Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.8 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021642)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021642 advisory. In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in...

4.7CVSS6AI score0.0013EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011071)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011071 advisory. In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp...

5.6AI score0.00156EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/02/18 12:25 a.m.4 views

SUSE CVE-2026-23120

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References16
OSV
OSV
added 2026/02/14 3:16 p.m.5 views

UBUNTU-CVE-2026-23120

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References32
EUVD
EUVD
added 2026/02/14 3:9 p.m.9 views

EUVD-2026-5916

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.2AI score0.00114EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/02/14 3:9 p.m.5 views

CVE-2026-23120

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.1AI score0.00114EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the data competition between l2tptunneldelwork and sk-sksocket in l2tp, potentially leading to...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/12/10 12:35 a.m.4 views

SUSE CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.5CVSS6.3AI score0.00156EPSS
Exploits0References4
NVD
NVD
added 2025/12/09 1:16 a.m.6 views

CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

0.00156EPSS
Exploits0References5
CVE
CVE
added 2025/12/09 12:1 a.m.14 views

CVE-2023-53809

The CVE-2023-53809 issue affects the Linux kernel where passing a pppol2tp socket as a UDP socket to l2tp_tunnel_register() could trigger a recursive locking deadlock. Root cause: a lock order condition allowed deadlock when a socket path led to nested locking of sk_lock-AF_PPPOX. The advisory no...

5.9AI score0.00156EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the fact that l2tptunnelregister can cause a recursive deadlock when passing pppol2tp file descriptors...

6.2AI score0.00156EPSS
Exploits0References6
OSV
OSV
added 2025/04/17 2:37 p.m.4 views

SUSE-SU-2025:20192-1 Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52927: netfilter: allow exp not to be removed in nfctfindexpectation bsc1239644. - CVE-2024-26708: mptcp: fix inconsistent state on fastopen race...

7.8CVSS7.2AI score0.09117EPSS
Exploits8References799
SUSE Linux
SUSE Linux
added 2025/04/08 3:36 p.m.6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52927: netfilter: allow exp not to be removed in nfctfindexpectation bsc1239644. CVE-2024-35910: tcp: properly terminate timers for kernel sockets...

8.5CVSS8.4AI score0.09117EPSS
Exploits7References834
SUSE CVE
SUSE CVE
added 2025/03/28 3:37 a.m.3 views

SUSE CVE-2023-53020

In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...

5.5CVSS6.6AI score0.0013EPSS
Exploits0References7
NVD
NVD
added 2025/03/27 5:15 p.m.11 views

CVE-2023-53020

In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...

4.7CVSS0.0013EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/03/27 4:43 p.m.2 views

CVE-2023-53020 l2tp: close all race conditions in l2tp_tunnel_register()

In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...

6.2AI score0.0013EPSS
Exploits0References4
OSV
OSV
added 2025/03/27 4:43 p.m.8 views

CVE-2023-53020 l2tp: close all race conditions in l2tp_tunnel_register()

In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...

4.7CVSS5.8AI score0.0013EPSS
Exploits0References7
CVE
CVE
added 2025/03/27 4:43 p.m.146 views

CVE-2023-53020

CVE-2023-53020 affects the Linux kernel: l2tp_tunnel_register() contains race conditions that modify the tunnel socket after publishing, call setup_udp_tunnel_sock() on an existing socket without locking, and change sock lock class on the fly. A patch fixes these by initializing the socket before...

4.7CVSS6.8AI score0.0013EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2025/03/27 4:43 p.m.8 views

CVE-2023-53020

In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...

4.7CVSS5.3AI score0.0013EPSS
Exploits0
NVD
NVD
added 2024/10/21 6:15 p.m.10 views

CVE-2024-49940

In the Linux kernel, the following vulnerability has been resolved: l2tp: prevent possible tunnel refcount underflow When a session is created, it sets a backpointer to its tunnel. When the session refcount drops to 0, l2tpsessionfree drops the tunnel refcount if session-tunnel is non-NULL...

5.5CVSS0.00204EPSS
Exploits0References2
Rows per page
Query Builder