Lucene search
+L

22 matches found

redhatcve
redhatcve
added 2026/06/25 11:7 p.m.5 views

CVE-2026-52998

A flaw was found in the Linux kernel's Netfilter subsystem, specifically within the nfnetlinkosf module. The nfosfttl function could attempt to access a device pointer that was not properly validated, leading to a potential null pointer dereference. This vulnerability could allow a local attacker...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References4
nessus
nessus
added 2026/06/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-52999

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nfnetlinkosf: fix out-of-bounds read on option matching In nfosfmatch, the nfosfhdrctx structure is initialized once and passed by reference to...

9.1CVSS6AI score0.00521EPSS
Exploits0References3
nessus
nessus
added 2026/06/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-52998

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nfnetlinkosf: fix potential NULL dereference in ttl check The nfosfttl function accessed skb-dev to perform a local interface address lookup without...

7.5CVSS6AI score0.00508EPSS
Exploits0References3
osv
osv
added 2026/06/24 4:29 p.m.3 views

CVE-2026-52999 netfilter: nfnetlink_osf: fix out-of-bounds read on option matching

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix out-of-bounds read on option matching In nfosfmatch, the nfosfhdrctx structure is initialized once and passed by reference to nfosfmatchone for each fingerprint checked. During TCP option parsing,...

9.1CVSS5.8AI score0.00521EPSS
Exploits0References11
osv
osv
added 2026/06/24 4:29 p.m.3 views

CVE-2026-52998 netfilter: nfnetlink_osf: fix potential NULL dereference in ttl check

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix potential NULL dereference in ttl check The nfosfttl function accessed skb-dev to perform a local interface address lookup without verifying that the device pointer was valid. Additionally, the...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References11
attackerkb
attackerkb
added 2026/05/27 9:24 a.m.12 views

CVE-2026-45841

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix divide-by-zero in OSFWSSMODULO nfosfmatchone computes ctx-window % f-wss.val in the OSFWSSMODULO branch with no guard for f-wss.val == 0. A CAPNETADMIN user can add such a fingerprint via nfnetlink; a...

5.7AI score0.00114EPSS
Exploits0References6Affected Software1
osv
osv
added 2026/03/26 10:22 a.m.4 views

CVE-2026-23397 nfnetlink_osf: validate individual option lengths in fingerprints

In the Linux kernel, the following vulnerability has been resolved: nfnetlinkosf: validate individual option lengths in fingerprints nfnlosfaddcallback validates optnum bounds and string NUL-termination but does not check individual option length fields. A zero-length option causes nfosfmatchone ...

7.1CVSS5.8AI score0.00122EPSS
Exploits0References13
redhatcve
redhatcve
added 2024/04/29 4:20 p.m.24 views

CVE-2022-48654

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

6.6CVSS7AI score0.00238EPSS
Exploits0References4
nvd
nvd
added 2024/04/28 1:15 p.m.27 views

CVE-2022-48654

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

5.5CVSS5.9AI score0.00238EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2024/04/28 1:15 p.m.54 views

CVE-2022-48654

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References7
cve
cve
added 2024/04/28 1:0 p.m.91 views

CVE-2022-48654

The CVE-2022-48654 entry concerns a Linux kernel netfilter issue: nfnetlink_osf (nf_osf_find) could incorrectly return true on a mismatch, causing copying of uninitialized memory in nft_osf and leaking stale kernel stack data to userspace. Connected Astra Linux advisory mirrors this vulnerability...

5.5CVSS6.2AI score0.00238EPSS
Exploits0References5Affected Software1
vulnrichment
vulnrichment
added 2024/04/28 1:0 p.m.18 views

CVE-2022-48654 netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

6.6AI score0.00238EPSS
Exploits0References5
cvelist
cvelist
added 2024/04/28 1:0 p.m.20 views

CVE-2022-48654 netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

5.4AI score0.00238EPSS
Exploits0References5
debiancve
debiancve
added 2024/04/28 1:0 p.m.15 views

CVE-2022-48654

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

5.5CVSS5.5AI score0.00238EPSS
Exploits0
osv
osv
added 2024/04/28 1:0 p.m.23 views

CVE-2022-48654 netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

5.3CVSS5.9AI score0.00238EPSS
Exploits0References8
oraclelinux
oraclelinux
added 2023/10/17 12:0 a.m.42 views

Unbreakable Enterprise kernel-container security update

5.4.17-2136.323.8.2.el8 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824307 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824307 - netfilter: xtu32: validate user space input Wander Lairson Costa Orabug: 35824307 - netfilter: ipset: ad...

7.7AI score0.00514EPSS
Exploits1
oraclelinux
oraclelinux
added 2023/10/13 12:0 a.m.49 views

Unbreakable Enterprise kernel-container security update

5.4.17-2136.324.5.3.el7 - Revert 'jbd2: Fix wrongly judgement for buffer head removing while doing checkpoint' Sherry Yang Orabug: 35896102 5.4.17-2136.324.5.2.el7 - fix breakage in dormdir Al Viro Orabug: 35885837 5.4.17-2136.324.5.1.el7 - x86: KVM: SVM: always update the x2avic msr interception...

1.7CVSS7.5AI score0.12405EPSS
Exploits2
osv
osv
added 2022/10/09 10:51 p.m.10 views

GSD-2022-1006602 netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()

netfilter: nfnetlinkosf: fix possible bogus match in nfosffind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.215 by commit...

7.2AI score
Exploits0
osv
osv
added 2022/10/09 10:50 p.m.13 views

GSD-2022-1006591 netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()

netfilter: nfnetlinkosf: fix possible bogus match in nfosffind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.146 by commit...

7.2AI score
Exploits0
osv
osv
added 2022/10/09 10:48 p.m.7 views

GSD-2022-1006567 netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()

netfilter: nfnetlinkosf: fix possible bogus match in nfosffind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.71 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder