CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

SUSE CVE•added 2026/05/28 3:56 a.m.•8 views

SUSE CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

5.7AI score0.00032EPSS

Exploits0References3

OSV•added 2026/05/27 2:17 p.m.•2 views

UBUNTU-CVE-2026-45905

5.7AI score0.00032EPSS

Exploits0References3

Debian CVE•added 2026/05/27 12:17 p.m.•8 views

CVE-2026-45905

5.7AI score0.00032EPSS

Exploits0

Cvelist•added 2026/05/27 12:17 p.m.•34 views

CVE-2026-45905 xfrm: fix ip_rt_bug race in icmp_route_lookup reverse path

0.00032EPSS

Exploits0References6

Positive Technologies•added 2026/05/27 12:0 a.m.•6 views

PT-2026-43772

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the icmp route lookup function during the reverse path process for sending ICMP error messages with XFRM IPsec policies. When the system acts as a forwarding...

5.4AI score0.00032EPSS

Exploits0References15

Tenable Nessus•added 2026/05/27 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2026-45905

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages,...

5.8AI score0.00032EPSS

Exploits0References4

AstraLinux•added 2026/05/20 5:53 a.m.•0 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: ipv4: Check for NULL idev in iprouteusehint The syzbot was able to trigger a NULL deref in fibvalidatesource in an old tree 1. It appears that this bug still exists in the latest trees. All calls to indevgetrcu must be checked...

5.5CVSS6.4AI score0.00024EPSS

Exploits0References2

OSV•added 2026/02/12 11:26 a.m.•0 views

SUSE-SU-2026:0472-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 Azure kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim bsc1256280. - CVE-2025-39880: libceph: fix invalid accesses to cephconnectionv1info bsc1250388. -...

9.8CVSS7.2AI score0.00102EPSS

Exploits2References372

RedHat Linux•added 2025/05/13 8:28 a.m.•1 views

kernel: net: Fix icmp host relookup triggering ip_rt_bug

A denial of service vulnerability was found in the Linux kernel. icmproutelookup creates input routes for locally generated packets during xfrm relookup ICMP traffic. Then it will set the input route dst-out = iprtbug to skb for DESTUNREACH, leading to loss of availability of the system...

5.5CVSS7.2AI score0.00016EPSS

Exploits0References5

OSV•added 2025/02/27 3:15 a.m.•1 views

DEBIAN-CVE-2025-21766

In the Linux kernel, the following vulnerability has been resolved: ipv4: use RCU protection in iprtupdatepmtu iprtupdatepmtu must use RCU protection to make sure the net structure it reads does not disappear...

5.5CVSS5.7AI score0.00018EPSS

Exploits0References1

OSV•added 2025/02/27 3:15 a.m.•1 views

UBUNTU-CVE-2025-21766

5.5CVSS6.2AI score0.00018EPSS

Exploits0References31

CVE•added 2025/02/27 2:18 a.m.•129 views

CVE-2025-21766

CVE-2025-21766 – Linux kernel: ipv4 PMTU update path uses RCU protection. __ip_rt_update_pmtu() must read the net structure under RCU to prevent reading a structure that can disappear. The connected documents confirm the root cause and indicate this has been resolved by introducing RCU protection...

5.5CVSS6.5AI score0.00018EPSS

Exploits0References8Affected Software1

Cvelist•added 2024/12/27 3:2 p.m.•23 views

CVE-2024-56647 net: Fix icmp host relookup triggering ip_rt_bug

In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering iprtbug arp link failure may trigger iprtbug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 iprtbug+0x14/0x20 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm...

0.00016EPSS

Exploits0References4

BDU FSTEC•added 2024/08/27 12:0 a.m.•1 views

The vulnerability of the ip_route_use_hint() function in the ipv4 component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the iprouteusehint function in the ipv4 component of the Linux operating system’s kernel is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00024EPSS

Exploits0References35Affected Software4

SUSE CVE•added 2024/05/21 1:58 a.m.•1 views

SUSE CVE-2024-36008

In the Linux kernel, the following vulnerability has been resolved: ipv4: check for NULL idev in iprouteusehint syzbot was able to trigger a NULL deref in fibvalidatesource in an old tree 1. It appears the bug exists in latest trees. All calls to indevgetrcu must be checked for a NULL result. 1...

5.5CVSS6.4AI score0.00024EPSS

Exploits0References13

OSV•added 2024/05/20 10:15 a.m.•1 views

AZL-42166 CVE-2024-36008 affecting package kernel for versions less than 6.6.35.1-4

5.5CVSS6.8AI score0.00024EPSS

Exploits0References1

OSV•added 2024/05/20 10:15 a.m.•0 views

DEBIAN-CVE-2024-36008

5.5CVSS5.4AI score0.00024EPSS

Exploits0References1

OSV•added 2024/05/20 10:15 a.m.•3 views

AZL-42243 CVE-2024-36008 affecting package kernel for versions less than 5.15.158.1-1