MiracleLinux 8 : kernel-4.18.0-348.20.1.el8_5 (AXSA:2022-3099:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3099:05 advisory. kernel: improper initialization of the flags member of the new pipebuffer CVE-2022-0847 kernel: Use After Free in unixgc which could result in a loc...

CVE-2025-39703 net, hsr: reject HSR frame if skb can't hold tag

In the Linux kernel, the following vulnerability has been resolved: net, hsr: reject HSR frame if skb can't hold tag Receiving HSR frame with insufficient space to hold HSR tag in the skb can result in a crash kernel BUG: 45.390915 skbuff: skbunderpanic: text:ffffffff86f32cac len:26 put:14...

kernel: net: qcom/emac: fix UAF in emac_remove

A vulnerability was found in the Linux kernel's Qualcomm EMAC driver, where the emacremove function can lead to a use-after-free issue when the driver tries to access data after the network device has been freed, causing instability and a crash in the network subsystem...

QEMU: net: an assert failure via eth_get_gso_type

An assert3 failure flaw was found in the networking helper functions of QEMU. This vulnerability can occur in the ethgetgsotype routine if a packet does not have a valid networking L3 protocol ex. IPv4, IPv6 value. This flaw allows a guest user to crash the QEMU process on the host, resulting in ...

beos.dos.txt

Problem: It is possible to crash the BeOS networking process. Discussion: The BeOS networking stack crashes when certain malformed packets are sent to it. This document explains two such packets. The first is an IP packet with the protocol field set to TCP. If the IP length field is set to be...