Lucene search
+L

603 matches found

EUVD
EUVD
added 2026/02/14 3:9 p.m.10 views

EUVD-2026-5916

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.2AI score0.00114EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/02/14 3:9 p.m.5 views

CVE-2026-23120

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.1AI score0.00114EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/02/14 3:9 p.m.22 views

CVE-2026-23120

Technical details for CVE-2026-23120 are not provided in the connected documents. The Initial Description summarizes the race but does not specify affected products or fixes. Monitor vendor advisories for concrete remediation guidance.

5.5CVSS5.2AI score0.00114EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the data competition between l2tptunneldelwork and sk-sksocket in l2tp, potentially leading to...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/02/05 12:25 a.m.6 views

SUSE CVE-2026-23072

In the Linux kernel, the following vulnerability has been resolved: l2tp: Fix memleak in l2tpudpencaprecv. syzbot reported memleak of struct l2tpsession, l2tptunnel, sock, etc. 0 The cited commit moved down the validation of the protocol version in l2tpudpencaprecv. The new place requires an extr...

5.5CVSS5.2AI score0.00121EPSS
Exploits0References7
OSV
OSV
added 2026/02/04 5:16 p.m.7 views

UBUNTU-CVE-2026-23072

In the Linux kernel, the following vulnerability has been resolved: l2tp: Fix memleak in l2tpudpencaprecv. syzbot reported memleak of struct l2tpsession, l2tptunnel, sock, etc. 0 The cited commit moved down the validation of the protocol version in l2tpudpencaprecv. The new place requires an extr...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:7 p.m.5 views

CVE-2026-23072

In the Linux kernel, the following vulnerability has been resolved: l2tp: Fix memleak in l2tpudpencaprecv. syzbot reported memleak of struct l2tpsession, l2tptunnel, sock, etc. 0 The cited commit moved down the validation of the protocol version in l2tpudpencaprecv. The new place requires an extr...

5.2AI score0.00121EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/02/04 4:7 p.m.28 views

CVE-2026-23072

CVE-2026-23072: Linux kernel l2tp memleak in l2tp_udp_encap_recv() fixed by adding proper error handling after protocol version validation; the patch ensures l2tp_session_put() is called to avoid leaking objects (l2tp_session, l2tp_tunnel, sock). References indicate the commit addresses a memory‑...

5.5CVSS5.2AI score0.00121EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/02/04 4:7 p.m.9 views

EUVD-2026-5472

In the Linux kernel, the following vulnerability has been resolved: l2tp: Fix memleak in l2tpudpencaprecv. syzbot reported memleak of struct l2tpsession, l2tptunnel, sock, etc. 0 The cited commit moved down the validation of the protocol version in l2tpudpencaprecv. The new place requires an extr...

5.2AI score0.00121EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-23072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - l2tp: Fix memleak in l2tpudpencaprecv. syzbot reported memleak of struct l2tpsession, l2tptunnel, sock, etc. 0 The cited commit moved down the validation of the...

5.5CVSS6.2AI score0.00121EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004132)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004132 advisory. In pppol2tpcreate of l2tpppp.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution...

7.4CVSS6.8AI score0.0011EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004247)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004247 advisory. In l2tpsessiondelete and related functions of l2tpcore.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privile...

6.7CVSS7AI score0.00176EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001635)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001635 advisory. In l2tpsessiondelete and related functions of l2tpcore.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privile...

6.7CVSS7AI score0.00176EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003835)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003835 advisory. In l2tpsessiondelete and related functions of l2tpcore.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privile...

6.7CVSS7AI score0.00176EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004244)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004244 advisory. In the l2tp subsystem, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges...

6.4CVSS6.3AI score0.00135EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004034)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004034 advisory. In the l2tp subsystem, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges...

6.4CVSS6.3AI score0.00135EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.11 views

MiracleLinux 7 : kernel-3.10.0-1062.el7 (AXSA:2019-4338:05)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4338:05 advisory. Kernel: vhostnet: infinite loop while receiving packets leads to DoS CVE-2019-3900 Kernel: page cache side channel attacks CVE-2019-5489 kernel:...

8.4CVSS6.8AI score0.05789EPSS
Exploits11References26
OPENSUSE Linux
OPENSUSE Linux
added 2026/01/16 12:0 a.m.4 views

NetworkManager-applet-l2tp-1.52.0-1.1 on GA media (moderate)

NetworkManager-applet-l2tp-1.52.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10051-1 Rating: moderate Cross-References: CVE-2025-9615 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

3.3CVSS7.2AI score0.00162EPSS
Exploits0
OSV
OSV
added 2026/01/15 12:0 a.m.3 views

OPENSUSE-SU-2026:10051-1 NetworkManager-applet-l2tp-1.52.0-1.1 on GA media

These are all security issues fixed in the NetworkManager-applet-l2tp-1.52.0-1.1 package on the GA media of openSUSE Tumbleweed...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002205)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002205 advisory. The l2tpiprecvmsg function in net/l2tp/l2tpip.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure ha...

4.9CVSS6.9AI score0.00434EPSS
Exploits0References23
Rows per page
Query Builder