Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: net: xfrm: unexport init-annotated xfrm4protocolinit EXPORTSYMBOL and init are a poor combination, as the .init.text section is freed after initialization. As a result, modules cannot use symbols annotated with init. Access to a...

ROS-20260317-73-0030

A vulnerability in the net/xfrm component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000281)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000281 advisory. An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in xfrmpolicyunlink, which will cause denial of service, because...

Linux Distros Unpatched Vulnerability : CVE-2019-15666

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in xfrmpolicyunlink, which will cause denial of service, becau...

DEBIAN-CVE-2022-49345

In the Linux kernel, the following vulnerability has been resolved: net: xfrm: unexport init-annotated xfrm4protocolinit EXPORTSYMBOL and init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated init. The access to ...

UBUNTU-CVE-2022-49345

In the Linux kernel, the following vulnerability has been resolved: net: xfrm: unexport init-annotated xfrm4protocolinit EXPORTSYMBOL and init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated init. The access to ...

kernel: net: xfrm: unexport __init-annotated xfrm4_protocol_init()

In the Linux kernel, the following vulnerability has been resolved: net: xfrm: unexport init-annotated xfrm4protocolinit EXPORTSYMBOL and init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated init. The access to ...

SUSE CVE-2012-6538

The copytouserauth function in net/xfrm/xfrmuser.c in the Linux kernel before 3.6 uses an incorrect C library function for copying a string, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAPNETADMIN capability...

CVE-2018-25062

CVE-2018-25062 affects flar2 ElementalX up to 6.x on Nexus 9. The issue is in the ipsec component, specifically the function xfrm_dump_policy_done in net/xfrm/xfrm_user.c, whose manipulation can cause a denial of service. A fix is available: upgrade to ElementalX 7.00 (patch 1df72c9f0f61304437f4f...

Denial Of Service (DoS)

Linux is vulnerable to denial of service.The vulnerability exists in xfrmexpandpolicies in net/xfrm/xfrmpolicy.c that would cause a refcount to be dropped twice resulting in an application crash...

An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.

...

Linux kernel has unspecified vulnerabilities (CNVD-2022-54887)

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. Linux kernel version 5.18.14 and earlier versions have a security vulnerability that stems from xfrmexpandpolicies in net/xfrm/xfrmpolicy.c that causes refcount to be deleted twice. No detailed...

CVE-2022-36879

An issue was discovered in the Linux kernel through 5.18.14. xfrmexpandpolicies in net/xfrm/xfrmpolicy.c can cause a refcount to be dropped twice...

CVE-2022-36879

CVE-2022-36879 affects the Linux kernel: a flaw in xfrm_policy handling (xfrm_expand_policies) can cause a refcount to be dropped twice in net/xfrm/xfrm_policy.c. This is a local vulnerability with an availability impact (as per CVSS: 5.5, MEDIUM). The issue exists through kernel versions up to 5...

CVE-2022-36879

An issue was discovered in the Linux kernel through 5.18.14. xfrmexpandpolicies in net/xfrm/xfrmpolicy.c can cause a refcount to be dropped twice...

UBUNTU-CVE-2019-15666

An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in xfrmpolicyunlink, which will cause denial of service, because verifynewpolicyinfo in net/xfrm/xfrmuser.c mishandles directory validation...

SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3308-1)

This update for the Linux Kernel 3.12.61-5266 fixes several issues. The following security issues were fixed : - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...

SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3304-1)

This update for the Linux Kernel 3.12.60-5263 fixes several issues. The following security issues were fixed : - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...

SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3307-1)

This update for the Linux Kernel 3.12.61-52101 fixes several issues. The following security issues were fixed : - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...

Linux kernel net/xfrm/xfrm_policy.c file denial of service vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the net/xfrm/xfrmpolicy.c file in Linux kernel version 4.12.3 and earlier, which stems from the program failing to detect the dir value of...