud provider, and are planning to expand their portfolios across multiple cloud platforms, as part of their ongoing digital transformation. Is the so-called cloud promi...
Linux内核'IP GRE'模块空指针引用远程拒绝服务漏洞
Bugtraq ID: 47852 CVE ID:CVE-2011-1767 Linux是一款开放源代码的操作系统。 net/ipv4/ipgre.c中IP GRE模块初始化函数包含如下代码: 01 / 02 And now the modules code and kernel interface. 03 / 04 05 static int init ipgreinitvoid 06 07 int err; 08 09 printkKERNINFO "GRE over IPv4 tunneling driver\n"; 10 11 if...