73 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: net: sched: sfb: Fixed an issue where a null pointer access occurred when sfbinit failed. When the default qdisc is sfb, if the qdisc of devqueue fails to be initialized during mqprioinit, sfbreset is invoked to clear resource...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCATAPRIOATTRPRIOMAP If an TCATAPRIOATTRPRIOMAP attribute is provided, the taprioparsemqprioopt function must validate it. Otherwise, arbitrary data can be injected into the kernel when the...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: net: sched: cake: Fixed an issue where a null pointer access occurred when cakeinit failed. When the default qdisc is cake, if the qdisc of devqueue fails to initialize during mqprioinit, cakereset is called to clear resources...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021559)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021559 advisory. In the Linux kernel, the following vulnerability has been resolved: net: sched: sfb: fix null pointer access issue when sfbinit fails When the default qdisc is sfb, ...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005720)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005720 advisory. In the Linux kernel, the following vulnerability has been resolved: net: sched: cake: fix null pointer access issue when cakeinit fails When the default qdisc is cak...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005636)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005636 advisory. In the Linux kernel, the following vulnerability has been resolved: net: sched: cake: fix null pointer access issue when cakeinit fails When the default qdisc is cak...
K000160222: Linux kernel vulnerability CVE-2022-50356
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: net: sched: sfb: fix null pointer access issue when sfbinit fails When the default qdisc is sfb, if the qdisc of devqueue fails to be inited during mqprioinit, sfbreset is invoked to clear resources...
K000160130: Linux kernel vulnerability CVE-2022-50356
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: net: sched: sfb: fix null pointer access issue when sfbinit fails When the default qdisc is sfb, if the qdisc of devqueue fails to be inited during mqprioinit, sfbreset is invoked to clear resources...
MiracleLinux 9 : kernel-5.14.0-611.27.1.el9_7 (AXSA:2026-171:09)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-171:09 advisory. kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing CVE-2025-38568 kernel: ASoC: Intel: bytcrrt5640: Fix invalid quirk input...
kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing
In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...
RLSA-2026:1617 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing CVE-2025-38568 kernel: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping CVE-2025-40154 kernel: devlink: rate:...
RockyLinux 9 : kernel (RLSA-2026:1617)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:1617 advisory. kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing CVE-2025-38568 kernel: ASoC: Intel: bytcrrt5640: Fix invalid quirk input...
AlmaLinux 9 : kernel (ALSA-2026:1617)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:1617 advisory. kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing CVE-2025-38568 kernel: ASoC: Intel: bytcrrt5640: Fix invalid quirk input...
AlmaLinux 10 : kernel (ALSA-2026:1690)
The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:1690 advisory. kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability CVE-2025-37819 kernel: RDMA/core: Fix KASAN: slab-use-after-free Read in...
Oracle Linux 9 : kernel (ELSA-2026-1617)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-1617 advisory. - net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing CKI Backport Bot RHEL-136822 CVE-2025-38568 - devlink: rate: Unset parent pointe...
kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing
In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...
Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing CVE-2025-38568 kernel: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping CVE-2025-40154 kernel: devlink: rate:...
ALSA-2026:1617 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing CVE-2025-38568 kernel: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping CVE-2025-40154 kernel: devlink: rate:...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38039)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38039 advisory. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid WARNON when configuring...
Azure Linux 3.0 Security Update: kernel (CVE-2024-56649)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56649 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: enetc: Do not configure preemptible...