CVE-2026-34992

Antrea is a Kubernetes networking solution intended to be Kubernetes native. Prior to 2.4.5 and 2.5.2, a missing encryption vulnerability affects inter-Node Pod traffic. In Antrea clusters configured for dual-stack networking with IPsec encryption enabled trafficEncryptionMode: ipsec, Antrea fail...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004415)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004415 advisory. A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000341)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000341 advisory. A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic...

EUVD-2017-15358

Malware in sbrugna...

EUVD-2023-1167

Malicious code in bioql PyPI...

EUVD-2024-0984

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-28840

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream...

CVE-2024-28860

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Users of IPsec transparent encryption in Cilium may be vulnerable to cryptographic attacks that render the transparent encryption ineffective. In particular, Cilium is vulnerable to chosen plaintext, key...

BIT-HUBBLE-UI-BACKEND-2024-28860

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Users of IPsec transparent encryption in Cilium may be vulnerable to cryptographic attacks that render the transparent encryption ineffective. In particular, Cilium is vulnerable to chosen plaintext, key...

CVE-2024-28860

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Users of IPsec transparent encryption in Cilium may be vulnerable to cryptographic attacks that render the transparent encryption ineffective. In particular, Cilium is vulnerable to chosen plaintext, key...

CVE-2024-28860

CVE-2024-28860 affects Cilium’s IPsec transparent encryption. The issue arises from an ESP sequence number collision when multiple nodes share a key, enabling a MITM attacker to perform chosen-plaintext, key-recovery, and replay attacks that can undermine confidentiality and integrity. Fixed in C...

MikroTik RouterOS Missing Encryption of Sensitive Data (CVE-2017-6297)

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the- middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

SUSE-SU-2021:1148-1 Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP2)

This update for the Linux Kernel 4.4.121-92152 fixes several issues. The following security issues were fixed: - CVE-2021-27365: Fixed an issue where data structures did not have appropriate length constraints or checks, and could exceed the PAGESIZE value bsc1183491. - CVE-2021-27363: Fixed a...

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0835-1)

This update for the Linux Kernel 4.4.121-92149 fixes several issues. The following security issues were fixed : CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation bsc1179616. CVE-2020-28374: Fixed insufficient identifier checking in...

EulerOS Virtualization 3.0.6.6 : kernel (EulerOS-SA-2021-1454)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In cdevget of chardev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of...

SUSE-SU-2020:3441-1 Security update for the Linux Kernel (Live Patch 17 for SLE 15)

This update for the Linux Kernel 4.12.14-15047 fixes several issues. The following security issues were fixed: - CVE-2020-0430: Fixed an OOB read in skbheadlen of /include/linux/skbuff.h bsc1176723, bsc1178003. - CVE-2020-12351: Fixed a type confusion while processing AMP packets aka...

SUSE-SU-2020:3402-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-2412 fixes several issues. The following security issues were fixed: - CVE-2020-12351: Fixed a type confusion while processing AMP packets aka 'BleedingTooth' aka 'BadKarma' bsc1177724, bsc1177729, bsc1178397. - CVE-2020-25645: Fixed an an issue in IPsec th...

SUSE-SU-2020:1779-1 Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94116 fixes several issues. The following security issues were fixed: - CVE-2020-10757: Fixed an issue where remaping hugepage DAX to anon mmap could have caused user PTE access bsc1172437. - CVE-2020-12653: Fixed an issue in the wifi driver which could ha...

Vulnerability fixed in Linux kernel

SUSE has fixed a vulnerability in SUSE Kernel. The vulnerability causes in certain cases IPv6 traffic to be is not encrypted over an IPsec tunnel. A malicious party could potentially be able to retrieve sensitive data as a result. -= SUSE =- SUSE has made updates available to fix the vulnerabilit...

NewStart CGSL MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0004)

The remote NewStart CGSL host, running version MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - Multiple array index errors in drivers/hid/hid-core.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11 allow physically proximate...