Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2026/01/26 12:24 a.m.6 views

SUSE CVE-2026-23011

In the Linux kernel, the following vulnerability has been resolved: ipv4: ipgre: make ipgreheader robust Analog to commit db5b4e39c4e6 "ip6gre: make ip6greheader robust" Over the years, syzbot found many ways to crash the kernel in ipgreheader 1. This involves team or bonding drivers ability to...

5.5CVSS5.2AI score0.00187EPSS
Exploits0References21
CVE
CVE
added 2026/01/25 2:36 p.m.31 views

CVE-2026-23011

CVE-2026-23011: In the Linux kernel, ip_gre: make ipgre_header() robust to prevent skb under_panic when a device (e.g., bonding/team) changes dev->needed_headroom or dev->hard_header_len. The crash described involves mld_newpack/mld_sendpack path with an skb that had insufficient headroom, ...

5.5CVSS5.2AI score0.00187EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001483)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001483 advisory. In grehandleoffloads of ipgre.c, there is a possible page fault due to an invalid memory access. This could lead to local information disclosure with no additional...

5.5CVSS5.8AI score0.0018EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-4673

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ipv4/ip gre module related to the ipgre header function. This issue can lead to kernel crashes when devices dynamically change their headroom or...

5.5CVSS6.1AI score0.00187EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/09/14 12:0 a.m.7 views

The vulnerability of the gre_handle_offloads function in the ip_gre.c component of the Linux operating system allows a hacker to gain access to confidential data.

The vulnerability of the grehandleoffloads function in the ipgre.c component of the Linux operating system is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability allows an attacker to gain access to confidential data...

5.5CVSS5.9AI score0.0018EPSS
Exploits0References8Affected Software3
OSV
OSV
added 2022/06/28 6:57 p.m.7 views

GSD-2022-1003258 ip_gre: test csum_start instead of transport header

ipgre: test csumstart instead of transport header This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.47 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 5:59 p.m.14 views

GSD-2022-1002589 ip_gre: test csum_start instead of transport header

ipgre: test csumstart instead of transport header This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.4 by commit...

7.2AI score
Exploits0
Veracode
Veracode
added 2022/01/26 5:22 a.m.29 views

Denial Of Service (DoS)

linux is vulnerable to denial of service. The vulnerability exists in grehandleoffloads of ipgre.c due to improper checks which allows an attacker to cause a buffer overflow that leads to an application crash...

5.5CVSS3.8AI score0.0018EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2022/01/01 12:0 a.m.33 views

ASB-A-150694665

In grehandleoffloads of ipgre.c, there is a possible page fault due to an invalid memory access. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.8AI score0.0018EPSS
Exploits0References2
Imperva Blog
Imperva Blog
added 2019/07/29 5:21 p.m.75 views

Enabling Faster DDoS Mitigation for Cloud Assets

The cloud journey was considered a visionary approach less than a decade ago. Today, more than half of organizations rely on a cloud provider, and are planning to expand their portfolios across multiple cloud platforms, as part of their ongoing digital transformation. Is the so-called cloud promi...

0.2AI score
Exploits0
seebug.org
seebug.org
added 2011/05/18 12:0 a.m.54 views

Linux内核'IP GRE'模块空指针引用远程拒绝服务漏洞

Bugtraq ID: 47852 CVE ID:CVE-2011-1767 Linux是一款开放源代码的操作系统。 net/ipv4/ipgre.c中IP GRE模块初始化函数包含如下代码: 01 / 02 And now the modules code and kernel interface. 03 / 04 05 static int init ipgreinitvoid 06 07 int err; 08 09 printkKERNINFO "GRE over IPv4 tunneling driver\n"; 10 11 if...

5.4CVSS0.8AI score0.0283EPSS
Exploits2
Rows per page
Query Builder