CVE-2026-46120

In the Linux kernel, the following vulnerability has been resolved: ip6gre: Use cached t-net in ip6erspanchangelink. After commit 5e72ce3e3980 "net: ipv6: Use link netns in newlink of rtnllinkops", ip6erspannewlink correctly resolves the per-netns ip6gre hash via linknet. ip6erspanchangelink was...

CVE-2026-45940

The CVE-2026-45940 issue affects the Linux kernel stmmac Ethernet driver (GMAC4) where, when split header is enabled, the hardware may not fill buf2 in the first descriptor, causing incorrect buf2 length calculation for the next descriptor and triggering a kernel oops. The root cause is not fully...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Fixed BQL accounting for multi-BD TX packets. When a TX packet spans multiple buffer descriptors scatter-gather, axienetfreetxchain sums the actual length of each BD from the descriptor status into an...

SUSE CVE-2026-31504

In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packetrelease via NETDEVUP race packetrelease has a race window where NETDEVUP can re-register a socket into a fanout group's arr array. The re-registration is not cleaned up by fanoutrelease, leaving a...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010860)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010860 advisory. In the Linux kernel, the following vulnerability has been resolved: ppp: associate skb with a device at tx Syzkaller triggered flow dissector warning with the...

SUSE CVE-2026-23254

In the Linux kernel, the following vulnerability has been resolved: net: gro: fix outer network offset The udp GRO complete stage assumes that all the packets inserted the RX have the encapsulation flag zeroed. Such assumption is not true, as a few H/W NICs can set such flag when H/W offloading t...

Linux Distros Unpatched Vulnerability : CVE-2023-54240

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: ethernet: mtkethsoc: fix possible NULL pointer dereference in mtkhwlrogetfdirall rulelocs is allocated in ethtoolgetrxnfc and the size is determined by...

CVE-2025-40027

CVE-2025-40027 (Linux kernel) : The issue is in the 9P client where a race between p9_read_work (cleaning up pending requests) and p9_fd_cancelled (handling canceled requests) could lead to a double removal of req_list and related corruption. The fix in commit 74d6a5d56629 adjusts the cancellatio...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987343)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987343 advisory. In the Linux kernel, the following vulnerability has been resolved: net: nfc: Fix use-after-free in localcleanup Fix a use-after-free that occurs in kfreeskb called...

CVE-2022-50253 bpf: make sure skb->len != 0 when redirecting to a tunneling device

In the Linux kernel, the following vulnerability has been resolved: bpf: make sure skb-len != 0 when redirecting to a tunneling device syzkaller managed to trigger another case where skb-len == 0 when we enter devqueuexmit: WARNING: CPU: 0 PID: 2470 at include/linux/skbuff.h:2576 skbassertlen...

PT-2025-37633

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak was resolved in the wwan hwsim module within the Linux kernel. Specifically, a fault injection during module probing could lead to a memory leak in the wwan hwsim dev new...

CVE-2025-38719

The CVE-2025-38719 entry concerns the Linux kernelnet hibmcge: when the network port is down, a released queue can yield ring->len = 0, triggering a division by zero in hbg_get_queue_used_num() called from debugfs. The provided patch adds a guard: if ring->len is 0, hbg_get_queue_used_num()...

net: drop UFO packets in udp_rcv_segment()

...

Linux Distros Unpatched Vulnerability : CVE-2025-37961

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipvs: fix uninit-value for saddr in dooutputroute4 syzbot reports for uninit-value for the saddr argument 1. commit 4754957f04f5 ipvs: do not use random local...

The vulnerability of the sk_psock_skb_ingress_enqueue() function in the net/core/skmsg.c module, which supports networking functions of the Linux kernel, allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the skpsockskbingressenqueue function in the net/core/skmsg.c module, which supports kernel network functions in Linux, is related to improper memory release before deleting the last reference memory leak. Exploiting this vulnerability could allow an attacker to compromise th...

UBUNTU-CVE-2022-49865

In the Linux kernel, the following vulnerability has been resolved: ipv6: addrlabel: fix infoleak when sending struct ifaddrlblmsg to network When copying a struct ifaddrlblmsg to the network, ifalreserved remained uninitialized, resulting in a 1-byte infoleak: BUG: KMSAN: kernel-network-infoleak...

ndisc: extend RCU protection in ndisc_send_skb()

...

DEBIAN-CVE-2024-56718

In the Linux kernel, the following vulnerability has been resolved: net/smc: protect link down work from execute after lgr freed link down work may be scheduled before lgr freed but execute after lgr freed, which may result in crash. So it is need to hold a reference before shedule link down work...

kernel: net: core: reject skb_copy(_expand) for fraglist GSO skbs

In the Linux kernel, the following vulnerability has been resolved: net: core: reject skbcopyexpand for fraglist GSO skbs SKBGSOFRAGLIST skbs must not be linearized, otherwise they become invalid. Return NULL if such an skb is passed to skbcopy or skbcopyexpand, in order to prevent a crash on a...

The vulnerability of the `ipv4_pktinfo_prepare()` function in the `net/ipv4/ip_sockglue.c` module of the Linux operating system’s IPv4 protocol implementation allows a attacker to cause a service failure.

The vulnerability of the Linux operating system’s IPv4 protocol implementation relates to the handling of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...