Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the allocation of fixed-sized SKBs in the rtmgetnexthop function. This vulnerability may cause...

SUSE-SU-2026:20857-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-25.1 fixes various security issues The following security issues were fixed: - CVE-2025-21738: ata: libata-sff: ensure that we cannot write outside the allocated buffer bsc1257118. - CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to...

SUSE-SU-2026:20895-1 Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-33.1 fixes various security issues The following security issues were fixed: - CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. - CVE-2025-40258: mptcp: fix race condition in mptcpschedulewor...

CVE-2026-23200

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix ECMP sibling count mismatch when clearing RTFADDRCONF syzbot reported a kernel BUG in fib6addrt2node when adding an IPv6 route. 0 Commit f72514b3c569 "ipv6: clear RA flags when adding a static route" introduced logic to...

EUVD-2025-203789

In the Linux kernel, the following vulnerability has been resolved: mptcp: Initialise rcvmss before calling tcpsendactivereset in mptcpdofastclose. syzbot reported divide-by-zero in tcpselectwindow by MPTCP socket. 0 We had a similar issue for the bare TCP and fixed in commit 499350a5a6e7 "tcp:...

Linux Distros Unpatched Vulnerability : CVE-2025-68227

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mptcp: Fix proto fallback detection with BPF The sockmap feature allows bpf syscall from userspace, or based on bpf sockops, replacing the skprot of sockets...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell Vulnerability Scanner A safe, non-invasive scanne...

SUSE-SU-2025:4262-1 Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.33 fixes various security issues The following security issues were fixed: - CVE-2025-23145: mptcp: fix NULL pointer in canacceptnewsubflow bsc1242882. - CVE-2025-38500: xfrm: interface: fix use-after-free after changing collectmd...

EUVD-2019-16153

Malware in sbrugna...

Security update for iperf

This update for iperf fixes the following issues: updated to 3.19.1: CVE-2025-54349: Fixed off-by-one error heap based buffer overflow in iperfauth.c bsc1247519 CVE-2025-54350: Fixed Base64Decode assertion failure in iperfauth.c bsc1247520 CVE-2025-54351: Fixed buffer overflow when --skip-rx-copy...

Security update for iperf

This update for iperf fixes the following issues: update to 3.19.1: CVE-2025-54351: Fixed buffer overflow in net.c bsc1247522 CVE-2025-54350: Fixed Base64Decode assertion failure and application exit upon a malformed authentication attempt bsc1247520 CVE-2025-54349: Fixed off-by-one error and...

SUSE-SU-2025:02749-1 Security update for iperf

This update for iperf fixes the following issues: - update to 3.19.1: CVE-2025-54351: Fixed buffer overflow in net.c bsc1247522 CVE-2025-54350: Fixed Base64Decode assertion failure and application exit upon a malformed authentication attempt bsc1247520 CVE-2025-54349: Fixed off-by-one error and...

Linux Distros Unpatched Vulnerability : CVE-2022-49775

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcp: cdg: allow tcpcdgrelease to be called multiple times Apparently, mptcp is able to call tcpdisconnect on an already disconnected flow. This is generally fin...

PT-2025-33599

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw related to multi-path TCP MPTCP where a race condition can occur between subflow failure and subflow creation. This issue is similar to a previously...

CVE-2023-53072

CVE-2023-53072 (Linux kernel, MPTCP) : A use-after-free UaF at token lookup during MPTCP passive socket initialization was fixed by changing cleanup order to destroy unaccepted MPTCP sockets via a workqueue, ensuring the MPC subflow cleanup ends with the msk released. The fix reuses the MPTCP_WOR...

CVE-2025-21938

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix 'scheduling while atomic' in mptcppmnlappendnewlocaladdr If multiple connection requests attempt to create an implicit mptcp endpoint in parallel, more than one caller may end up in mptcppmnlappendnewlocaladdr because...

UBUNTU-CVE-2025-21706

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only set fullmesh for subflow endp With the in-kernel path-manager, it is possible to change the 'fullmesh' flag. The code in mptcppmnlfullmesh expects to change it only on 'subflow' endpoints, to recreate more or less...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-50083)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50083 advisory. - In the Linux kernel, the following vulnerability has been resolved: tcp: fix mptcp DSS corruption due to lar...

kernel: mptcp: pm: Fix uaf in __timer_delete_sync

A use-after-free flaw was found in the Linux kernel’s Multipath TCP MPTCP subsystem. This flaw allows a local user to crash or potentially escalate their privileges on the system...

mptcp: pm: Fix uaf in __timer_delete_sync

...