Lucene search
K

10065 matches found

SUSE CVE
SUSE CVE
added 2025/08/22 11:29 p.m.7 views

SUSE CVE-2025-38616

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.4CVSS6.2AI score0.00178EPSS
Exploits0References81
OSV
OSV
added 2025/08/22 2:48 p.m.13 views

USN-7712-1 linux-azure-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; -...

9.8CVSS6.6AI score0.01483EPSS
Exploits3References171
Ubuntu
Ubuntu
added 2025/08/22 2:39 p.m.2 views

USN-7711-1: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; -...

9.8CVSS7.3AI score0.01483EPSS
Exploits0
OSV
OSV
added 2025/08/22 2:39 p.m.14 views

USN-7711-1 linux-azure vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; -...

9.8CVSS6.6AI score0.01483EPSS
Exploits0References161
OSV
OSV
added 2025/08/22 2:15 p.m.10 views

AZL-66662 CVE-2025-38616 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.1CVSS5.6AI score0.00178EPSS
Exploits0References1
OSV
OSV
added 2025/08/22 2:15 p.m.1 views

DEBIAN-CVE-2025-38616

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.1CVSS6AI score0.00178EPSS
Exploits0References1
NVD
NVD
added 2025/08/22 2:15 p.m.10 views

CVE-2025-38616

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.1CVSS0.00178EPSS
Exploits0References5
NVD
NVD
added 2025/08/22 2:15 p.m.5 views

CVE-2024-58239

In the Linux kernel, the following vulnerability has been resolved: tls: stop recv if initial processrxlist gave us non-DATA If we have a non-DATA record on the rxlist and another record of the same type still on the queue, we will end up merging them: - processrxlist copies the non-DATA record -...

5.5CVSS0.00175EPSS
Exploits2References7
OSV
OSV
added 2025/08/22 2:15 p.m.3 views

UBUNTU-CVE-2025-38616

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.1CVSS5.7AI score0.00178EPSS
Exploits0References23
OSV
OSV
added 2025/08/22 2:15 p.m.1 views

UBUNTU-CVE-2024-58239

In the Linux kernel, the following vulnerability has been resolved: tls: stop recv if initial processrxlist gave us non-DATA If we have a non-DATA record on the rxlist and another record of the same type still on the queue, we will end up merging them: - processrxlist copies the non-DATA record -...

5.5CVSS6AI score0.00175EPSS
Exploits2References10
CVE
CVE
added 2025/08/22 1:1 p.m.43 views

CVE-2025-38616

CVE-2025-38616 (Linux kernel TLS ULP issue) affects the kernel TLS path handling data that may disappear from under the TLS ULP when the socket reader predated TLS installation or uses non-standard read APIs. The bug could lead to an out-of-bounds read or TLS state corruption if data is partially...

7.1CVSS6.3AI score0.00178EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2025/08/22 1:1 p.m.8 views

CVE-2025-38616 tls: handle data disappearing from under the TLS ULP

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

0.00178EPSS
Exploits0References5
OSV
OSV
added 2025/08/22 1:1 p.m.6 views

CVE-2025-38616 tls: handle data disappearing from under the TLS ULP

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.1CVSS5.9AI score0.00178EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/08/22 1:1 p.m.8 views

CVE-2025-38616

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.1CVSS6AI score0.00178EPSS
Exploits0
Cvelist
Cvelist
added 2025/08/22 1:1 p.m.8 views

CVE-2024-58239 tls: stop recv() if initial process_rx_list gave us non-DATA

In the Linux kernel, the following vulnerability has been resolved: tls: stop recv if initial processrxlist gave us non-DATA If we have a non-DATA record on the rxlist and another record of the same type still on the queue, we will end up merging them: - processrxlist copies the non-DATA record -...

0.00175EPSS
Exploits2References7
OSV
OSV
added 2025/08/22 1:1 p.m.6 views

CVE-2024-58239 tls: stop recv() if initial process_rx_list gave us non-DATA

In the Linux kernel, the following vulnerability has been resolved: tls: stop recv if initial processrxlist gave us non-DATA If we have a non-DATA record on the rxlist and another record of the same type still on the queue, we will end up merging them: - processrxlist copies the non-DATA record -...

5.5CVSS6.4AI score0.00175EPSS
Exploits2References10
Debian CVE
Debian CVE
added 2025/08/22 1:1 p.m.3 views

CVE-2024-58239

In the Linux kernel, the following vulnerability has been resolved: tls: stop recv if initial processrxlist gave us non-DATA If we have a non-DATA record on the rxlist and another record of the same type still on the queue, we will end up merging them: - processrxlist copies the non-DATA record -...

5.5CVSS5.5AI score0.00175EPSS
Exploits2
CNNVD
CNNVD
added 2025/08/22 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a TLS ULP data disappearance that could lead to an out-of-bounds read...

7.1CVSS6.3AI score0.00178EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/08/22 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper handling of non-DATA records by the tls module, which could result in a data merge error...

5.5CVSS6.8AI score0.00175EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.5 views

Oracle Linux 10 : kernel (ELSA-2025-14009)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-14009 advisory. - tls: always refresh the queue when reading sock - CVE-2025-38471 - net: fix udp gso skbsegment after pull from fraglist - CVE-2025-38124 - Bluetoot...

7.8CVSS7AI score0.00182EPSS
Exploits0References5
Rows per page
Query Builder