Lucene search
K

49 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: BPF, sockmap: Fixed a potential memory leak in an unlikely error case. If the skblinearize function is needed and fails, we might leak a message during error handling. To fix this issue, we must free the message buffer before...

5.5CVSS5.3AI score0.00232EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/28 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31517

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfrm: iptfs: fix skbput panic on non-linear skb during reassembly In iptfsreassemcont, IP-TFS attempts to append data to the new inner packet 'newskb' that is...

5.5CVSS6.2AI score0.00121EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:9 a.m.9 views

bridge: br_nd_send: linearize skb before parsing ND options

...

9.1CVSS5.2AI score0.00422EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/26 1:52 a.m.9 views

SUSE CVE-2026-31682

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: linearize skb before parsing ND options brndsend parses neighbour discovery options from ns-opt and assumes that these options are in the linear part of request. Its callers only guarantee that the ICMPv6 header...

4.3CVSS5.4AI score0.00422EPSS
Exploits0References16
NVD
NVD
added 2026/04/25 9:16 a.m.5 views

CVE-2026-31682

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: linearize skb before parsing ND options brndsend parses neighbour discovery options from ns-opt and assumes that these options are in the linear part of request. Its callers only guarantee that the ICMPv6 header...

9.1CVSS0.00422EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/04/25 8:46 a.m.31 views

CVE-2026-31682 bridge: br_nd_send: linearize skb before parsing ND options

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: linearize skb before parsing ND options brndsend parses neighbour discovery options from ns-opt and assumes that these options are in the linear part of request. Its callers only guarantee that the ICMPv6 header...

9.1CVSS0.00422EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/04/25 8:46 a.m.4 views

CVE-2026-31682

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: linearize skb before parsing ND options brndsend parses neighbour discovery options from ns-opt and assumes that these options are in the linear part of request. Its callers only guarantee that the ICMPv6 header...

9.1CVSS5.3AI score0.00422EPSS
Exploits0
EUVD
EUVD
added 2026/04/25 8:46 a.m.4 views

EUVD-2026-25649

In the Linux kernel, the following vulnerability has been resolved: bridge: brndsend: linearize skb before parsing ND options brndsend parses neighbour discovery options from ns-opt and assumes that these options are in the linear part of request. Its callers only guarantee that the ICMPv6 header...

5.3AI score0.00422EPSS
Exploits0References8
CVE
CVE
added 2026/04/25 8:46 a.m.24 views

CVE-2026-31682

CVE-2026-31682 affects the Linux kernel bridge implementation, where br_nd_send may parse non-linear ND options from ns->opt[]. The root cause is failure to linearize the skb before ND option parsing, risking reads past the buffer and potential memory exposure or crash. The fix is to linearize...

9.1CVSS5.3AI score0.00422EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/25 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-31682

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bridge: brndsend: linearize skb before parsing ND options brndsend parses neighbour discovery options from ns-opt and assumes that these options are in the line...

9.1CVSS6.3AI score0.00422EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.7 views

SUSE CVE-2026-31517

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skbput panic on non-linear skb during reassembly In iptfsreassemcont, IP-TFS attempts to append data to the new inner packet 'newskb' that is being reassembled. First a zero-copy approach is tried if it succeeds...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/22 3:31 p.m.6 views

EUVD-2026-24901

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skbput panic on non-linear skb during reassembly In iptfsreassemcont, IP-TFS attempts to append data to the new inner packet 'newskb' that is being reassembled. First a zero-copy approach is tried if it succeeds...

5.7AI score0.00121EPSS
Exploits0References4
NVD
NVD
added 2026/04/22 2:16 p.m.5 views

CVE-2026-31517

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skbput panic on non-linear skb during reassembly In iptfsreassemcont, IP-TFS attempts to append data to the new inner packet 'newskb' that is being reassembled. First a zero-copy approach is tried if it succeeds...

5.5CVSS0.00121EPSS
Exploits0References3
CVE
CVE
added 2026/04/22 1:54 p.m.18 views

CVE-2026-31517

The CVE-2026-31517 vulnerability affects the Linux kernel’s IP-TFS (xfrm_iptfs) reassembly path. During datagram reassembly, an optimization can make newskb non-linear; if a subsequent fragment is appended via skb_put(), the code may trigger a SKB_LINEAR_ASSERT and crash (OOPS). The documented fi...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.30 views

CVE-2026-31517 xfrm: iptfs: fix skb_put() panic on non-linear skb during reassembly

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skbput panic on non-linear skb during reassembly In iptfsreassemcont, IP-TFS attempts to append data to the new inner packet 'newskb' that is being reassembled. First a zero-copy approach is tried if it succeeds...

0.00121EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.8 views

PT-2026-34422

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skb put panic on non-linear skb during reassembly In iptfs reassem cont, IP-TFS attempts to append data to the new inner packet 'newskb' that is being reassembled. First a zero-copy approach is tried if it succee...

5.7AI score0.00121EPSS
Exploits0References4
Redos
Redos
added 2026/03/17 12:0 a.m.5 views

ROS-20260317-73-0009

A vulnerability in the xdplinearizepage function of the drivers/net/virtionet.c module of the Linux operating systems kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6AI score0.0017EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.3 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38165)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38165 advisory. - In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix panic when calling...

5.5CVSS5.4AI score0.00138EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/06 12:0 a.m.8 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990397)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990397 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: fix a possible memleak in tipcbufappend skblinearize doesn't free the skb when it fails, so...

5.5CVSS6.2AI score0.00249EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989106)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989106 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix potential memory leak on unlikely error case If skblinearize is needed and fail...

5.5CVSS5.1AI score0.00232EPSS
Exploits0References4
Rows per page
Query Builder