CVE-2025-39797

CVE-2025-39797 concerns the Linux kernel xfrm duplicate SPI handling. The vulnerability arises when Strongswan triggers an XFRM_NETLINK_ALLOC_SPI request, enabling xfrm_alloc_spi() to return success for an SPI already in use, causing multiple inbound SAs to share the same SPI (distinguished only ...

CVE-2025-9748

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected by this issue is the function fromIpsecitem of the file /goform/IPSECsave of the component httpd. Executing manipulation of the argument ipsecno can lead to stack-based buffer overflow. The attack may be performed from remote...

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: hfsc: Fix a potential UAF in hfscdequeue too CVE-2025-37823 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw CVE-2025-38200 kernel: RDMA/iwcm: Fix...

CVE-2025-9748

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected by this issue is the function fromIpsecitem of the file /goform/IPSECsave of the component httpd. Executing manipulation of the argument ipsecno can lead to stack-based buffer overflow. The attack may be performed from remote...

CVE-2025-9748 Tenda CH22 httpd IPSECsave fromIpsecitem stack-based overflow

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected by this issue is the function fromIpsecitem of the file /goform/IPSECsave of the component httpd. Executing manipulation of the argument ipsecno can lead to stack-based buffer overflow. The attack may be performed from remote...

Tenda CH22 安全漏洞

Tenda CH22 is an enterprise-grade wireless router from Tenda brand. Tenda CH22 has a buffer overflow vulnerability, the vulnerability stems from the parameter ipsecno in the file /goform/IPSECsave fails to correctly validate the length of the input data size, an attacker can use this vulnerabilit...

Linux Distros Unpatched Vulnerability : CVE-2025-38500

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collectmd xfrm interface collectmd proper...

Linux Distros Unpatched Vulnerability : CVE-2021-28213

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks. CVE-2021-28213 Note that Nessus relies on the presence of the package a...

SUSE SLES15 Security Update : kernel (SUSE-SU-2025:02923-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02923-1 advisory. The SUSE Linux Enterprise 15 SP6 Confidential Computing kernel was updated to receive various security bugfixes. The following security bugs...

AZL-66452 CVE-2025-38590 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Remove skb secpath if xfrm state is not found Hardware returns a unique identifier for a decrypted packet's xfrm state, this state is looked up in an xarray. However, the state might have been freed by the time of this...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the reuse of the xfrm interface after release, which could lead to a double release...

D-Link DI-8200 ipsec_road_asp function buffer overflow vulnerability

D-Link DI8200 is an Internet behavior management router designed by D-Link for small and medium-sized network environments, which supports multi-line bandwidth overlay, PPPoE authentication billing, and intelligent traffic control. The D-Link DI8200 suffers from a buffer overflow vulnerability,...

Linux Distros Unpatched Vulnerability : CVE-2022-3630

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Linux Kernel. It has been rated as problematic. This issue affects some unknown processing of the file fs/fscache/cookie.c of the...

Linux Distros Unpatched Vulnerability : CVE-2022-3624

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Linux Kernel and classified as problematic. Affected by this issue is the function rlbarpxmit of the file...

Linux Distros Unpatched Vulnerability : CVE-2022-3625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Linux Kernel. It has been classified as critical. This affects the function devlinkparamset/devlinkparamget of the file...

Linux Distros Unpatched Vulnerability : CVE-2022-27666

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal...

The vulnerability of the ipsec_net_asp() function in D-Link DI-8200 router software allows a attacker to cause a service failure.

The vulnerability of the ipsecnetasp function in D-Link DI-8200 router microprogramming software is related to buffer overflows in the stack when processing the remotip parameter. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

The vulnerability of the ipsec_road_asp() function in D-Link DI-8200 router software allows a attacker to cause a service failure.

The vulnerability of the ipsecroadasp function in D-Link DI-8200 router microprogramming software is related to buffer overflows in the stack when processing the hostip parameter. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

D-Link DI-8200 安全漏洞

D-Link DI8200 is an Internet behavior management router designed by D-Link for small and medium-sized network environments, which supports multi-line bandwidth overlay, PPPoE authentication billing, and intelligent traffic control. The D-Link DI8200 suffers from a buffer overflow vulnerability,...

PT-2025-31562 · D Link · Di 8200

Name of the Vulnerable Software and Affected Versions: D-LINK DI-8200 version 16.07.26A1 Description: The D-LINK DI-8200 router is vulnerable to a buffer overflow in the ipsec road asp function through the host ip parameter. Recommendations: D-LINK DI-8200 version 16.07.26A1: At the moment, there...