3 matches found
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20609)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20609 advisory. - HID: core: do not bypass hidhwrawrequest Benjamin Tissoires Orabug: 38454666 CVE-2025-38494 - vsock: Do not allow binding to VMADDRPORTANY Budim...
CVE-2025-38209 nvme-tcp: remove tag set when second admin queue config fails
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: remove tag set when second admin queue config fails Commit 104d0e2f6222 "nvme-fabrics: reset admin connection for secure concatenation" modified nvmetcpsetupctrl to call nvmetcpconfigureadminqueue twice. The first call...
CVE-2025-38209
CVE-2025-38209 is rooted in the Linux kernel nvme-tcp admin queue setup path. The patch sequence called nvme_tcp_configure_admin_queue() twice during nvme_tcp_setup_ctrl(): the first call (new=true) succeeds to prepare for DH-CHAP negotiation; the second call (new=false) is needed for secure conc...