Lucene search
K

144 matches found

RedHat Linux
RedHat Linux
added 4 days ago4 views

kernel: netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table()

A flaw was found in the Linux kernel's nfnetlinkcthelper component. This vulnerability, an out-of-bounds read, occurs in the nfnlcthelperdumptable function when a network connection tracking helper is removed during a dump operation, leading to a bypassed bounds check. A local attacker could...

7.1CVSS5.9AI score0.00132EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 4 days ago9 views

kernel: netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table()

A flaw was found in the Linux kernel's nfnetlinkcthelper component. This vulnerability, an out-of-bounds read, occurs in the nfnlcthelperdumptable function when a network connection tracking helper is removed during a dump operation, leading to a bypassed bounds check. A local attacker could...

7.1CVSS5.9AI score0.00132EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/25 11:8 p.m.6 views

CVE-2026-52999

A flaw was found in the Linux kernel's netfilter subsystem, specifically in the nfnetlinkosf module. When the NFOSFLOGLEVELALL option is configured, an out-of-bounds read vulnerability can occur during TCP option parsing. This issue can lead to incorrect data processing and logging failures,...

9.1CVSS5.8AI score0.00521EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/25 8:39 a.m.4 views

EUVD-2026-39311

In the Linux kernel, the following vulnerability has been resolved: netfilter: revalidate bridge ports ebtredirecttg dereferences brportgetrcu return without a NULL check, causing a kernel panic when the bridge port has been removed between the original hook invocation and an NFQUEUE reinject. A...

5.7AI score0.00127EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.5 views

CVE-2026-53000

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

7.8CVSS0.00123EPSS
Exploits0References6
NVD
NVD
added 2026/06/24 5:17 p.m.6 views

CVE-2026-52999

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix out-of-bounds read on option matching In nfosfmatch, the nfosfhdrctx structure is initialized once and passed by reference to nfosfmatchone for each fingerprint checked. During TCP option parsing,...

9.1CVSS0.00521EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:29 p.m.19 views

CVE-2026-52999

CVE-2026-52999 pertains to the Linux kernel netfilter nfnetlink_osf, where an out-of-bounds read can occur during TCP option parsing when NF_OSF_LOGLEVEL_ALL is enabled. The root cause is a shared ctx->optp pointer that isn’t restored after nf_osf_match_one() returns, allowing subsequent finge...

9.1CVSS5.7AI score0.00521EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:29 p.m.9 views

CVE-2026-52998

CVE-2026-52998 affects the Linux kernel’s netfilter nfnetlink_osf module. The nf_osf_ttl() function can dereference a device pointer (skb->dev) without validating the device, risking a NULL dereference. The patch removes the device dereference and the in_dev_for_each_ifa_rcu loop used to match...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-51893

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds read exists in the netfilter module. In the nf osf match function, the nf osf hdr ctx structure is passed by reference to nf osf match one for fingerprint checks. During...

9.1CVSS5.8AI score0.00521EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.6 views

PT-2026-51892

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential NULL dereference exists in the nf osf ttl function within the netfilter nfnetlink osf module. The function accessed skb-dev to perform a local interface address lookup withou...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References10
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: The ctx variable is initialized to avoid a memory allocation error. It is possible that the ctx variable in nfqnlbuildpacketmessage could be used before it is properly initialized. This initialization i...

5.5CVSS5.8AI score0.00148EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/17 1:20 a.m.6 views

kernel: netfilter: nf_tables: release flowtable after rcu grace period on error

A flaw was found in the Linux kernel's netfilter component, specifically within the nftables subsystem. An error in releasing a flowtable after an RCU Read-Copy-Update grace period could lead to a use-after-free vulnerability. This issue could expose the flowtable to the packet path and...

7.8CVSS5.8AI score0.00119EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.17 views

EulerOS Virtualization 2.13.1 : kernel (EulerOS-SA-2026-2371)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : iommu/sva: invalidate stale IOTLB entries for kernel address spaceCVE-2025-71202 iommu: disable SVA when CONFIGX86 is...

9.8CVSS6.2AI score0.96267EPSS
Exploits231References84
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.15 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2026-2247)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : crypto: algifaead - Revert to operating out-of-placeCVE-2026-31431 nfsd: fix RELEASELOCKOWNERCVE-2024-26629 bonding: limit BONDMODE8023AD to...

9.8CVSS7AI score0.96267EPSS
Exploits231References88
RedHat Linux
RedHat Linux
added 2026/06/08 3:27 a.m.26 views

kernel: netfilter: nf_tables: release flowtable after rcu grace period on error

A flaw was found in the Linux kernel's netfilter component, specifically within the nftables subsystem. An error in releasing a flowtable after an RCU Read-Copy-Update grace period could lead to a use-after-free vulnerability. This issue could expose the flowtable to the packet path and...

7.8CVSS5.7AI score0.00119EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/05/28 8:2 a.m.9 views

netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO

...

5.5CVSS5.4AI score0.00114EPSS
Exploits0
OSV
OSV
added 2026/05/27 2:16 p.m.10 views

UBUNTU-CVE-2026-45859

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: do shared-unconfirmed check before segmentation Ulrich reports a regression with nfqueue: If an application did not set the 'FGSO' capability flag and a gso packet with an unconfirmed nfconn entry is...

7.5CVSS5.7AI score0.00595EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2026/05/27 12:57 p.m.11 views

SUSE CVE-2026-45841

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix divide-by-zero in OSFWSSMODULO nfosfmatchone computes ctx-window % f-wss.val in the OSFWSSMODULO branch with no guard for f-wss.val == 0. A CAPNETADMIN user can add such a fingerprint via nfnetlink; a...

5.9CVSS5.8AI score0.00114EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/05/27 12:34 p.m.15 views

CVE-2026-45841

A flaw was found in the Linux kernel's netfilter component. A local attacker with CAPNETADMIN capabilities, which grants certain network administration privileges, could trigger a divide-by-zero error by adding a specially crafted fingerprint via nfnetlink. This vulnerability could lead to a kern...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/27 12:15 p.m.12 views

CVE-2026-45859

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: do shared-unconfirmed check before segmentation Ulrich reports a regression with nfqueue: If an application did not set the 'FGSO' capability flag and a gso packet with an unconfirmed nfconn entry is...

7.5CVSS5.7AI score0.00595EPSS
Exploits0
Rows per page
Query Builder