Linux Distros Unpatched Vulnerability : CVE-2026-46120

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ip6gre: Use cached t-net in ip6erspanchangelink. After commit 5e72ce3e3980 net: ipv6: Use link netns in newlink of rtnllinkops, ip6erspannewlink correctly...

UBUNTU-CVE-2026-46120

In the Linux kernel, the following vulnerability has been resolved: ip6gre: Use cached t-net in ip6erspanchangelink. After commit 5e72ce3e3980 "net: ipv6: Use link netns in newlink of rtnllinkops", ip6erspannewlink correctly resolves the per-netns ip6gre hash via linknet. ip6erspanchangelink was...

PT-2026-44243

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A slab-use-after-free occurs in the ip6erspan changelink function. The issue arises because the function uses dev netdev instead of the cached t-net, which causes the tunnel to be insert...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: - Ensured that erspanbasehdr is present in skb-head. The issue is that ip6erspanrcv and erspanrcv no longer ensures that erspanbasehdr is present in the linear part of skb-head before retrieving the @ver field from it. Add the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992662)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992662 advisory. In the Linux kernel, the following vulnerability has been resolved: erspan: do not use skbmacheader in ndostartxmit Drivers should not assume skbmacheaderskb ==...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990498)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990498 advisory. In the Linux kernel, the following vulnerability has been resolved: erspan: do not assume transport header is always set Rewrite tests in ip6erspantunnelxmit and...

SUSE CVE-2022-49691

In the Linux kernel, the following vulnerability has been resolved: erspan: do not assume transport header is always set Rewrite tests in ip6erspantunnelxmit and erspanfbxmit to not assume transport header is set. syzbot reported: WARNING: CPU: 0 PID: 1350 at include/linux/skbuff.h:2911...

UBUNTU-CVE-2022-49691

In the Linux kernel, the following vulnerability has been resolved: erspan: do not assume transport header is always set Rewrite tests in ip6erspantunnelxmit and erspanfbxmit to not assume transport header is set. syzbot reported: WARNING: CPU: 0 PID: 1350 at include/linux/skbuff.h:2911...

CVE-2022-49691

CVE-2022-49691 describes a Linux kernel vulnerability in ERSPAN handling where code incorrectly assumes skb_transport_header is always set, affecting ip6erspan_tunnel_xmit() and erspan_fb_xmit(). The issue can impact packet transmission in ERSPAN-related paths when the transport header is not pre...

CVE-2022-49691 erspan: do not assume transport header is always set

In the Linux kernel, the following vulnerability has been resolved: erspan: do not assume transport header is always set Rewrite tests in ip6erspantunnelxmit and erspanfbxmit to not assume transport header is set. syzbot reported: WARNING: CPU: 0 PID: 1350 at include/linux/skbuff.h:2911...

SUSE CVE-2024-35888

In the Linux kernel, the following vulnerability has been resolved: erspan: make sure erspanbasehdr is present in skb-head syzbot reported a problem in ip6erspanrcv 1 Issue is that ip6erspanrcv and erspanrcv no longer make sure erspanbasehdr is present in skb linear part skb-head before getting...

DEBIAN-CVE-2024-35888

In the Linux kernel, the following vulnerability has been resolved: erspan: make sure erspanbasehdr is present in skb-head syzbot reported a problem in ip6erspanrcv 1 Issue is that ip6erspanrcv and erspanrcv no longer make sure erspanbasehdr is present in skb linear part skb-head before getting...

PT-2025-18817 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the use of skb mac header in ndo start xmit. Drivers should not assume skb mac headerskb == skb-data ...