217 matches found
kernel: tun: avoid double free in tun_free_netdev
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails NETDEVREGISTER notifier. This flaw allows a local user to crash or potentially escalate their privileges on the system...
kernel: tun: avoid double free in tun_free_netdev
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails NETDEVREGISTER notifier. This flaw allows a local user to crash or potentially escalate their privileges on the system...
kernel: tun: avoid double free in tun_free_netdev
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails NETDEVREGISTER notifier. This flaw allows a local user to crash or potentially escalate their privileges on the system...
kernel: tun: avoid double free in tun_free_netdev
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails NETDEVREGISTER notifier. This flaw allows a local user to crash or potentially escalate their privileges on the system...
SUSE CVE-2014-3535
include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdevprintk and its related logging implementation, which allows remote attackers to cause a denial of service NULL pointer dereference and system crash by sending invalid packets to a VxLAN interface...
SUSE CVE-2018-7191
In the tun subsystem in the Linux kernel before 4.13.14, devgetvalidname is not called before registernetdevice. This allows local users to cause a denial of service NULL pointer dereference and panic via an ioctlTUNSETIFF call with a dev name containing a / character. This is similar to...
GSD-2022-1005719 net/sched: fix netdevice reference leaks in attach_default_qdiscs()
net/sched: fix netdevice reference leaks in attachdefaultqdiscs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.142 by commit...
PT-2022-33977 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.142 Description: A potential issue exists in the Linux Kernel related to netdevice reference leaks in the attach default qdiscs function. The actual impact and attack plausibility have not yet been proven...
GSD-2022-1005406 net/sched: fix netdevice reference leaks in attach_default_qdiscs()
net/sched: fix netdevice reference leaks in attachdefaultqdiscs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.66 by commit...
GSD-2022-1004983 net/sched: fix netdevice reference leaks in attach_default_qdiscs()
net/sched: fix netdevice reference leaks in attachdefaultqdiscs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.8 by commit...
PT-2025-8055
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue has been resolved in the Linux kernel. The problem occurs when ref tracker dir init is called, and the struct ref tracker dir is marked as dead. To detect this...
PT-2021-8138 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to a double-free issue in the tun free netdev function. This issue can be exploited to execute arbitrary code and elevate privileges. The problem arises fr...
PT-2024-11245
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak vulnerability has been resolved in the Linux kernel. The issue was caused by a missing free netdev call in the mkiss close function, which led to a memory leak when the mki...
DEBIAN-CVE-2018-7191
In the tun subsystem in the Linux kernel before 4.13.14, devgetvalidname is not called before registernetdevice. This allows local users to cause a denial of service NULL pointer dereference and panic via an ioctlTUNSETIFF call with a dev name containing a / character. This is similar to...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.1 - kernel sched/core: Fix an SMP ordering race in trytowakeup vs...
Null pointer dereference
include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdevprintk and its related logging implementation, which allows remote attackers to cause a denial of service NULL pointer dereference and system crash by sending invalid packets to a VxLAN interface...
CVE-2014-3535
include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdevprintk and its related logging implementation, which allows remote attackers to cause a denial of service NULL pointer dereference and system crash by sending invalid packets to a VxLAN interface...