Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevents concurrent access to the IPSec ASO context. The querying or updating of IPSec offload objects occurs through the Access ASO WQE. The driver uses a single mlx5eipsecaso structure for each PF, which contains a...

CVE-2026-43465

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: RX, Fix XDP multi-buf frag counting for striding RQ XDP multi-buf programs can modify the layout of the XDP buffer when the program calls bpfxdppulldata or bpfxdpadjusttail. The referenced commit in the fixes tag...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-013412)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013412 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: add validation for ringlen param The ringlen parameter provided by the virtual function VF ...

Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞

The Microsoft Windows Ancillary Function Driver for WinSock is a supplementary function driver for Winsock by Microsoft Corporation. There is a resource management vulnerability present in the Microsoft Windows Ancillary Function Driver for WinSock. Attackers can exploit this vulnerability to gai...

PT-2025-54086

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.4.0 28 Description The Linux kernel contains a flaw related to memory management within the macb Multi-port Ethernet Controller with Buffer driver in extended buffer descriptor mode. The issue manifests as a...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990772)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990772 advisory. In the Linux kernel, the following vulnerability has been resolved: bnxten: Avoid order-5 memory allocation for TPA data The driver needs to keep track of all the...

EUVD-2016-6802

Malware in sbrugna...

EUVD-2017-0817

Malware in sbrugna...

EUVD-2017-0814

Malware in sbrugna...

net/mlx5e: Remove skb secpath if xfrm state is not found

...

PT-2025-73: NULL pointer dereference in Windows TCP/IP Driver

The Null pointer dereference vulnerability was discovered in Windows TCP/IP Driver. The vulnerability allows an authorized attacker to gain SYSTEM privileges. The affected products: Windows Server 2019 & Server 2019 Server Core installation Versions to 10.0.17763.7558 Windows 10 Version 1809 for...

The vulnerability of the can_set_termination() function in the drivers/net/can/dev/dev.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the cansettermination function in the drivers/net/can/dev/dev.c module of the Linux kernel is related to resource management errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

Linux Distros Unpatched Vulnerability : CVE-2021-4135

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46702)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46702 advisory. - In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged...

CVE-2024-46702

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed that when we do discrete host router NVM upgrade and it gets hot-removed from the PCIe side as a result of NVM firmware authentication, if there is another...

CVE-2024-46702

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed that when we do discrete host router NVM upgrade and it gets hot-removed from the PCIe side as a result of NVM firmware authentication, if there is another...

net/dpaa2: Avoid explicit cpumask var allocation on stack

...

kernel: net/mlx5e: Don't clone flow post action attributes second time

A use-after-free flaw was discovered in the Linux kernel’s mlx5e networking driver. The code erroneously cloned flow post action attributes a second time in mlx5etcpostactadd despite an earlier clone in mlx5ecloneflowattrforpostact. This second clone is not properly updated during neighbor update...

USN-5337-1 linux, linux-aws, linux-aws-5.13, linux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-kvm, linux-oracle, linux-raspi vulnerabilities

It was discovered that the BPF verifier in the Linux kernel did not properly restrict pointer types in certain situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-23222 Yiqi Sun and Kevin Wang discovered that the cgrou...

UBUNTU-CVE-2021-4135

A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsimmapallocelem being called. A local user could use this flaw to get unauthorized access to some data...