16 matches found
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15
A use-after-free flaw was discovered in the nfcllcpfindlocal function in net/nfc/llcpcore.c within NFC in the Linux kernel. This flaw allows a local user with special privileges to cause a kernel information leak issue...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: llc: Do not use skbget before devqueuexmit. The syzbot exploit can cause hosts to crash, especially when using llc and devices that do not support IFFTXSKBSHARING. In this case, the e1000 driver calls ethskbpad, where the skb is...
CVE-2026-31629
A flaw was found in the Linux kernel's Near Field Communication NFC Logical Link Control Protocol LLCP subsystem. Missing return statements after LLCPCLOSED checks in the nfcllcprecvhdlc and nfcllcprecvdisc functions can lead to a use-after-free vulnerability. This occurs because the system...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986355)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986355 advisory. In the Linux kernel, the following vulnerability has been resolved: net/nfc: fix use-after-free llcpsockbind/connect Commits 8a4cd82d nfc: fix refcount leak in...
Linux kernel 资源管理错误漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to properly synchronize the processing of PHY control responses, resulting in accessing a stack...
UBUNTU-CVE-2023-52843
In the Linux kernel, the following vulnerability has been resolved: llc: verify mac len before reading mac header LLC reads the mac header with ethhdr without verifying that the skb has an Ethernet header. Syzbot was able to enter llcrcv on a tun device. Tun can insert packets without mac len and...
The vulnerability of the llcp_sock_bind() function in the NFC protocol of the Linux operating system allows a hacker to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the llcpsockbind function in the NFC protocol of the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker acting locally to gain access to confidential data, compromise its integrity, and cause...
UBUNTU-CVE-2018-9518
In nfcllcpbuildsdreqtlv of llcpcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel...
kernel: ping socket / AF_LLC connect() sin_family race
A race condition leading to a NULL pointer dereference was found in the Linux kernel's Link Layer Control implementation. A local attacker with access to ping sockets could use this flaw to crash the system...
kernel: ping socket / AF_LLC connect() sin_family race
A race condition leading to a NULL pointer dereference was found in the Linux kernel's Link Layer Control implementation. A local attacker with access to ping sockets could use this flaw to crash the system...
kernel: ping socket / AF_LLC connect() sin_family race
A race condition leading to a NULL pointer dereference was found in the Linux kernel's Link Layer Control implementation. A local attacker with access to ping sockets could use this flaw to crash the system...
kernel: ping socket / AF_LLC connect() sin_family race
A race condition leading to a NULL pointer dereference was found in the Linux kernel's Link Layer Control implementation. A local attacker with access to ping sockets could use this flaw to crash the system...
Linux kernel information disclosure vulnerability (CNVD-2016-02915)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. An information disclosure vulnerability exists in the llc module of the Linux kernel, which stems from a program's failure to initialize the padding bytes in the 'info' stack...
Ubuntu 12.04 LTS : linux vulnerabilities (USN-2560-1)
An integer overflow was discovered in the stack randomization feature of the Linux kernel on 64 bit platforms. A local attacker could exploit this flaw to bypass the Address Space Layout Randomization ASLR protection mechanism. CVE-2015-1593 An information leak was discovered in the Linux Kernel'...
USN-2561-1: Linux kernel (OMAP4) vulnerabilities
It was discovered that the Linux kernel's Infiniband subsystem did not properly sanitize its input parameters while registering memory regions from userspace. A local user could exploit this flaw to cause a denial of service system crash or to potentially gain administrative privileges...
kernel: bluetooth: buffer overflow in l2cap config request
Integer underflow in the l2capconfigreq function in net/bluetooth/l2capcore.c in the Linux kernel before 3.0 allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact via a small command-size value within the command header of a Logical...