Lucene search
+L

21 matches found

osv
osv
added 2026/07/02 12:0 a.m.5 views

ALSA-2026:34911 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fs/smb/client: fix out-of-bounds read in cifssanitizeprepath CVE-2026-43112 kernel: rxrpc: Fix potential UAF after skbunshare failure CVE-2026-45998 kernel: drm/gem: Fix inconsistent plan...

9.3CVSS6.5AI score0.0053EPSS
Exploits1References14
nessus
nessus
added 2026/07/02 12:0 a.m.12 views

RHEL 10 : kernel (RHSA-2026:34911)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:34911 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fs/smb/client: fix...

9.3CVSS6.7AI score0.0053EPSS
Exploits1References16
redhat
redhat
added 2026/07/01 7:42 p.m.6 views

kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nftinner module. This vulnerability arises from an incorrect handling of IPv6 inner packet processing, where the transport header offset innerthoff becomes desynchronized from the Layer 4 protocol l4proto. A remot...

9.1CVSS7.2AI score0.00322EPSS
Exploits0References5
redhat
redhat
added 2026/07/01 9:48 a.m.6 views

kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nftinner module. This vulnerability arises from an incorrect handling of IPv6 inner packet processing, where the transport header offset innerthoff becomes desynchronized from the Layer 4 protocol l4proto. A remot...

9.1CVSS7.2AI score0.00322EPSS
Exploits0References5
redhat
redhat
added 2026/06/29 7:50 p.m.5 views

kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nftinner module. This vulnerability arises from an incorrect handling of IPv6 inner packet processing, where the transport header offset innerthoff becomes desynchronized from the Layer 4 protocol l4proto. A remot...

9.1CVSS7.2AI score0.00322EPSS
Exploits0References5
cvelist
cvelist
added 2026/06/03 3:48 p.m.59 views

CVE-2026-46244 netfilter: nft_inner: Fix IPv6 inner_thoff desync

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: Fix IPv6 innerthoff desync In nftinnerparsel2l3, when processing inner IPv6 packets, ipv6findhdr correctly computes the transport header offset traversing all extension headers, but the result is immediately...

9.1CVSS0.00322EPSS
Exploits0References5
cve
cve
added 2026/06/03 3:48 p.m.115 views

CVE-2026-46244

The CVE-2026-46244 issue affects the Linux kernel netfilter nft_inner path. In nft_inner_parse_l2l3(), while handling inner IPv6 packets, ipv6_find_hdr() computes the transport header offset correctly across extension headers, but the code later overwrites this value with nhoff + sizeof(_ip6h) (4...

9.1CVSS5.8AI score0.00322EPSS
Exploits0References13Affected Software1
euvd
euvd
added 2026/06/03 3:48 p.m.15 views

EUVD-2026-34106

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: Fix IPv6 innerthoff desync In nftinnerparsel2l3, when processing inner IPv6 packets, ipv6findhdr correctly computes the transport header offset traversing all extension headers, but the result is immediately...

5.8AI score0.00322EPSS
Exploits0References5
nessus
nessus
added 2026/06/03 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-46244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: Fix IPv6 innerthoff desync In nftinnerparsel2l3, when processing inner...

9.1CVSS6.7AI score0.00322EPSS
Exploits0References3
susecve
susecve
added 2025/01/12 12:14 a.m.9 views

SUSE CVE-2024-56638

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: incorrect percpu area handling under softirq Softirq can interrupt ongoing packet from process context that is walking over the percpu area that contains inner header offsets. Disable bh and perform three...

5.3CVSS7.7AI score0.00222EPSS
Exploits0References15
bdu_fstec
bdu_fstec
added 2024/12/11 12:0 a.m.4 views

The vulnerability of the nft_inner component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the nftinner component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00272EPSS
Exploits0References22Affected Software6
redhat
redhat
added 2024/10/30 1:41 a.m.2 views

kernel: netfilter: nft_inner: validate mandatory meta and payload

A vulnerability was found in the Linux kernel's Netfilter subsystem in the nftinner component, where the issue occurs when mandatory netlink attributes for payload and meta expressions are not validated in embedded inner expressions, which can lead to a NULL pointer dereference from user space...

5.5CVSS7.2AI score0.00272EPSS
Exploits0References5
susecve
susecve
added 2024/07/16 2:35 a.m.6 views

SUSE CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

4.4CVSS6.8AI score0.00272EPSS
Exploits0References11
osv
osv
added 2024/07/12 1:15 p.m.3 views

DEBIAN-CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

5.5CVSS5.6AI score0.00272EPSS
Exploits0References1
osv
osv
added 2024/07/12 1:15 p.m.8 views

UBUNTU-CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

5.5CVSS6.1AI score0.00272EPSS
Exploits0References13
cnnvd
cnnvd
added 2024/07/12 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure of the netfilter:nftinner component to properly validate the mandatory netlink attribute...

5.5CVSS8.6AI score0.00272EPSS
Exploits0References5
attackerkb
attackerkb
added 2023/11/23 6:15 p.m.11 views

CVE-2023-5972

A null pointer dereference flaw was found in the nftinner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system...

7.8CVSS5.8AI score0.00276EPSS
Exploits0References5
osv
osv
added 2023/11/23 6:15 p.m.8 views

AZL-32062 CVE-2023-5972 affecting package hyperv-daemons for versions less than 5.15.143.1-1

A null pointer dereference flaw was found in the nftinner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system...

7.8CVSS6.6AI score0.00276EPSS
Exploits0References1
osv
osv
added 2023/11/23 6:15 p.m.6 views

UBUNTU-CVE-2023-5972

A null pointer dereference flaw was found in the nftinner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system...

7.8CVSS6.5AI score0.00276EPSS
Exploits0References9
cnnvd
cnnvd
added 2023/11/23 12:0 a.m.6 views

Linux kernel code issue vulnerability

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a code issue vulnerability that stems from a null pointer dereference flaw found in netfilter's nftinner.c, which causes a system crash. An attacker...

7.8CVSS6.6AI score0.00276EPSS
Exploits0References1
Rows per page
Query Builder