140 matches found
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989408)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989408 advisory. In the Linux kernel, the following vulnerability has been resolved: tunnels: do not assume mac header is set in skbtunnelcheckpmtu Recently added debug in commit...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990026)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990026 advisory. In the Linux kernel, the following vulnerability has been resolved: geneve: do not assume mac header is set in genevexmitskb We should not assume mac header is set i...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990375)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990375 advisory. In the Linux kernel, the following vulnerability has been resolved: geneve: do not assume mac header is set in genevexmitskb We should not assume mac header is set i...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989149)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989149 advisory. In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix out-of-bound bugs caused by unset skb-macheader If an AFPACKET socket is used to send...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989959)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989959 advisory. In the Linux kernel, the following vulnerability has been resolved: llc: verify mac len before reading mac header LLC reads the mac header with ethhdr without...
EUVD-2022-54570
In the Linux kernel, the following vulnerability has been resolved: tunnels: do not assume mac header is set in skbtunnelcheckpmtu Recently added debug in commit f9aefd6b2aa3 "net: warn if mac header was not set" caught a bug in skbtunnelcheckpmtu, as shown in this syzbot report 1. In ndostartxmi...
EUVD-2023-60007
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix a NULL pointer dereference in ath12kmacophwscan In ath12kmacophwscan, the return value of kzalloc is directly used in memcpy, which may lead to a NULL pointer dereference on failure of kzalloc. Fix this bug by...
Linux Distros Unpatched Vulnerability : CVE-2023-53601
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bonding: do not assume skb macheader is set Drivers must not assume in their ndostartxmit th...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987191)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987191 advisory. In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix out-of-bound bugs caused by unset skb-macheader If an AFPACKET socket is used to send...
SUSE CVE-2023-53601
In the Linux kernel, the following vulnerability has been resolved: bonding: do not assume skb macheader is set Drivers must not assume in their ndostartxmit that skbs have their macheader set. skb-data is all what is needed. bonding seems to be one of the last offender as caught by syzbot:...
CVE-2023-53601
In the Linux kernel, the following vulnerability has been resolved: bonding: do not assume skb macheader is set Drivers must not assume in their ndostartxmit that skbs have their macheader set. skb-data is all what is needed. bonding seems to be one of the last offender as caught by syzbot:...
UBUNTU-CVE-2023-53601
In the Linux kernel, the following vulnerability has been resolved: bonding: do not assume skb macheader is set Drivers must not assume in their ndostartxmit that skbs have their macheader set. skb-data is all what is needed. bonding seems to be one of the last offender as caught by syzbot:...
CVE-2023-53601 bonding: do not assume skb mac_header is set
In the Linux kernel, the following vulnerability has been resolved: bonding: do not assume skb macheader is set Drivers must not assume in their ndostartxmit that skbs have their macheader set. skb-data is all what is needed. bonding seems to be one of the last offender as caught by syzbot:...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the assumption that skb macheader has been set, which could lead to a null pointer dereference...
PT-2025-40764
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.30-syzkaller Description The Linux kernel had a flaw where drivers incorrectly assumed that skb mac header was always set during network packet transmission. Specifically, the ndo start xmit function was used...
EUVD-2024-53284
Malicious code in bioql PyPI...
CVE-2023-53433
In the Linux kernel, the following vulnerability has been resolved: net: add vlangetprotocolanddepth helper Before blamed commit, pskbmaypull was used instead of skbheaderpointer in vlangetprotocol and friends. Few callers depended on skb-head being populated with MAC header, syzbot caught one of...
CVE-2023-53433 net: add vlan_get_protocol_and_depth() helper
In the Linux kernel, the following vulnerability has been resolved: net: add vlangetprotocolanddepth helper Before blamed commit, pskbmaypull was used instead of skbheaderpointer in vlangetprotocol and friends. Few callers depended on skb-head being populated with MAC header, syzbot caught one of...
CVE-2023-53433 net: add vlan_get_protocol_and_depth() helper
In the Linux kernel, the following vulnerability has been resolved: net: add vlangetprotocolanddepth helper Before blamed commit, pskbmaypull was used instead of skbheaderpointer in vlangetprotocol and friends. Few callers depended on skb-head being populated with MAC header, syzbot caught one of...
CVE-2023-53433
CVE-2023-53433 affects the Linux kernel’s VLAN handling. The issue arises from the change to add a new helper, vlan_get_protocol_and_depth(), to fix callers that relied on skb->head for MAC header data. Before the fix, code paths used pskb_may_pull() instead of skb_header_pointer() in __vlan_g...