Lucene search
K

64 matches found

Cvelist
Cvelist
added 2026/01/13 3:34 p.m.22 views

CVE-2025-71080 ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix a BUG in rt6getpcpuroute under PREEMPTRT On PREEMPTRT kernels, after rt6getpcpuroute returns NULL, the current task can be preempted. Another task running on the same CPU may then execute rt6makepcpuroute and successful...

0.00119EPSS
Exploits0References3
CVE
CVE
added 2026/01/13 3:34 p.m.24 views

CVE-2025-71080

CVE-2025-71080 involves a race in the Linux kernel on PREEMPT_RT where rt6_get_pcpu_route() may return NULL and allow another task on the same CPU to install a pcpu_rt entry, causing a later cmpxchg() failure and a BUG_ON(prev). The fix makes the cmpxchg() failure graceful by freeing the allocati...

5.5CVSS6.2AI score0.00119EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.11 views

PT-2026-2606

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the IPv6 implementation, specifically in the pskb expand head function as part of calipso skbuff setattr. This issue can lead to a kernel oops...

5.5CVSS5.4AI score0.00114EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-54265

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN:...

6.2AI score0.00177EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.5 views

CVE-2023-54265

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in archatomic64inc arch/x86/include/asm/atomic6464.h:88 inli...

5.9AI score0.00177EPSS
Exploits0References10
OSV
OSV
added 2025/12/30 12:15 p.m.5 views

CVE-2023-54265 ipv6: Fix an uninit variable access bug in __ip6_make_skb()

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in archatomic64inc arch/x86/include/asm/atomic6464.h:88 inli...

6.1AI score0.00177EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2025/12/30 12:15 p.m.3 views

CVE-2023-54265

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in archatomic64inc arch/x86/include/asm/atomic6464.h:88 inli...

5.3AI score0.00177EPSS
Exploits0
CVE
CVE
added 2025/12/30 12:15 p.m.15 views

CVE-2023-54265

CVE-2023-54265 affects the Linux kernel: an uninit variable access in __ip6_make_skb() can occur when icmp6hdr is not in the skb’s linear region (notably with SOCK_RAW); the fix uses a local icmp6_type to carry the correct value across scenarios. Public advisories from multiple vendors (Red Hat, ...

5.9AI score0.00177EPSS
Exploits0References8
OSV
OSV
added 2025/11/18 2:4 a.m.9 views

SUSE-SU-2025:4123-1 Security update for the Linux Kernel (Live Patch 61 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise kernel 4.12.14-122.231 fixes various security issues The following security issues were fixed: - CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637. - CVE-2022-49014: net: tun: Fix use-after-free in tundetach bsc1232818. - CVE-2022-49053...

8.8CVSS8.7AI score0.03301EPSS
Exploits2References125
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.3 views

Amazon Linux 2 : runc, --advisory ALAS2NITRO-ENCLAVES-2025-072 (ALASNITRO-ENCLAVES-2025-072)

The version of runc installed on the remote host is prior to 1.3.2-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2NITRO-ENCLAVES-2025-072 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

5.6AI score
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/10/16 5:47 a.m.3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-49980: USB: gadget: fix use-after-free read in usbudcuevent bsc1245110. CVE-2022-50233: Bluetooth: eir: Fix using strlen with hdev-devname,shortname...

9.2CVSS7.6AI score0.21314EPSS
Exploits3References346
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986906)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986906 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6fragment Blamed commit claimed rcureadlock was held by ip6fragme...

7.8CVSS5.9AI score0.00265EPSS
Exploits0References4
Amazon
Amazon
added 2025/06/23 12:0 a.m.8 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeupkswapd with a wrong zone index CVE-2024-26783 In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix potential uninit-value access in ip6makeskb...

5.5CVSS7.8AI score0.00241EPSS
Exploits0
OSV
OSV
added 2025/03/06 2:5 p.m.14 views

SUSE-SU-2025:0802-1 Security update for go1.24

This update for go1.24 fixes the following issues: - CVE-2025-22870: golang.org/x/net/proxy, golang.org/x/net/http/httpproxy: Fixed proxy bypass using IPv6 zone IDs bsc1238572 Other fixes: - Updated go version to go1.24.1 bsc1236217: go71986 go71984 bsc1238572 security: fix CVE-2025-22870 net/htt...

4.4CVSS7.3AI score0.00384EPSS
Exploits2References4
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipv6: fixed a possible Use-after-Allocation UAF in ip6finishoutput2. If skbexpandhead returns NULL, the skb is freed, and the associated dst/idev may also be freed. We need to hold the rcureadlock to ensure that the dst and...

7.8CVSS6.2AI score0.00237EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/01/25 11:33 a.m.2 views

Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059158 fixes several issues. The following security issues were fixed: CVE-2024-36971: Fixed dstnegativeadvice race bsc1226324. CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6...

7.8CVSS8.4AI score0.02701EPSS
Exploits4References104
SUSE CVE
SUSE CVE
added 2024/09/05 2:46 a.m.4 views

SUSE CVE-2024-44986

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in ip6finishoutput2 If skbexpandhead returns NULL, skb has been freed and associated dst/idev could also have been freed. We need to hold rcureadlock to make sure the dst and associated idev are alive...

5.5CVSS6.4AI score0.00237EPSS
Exploits0References14
Amazon
Amazon
added 2024/08/13 12:0 a.m.10 views

Medium: containerd

Issue Overview: The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...

9.8CVSS6.9AI score0.01956EPSS
Exploits0
OSV
OSV
added 2024/05/30 4:15 p.m.2 views

DEBIAN-CVE-2024-36903

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix potential uninit-value access in ip6makeskb As it was done in commit fc1092f51567 "ipv4: Fix uninit-value access in ipmakeskb" for IPv4, check FLOWIFLAGKNOWNNH on fl6-flowi6flags instead of testing HDRINCL on the socket...

5.5CVSS5.7AI score0.0023EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/08/11 12:0 a.m.23 views

Fedora 24 : lighttpd (2016-07e9059072)

1.4.41 ---- Patch for CVE-2016-1000212. ---- Connection state patch. ---- Patch for ipv6 blocking bug. ---- 1.4.40 https://www.lighttpd.net/2016/7/16/1.4.40/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable ha...

7AI score
Exploits0References3
Rows per page
Query Builder