31 matches found
EUVD-2026-15394
In the Linux kernel, the following vulnerability has been resolved: bridge: cfm: Fix race condition in peermep deletion When a peer MEP is being deleted, canceldelayedworksync is called on ccmrxdwork before freeing. However, brcfmframerx runs in softirq context under rcureadlock without RTNL and...
UBUNTU-CVE-2026-23393
In the Linux kernel, the following vulnerability has been resolved: bridge: cfm: Fix race condition in peermep deletion When a peer MEP is being deleted, canceldelayedworksync is called on ccmrxdwork before freeing. However, brcfmframerx runs in softirq context under rcureadlock without RTNL and...
CVE-2026-23393
In the Linux kernel, the following vulnerability has been resolved: bridge: cfm: Fix race condition in peermep deletion When a peer MEP is being deleted, canceldelayedworksync is called on ccmrxdwork before freeing. However, brcfmframerx runs in softirq context under rcureadlock without RTNL and...
CVE-2026-23393
In the Linux kernel, the following vulnerability has been resolved: bridge: cfm: Fix race condition in peermep deletion When a peer MEP is being deleted, canceldelayedworksync is called on ccmrxdwork before freeing. However, brcfmframerx runs in softirq context under rcureadlock without RTNL and...
CVE-2026-23393
CVE-2026-23393 – Linux kernel (bridge/cfm) race fix : A race during peer MEP deletion could occur because br_cfm_frame_rx() could re-schedule ccm_rx_dwork while peer_mep is freed under RCU, risking use-after-free. The fix replaces cancel_delayed_work_sync() with disable_delayed_work_sync() in bot...
CVE-2026-23393 bridge: cfm: Fix race condition in peer_mep deletion
In the Linux kernel, the following vulnerability has been resolved: bridge: cfm: Fix race condition in peermep deletion When a peer MEP is being deleted, canceldelayedworksync is called on ccmrxdwork before freeing. However, brcfmframerx runs in softirq context under rcureadlock without RTNL and...
PT-2026-27758
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the bridge component when deleting a peer MEP Maintenance Engineering Protocol. Specifically, the issue occurs because cancel delayed work sync was called on c...
EUVD-2007-0363
Malware in sbrugna...
MAL-2025-10217 Malicious code in @zalastax/nolb-_mep (npm)
The package @zalastax/nolb-mep was found to contain malicious code...
Malicious code in @zalastax/nolb-_mep (npm)
The package @zalastax/nolb-mep was found to contain malicious code...
MAL-2025-1611 Malicious code in mep-widget-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd0595287736afbcd4a5eb42eee88ad6ac547864009d19dfcb6c2ecc108e526c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mep-ul-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2d593c7ae7f8e32d4a74e793a97c54a82aba7a8e9123c55be97c8b4c254ce96f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mep-widget-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd0595287736afbcd4a5eb42eee88ad6ac547864009d19dfcb6c2ecc108e526c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mep-who (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fed998f266588bd60b1cba39d78eaa2ef59bee5fbe16f7ea4f8f04997798f2f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1610 Malicious code in mep-who (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fed998f266588bd60b1cba39d78eaa2ef59bee5fbe16f7ea4f8f04997798f2f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1609 Malicious code in mep-ul-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2d593c7ae7f8e32d4a74e793a97c54a82aba7a8e9123c55be97c8b4c254ce96f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MEP down troubleshooting
MEP DOWN on the NetScaler...
MAL-2023-1112 Malicious code in angular-mep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 681355ff3db8d03fa0216e4ff152cb0be7e3cd485423c68fc2d3b33c8feae3a5 The OpenSSF Package Analysis project identified 'angular-mep' @ 1.3.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in angular-mep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 681355ff3db8d03fa0216e4ff152cb0be7e3cd485423c68fc2d3b33c8feae3a5 The OpenSSF Package Analysis project identified 'angular-mep' @ 1.3.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in mep-widget-localizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f310734c8e72d28f8d9892e831726d172b517373a6c79419ca315bb718bf7013 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...