Lucene search
K

134 matches found

RedhatCVE
RedhatCVE
added 2026/06/26 4:11 p.m.9 views

CVE-2026-53077

A flaw was found in the Linux kernel's Reliable Datagram Sockets over InfiniBand RDS/IB component. This vulnerability allowed the use of RDS/IB in network namespaces other than the initial one, where the existing code would not function correctly. This improper operation could lead to unexpected...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:30 p.m.10 views

CVE-2026-53077

The vulnerability CVE-2026-53077 affects the Linux kernel RDS/IB code: it restricted usage to the initial network namespace, with the non-initial namespaces not supported and the existing code likely malfunctioning. Multiple advisories note the issue has been resolved/patched (e.g., Debian/Ubuntu...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/22 1:54 p.m.9 views

CVE-2026-52909

A flaw was found in the Linux kernel, specifically within the IPv6 Virtual Tunnel Interface ip6vti component. This vulnerability occurs because a critical flag, netnsimmutable, is not properly set on a specific network device ip6vti0 when it is initialized. This oversight could allow the device t...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net/sched: actct: fix ref leak when switching zones When switching zones or network namespaces without performing a ct clear between them, a reference to the old ct entry is still leaked. This occurs because tcfctskbnfctcached...

5.5CVSS6.1AI score0.00252EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/26 1:52 a.m.21 views

SUSE CVE-2026-48700

An issue was discovered in all versions of PCManFM-Qt starting from 1.1.0. When a regular file's path is passed as a URI in an org.freedesktop.FileManager1.ShowFolders D-Bus method call, PCManFM-Qt delegates to a different program based on the file type without user confirmation. This could be us...

9.3CVSS6.2AI score0.00181EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fixed null-ptr-deref in iptablenattableinit. We received a report that iptables-restore sometimes triggered null-ptr-deref at boot time. 0 The problem is that iptablenattableinit is exposed to user space befo...

5.5CVSS6.4AI score0.00226EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/06 10:36 p.m.9 views

CVE-2026-43234

A flaw was found in the Linux kernel's team driver. A local user can exploit this vulnerability by manipulating network devices and namespaces. Specifically, when a slave device is unregistered from a team interface while a NETDEVCHANGEMTU event is pending, it can lead to a deadlock or resource...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 2:51 p.m.6 views

CVE-2026-31692

A flaw was found in the Linux kernel's rtnetlink component. An unprivileged local user, leveraging a user namespace, can exploit a missing CAPNETADMIN capability check in the rtnlnewlink function. This allows the user to create paired network devices in arbitrary network namespaces, including the...

7.1CVSS5.9AI score0.00119EPSS
Exploits0References4
CVE
CVE
added 2026/04/30 10:34 a.m.29 views

CVE-2026-31692

In The Linux kernel, CVE-2026-31692 affects the rtnetlink path: the peer namespace CAP_NET_ADMIN check is missing in rtnl_newlink() when creating paired devices (e.g., veth, vxcan, netkit). This enables an unprivileged user with a user namespace to create interfaces in arbitrary network namespace...

5.5CVSS5.6AI score0.00119EPSS
Exploits0References3Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/04/23 8:4 a.m.6 views

netfilter: nf_conntrack_expect: skip expectations in other netns via proc

...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/22 7:20 p.m.8 views

CVE-2026-31496

A flaw was found in the Linux kernel's netfilter subsystem. This vulnerability allows a local user to potentially access or view network connection tracking expectations nfconntrackexpect from other network namespaces netns via the /proc filesystem. This could lead to information disclosure or a...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 1:54 p.m.18 views

CVE-2026-31496

Summary: CVE-2026-31496 affects the Linux kernel netfilter nf_conntrack_expect handling across network namespaces. The root cause is a failure to skip or isolate expectations that do not reside in the target netns, enabling a local user to access or view nf_conntrack_expect entries from other nam...

5.5CVSS5.6AI score0.00123EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/04/22 1:54 p.m.1 views

CVE-2026-31496 netfilter: nf_conntrack_expect: skip expectations in other netns via proc

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackexpect: skip expectations in other netns via proc Skip expectations that do not reside in this netns. Similar to e77e6ff502ea "netfilter: conntrack: do not dump other netns's conntrack entries via proc"...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the expectation in nfconntrackexpect that other network namespaces are skipped during proc dump,...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bpf: Scrubbing packets on bpfredirectpeer When bpfredirectpeer is used to redirect packets to a device in another network namespace, the packets are not scrubbed. This can lead to information about the packets being “misused” in...

5.5CVSS6.4AI score0.00149EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001105)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001105 advisory. A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function getnetnsbyid in net/core/netnamespace.c...

4.9CVSS6.3AI score0.00357EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003172)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003172 advisory. A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function getnetnsbyid in net/core/netnamespace.c...

4.9CVSS6.3AI score0.00357EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002797)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002797 advisory. A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function getnetnsbyid in net/core/netnamespace.c...

4.9CVSS6.3AI score0.00357EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989801)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989801 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix information leakage in /proc/net/ptype In one net namespace, after creating a packet...

7.1CVSS6.2AI score0.00222EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-2180

Malware in sbrugna...

7.8CVSS7.4AI score0.17841EPSS
Exploits1References21
Rows per page
Query Builder