CVE-2026-23098

In the Linux kernel, the following vulnerability has been resolved: netrom: fix double-free in nrrouteframe In nrrouteframe, oldskb is immediately freed without checking if nrneigh-ax25 pointer is NULL. Therefore, if nrneigh-ax25 is NULL, the caller function will free oldskb again, causing a...

CVE-2024-57802

CVE-2024-57802 concerns the Linux kernel netrom path. The issue arises when sending raw messages through ieee802154, where nr_route_frame may read uninitialized data due to not validating the skb buffer length. The root cause is a missing skb->len check before accessing skb->data in nr_rout...

CVE-2021-47294

The CVE-2021-47294 issue affects the Linux kernel NETROM implementation where sock timer handling changed to sock timer API. sk_reset_timer() may increase the sock refcount when called on an inactive timer, so if the timer expires the handler must decrease the refcount to avoid a leak. A patch (c...

CVE-2024-27425

A flaw was found in the netrom module in the Linux kernel. A race condition can occur when reading the sysctlnetromtransportacknowledgedelay resource due to a missing lock, which may impact system stability and result in a denial of service...

CVE-2024-27419

In the Linux kernel, the following vulnerability has been resolved: netrom: Fix data-races around sysctlnetbusyread We need to protect the reader reading the sysctl value because the value can be changed concurrently...

CVE-2024-27419 netrom: Fix data-races around sysctl_net_busy_read

In the Linux kernel, the following vulnerability has been resolved: netrom: Fix data-races around sysctlnetbusyread We need to protect the reader reading the sysctl value because the value can be changed concurrently...

PT-2024-21891 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue has been identified around sysctl netrom transport timeout in the netrom component of the Linux kernel. Recommendations: At the moment, there is no information about ...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a race condition in the netrom module...

UBUNTU-CVE-2013-3232

The nrrecvmsg function in net/netrom/afnetrom.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...