Lucene search
K

602 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002205)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002205 advisory. The l2tpiprecvmsg function in net/l2tp/l2tpip.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure ha...

4.9CVSS6.9AI score0.00434EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001578)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001578 advisory. In the l2tp subsystem, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges...

6.4CVSS6.3AI score0.00135EPSS
Exploits0References4
Fedora
Fedora
added 2026/01/13 12:49 a.m.12 views

[SECURITY] Fedora 43 Update: NetworkManager-l2tp-1.52.0-1.fc43

This package contains software for integrating L2TP and L2TP over IPsec VPN support with the NetworkManager...

3.3CVSS7AI score0.00162EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/01/13 12:0 a.m.8 views

Fedora: Security Advisory (FEDORA-2026-0d1cf2e45b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/01/13 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2026-4ba84b1f69)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/12 12:0 a.m.3 views

Fedora 43 : NetworkManager-l2tp (2026-4ba84b1f69)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-4ba84b1f69 advisory. Updated to 1.52.0 release CVE-2025-9615 Verify file permissions for private connections to prevent unprivileged user from using other user's certs...

3.3CVSS4.8AI score0.00162EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/12 12:0 a.m.5 views

Fedora 42 : NetworkManager-l2tp (2026-0d1cf2e45b)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-0d1cf2e45b advisory. Updated to 1.52.0 release CVE-2025-9615 Verify file permissions for private connections to prevent unprivileged user from using other user's certs. Ensure...

3.3CVSS4.8AI score0.00162EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 9:58 a.m.11 views

CVE-2020-7465

The L2TP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted L2TP control packet with AVP Q.931 Cause Code to execute arbitrary code or cause a denial of service memory corruption...

9.8CVSS8.1AI score0.02947EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.5 views

PT-2026-6142

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the l2tp udp encap recv function. The issue was identified by syzbot, which reported a memory leak of structures like l2tp session, l2tp tunnel...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References139
SUSE CVE
SUSE CVE
added 2025/12/10 12:35 a.m.5 views

SUSE CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53809

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive...

6AI score0.00162EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/09 3:31 a.m.4 views

EUVD-2023-60097

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.8AI score0.00162EPSS
Exploits0References6
NVD
NVD
added 2025/12/09 1:16 a.m.8 views

CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

0.00162EPSS
Exploits0References5
OSV
OSV
added 2025/12/09 1:16 a.m.2 views

DEBIAN-CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.3AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 1:16 a.m.5 views

UBUNTU-CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.7AI score0.00162EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/12/09 12:1 a.m.30 views

CVE-2023-53809 l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

0.00162EPSS
Exploits0References5
CVE
CVE
added 2025/12/09 12:1 a.m.17 views

CVE-2023-53809

The CVE-2023-53809 issue affects the Linux kernel where passing a pppol2tp socket as a UDP socket to l2tp_tunnel_register() could trigger a recursive locking deadlock. Root cause: a lock order condition allowed deadlock when a socket path led to nested locking of sk_lock-AF_PPPOX. The advisory no...

5.9AI score0.00162EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/12/09 12:1 a.m.8 views

CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

5.2AI score0.00162EPSS
Exploits0
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the fact that l2tptunnelregister can cause a recursive deadlock when passing pppol2tp file descriptors...

6.2AI score0.00162EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988949)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988949 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix signed integer overflow in l2tpip6sendmsg When len = INTMAX - transhdrlen, ulen = len +...

5.5CVSS6.2AI score0.00272EPSS
Exploits0References4
Rows per page
Query Builder