Linux Distros Unpatched Vulnerability : CVE-2026-23254

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: gro: fix outer network offset The udp GRO complete stage assumes that all the packets inserted the RX have the encapsulation flag zeroed. Such assumption i...

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper handling of encapsulation flags during the GRO completion phase, potentially leading to...

Inside Akamai: How Offload and Performance Drive Speed and Resiliency

...

ROS-20260304-73-0013

A vulnerability in the net/ipv4/udpoffload.c module of the Linux kernel is related to incorrect data type conversion. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

kernel: net/mlx5e: Check for NOT_READY flag state after locking

A race condition was found in the Linux kernel Mellanox mlx5 network driver's traffic control offload flow management. A local user with privileges to configure traffic control flower filters can trigger concurrent flow deletion operations where the NOTREADY flag is checked before acquiring the...

CVE-2026-2738

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

Siemens SIMATIC S7-1500 Improper Following of Specification by Caller (CVE-2025-39770)

In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6CSUM When performing Generic Segmentation Offload GSO on an IPv6 packet that contains extension headers, the kernel incorrectly requests checksum offload if the...

CVE-2026-23154

CVE-2026-23154 concerns the Linux kernel fix for segmentation of forwarding fraglist GRO. The description explains that GRO packets containing a frag_list could be mishandled during GSO segmentation because skb_segment_list cannot correctly process GRO skbs converted by XLAT (which translates onl...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper GSO packet segmentation during the forwarding of GRO packets. This vulnerability may lea...

kernel: net/mlx5e: Check for NOT_READY flag state after locking

A race condition was found in the Linux kernel Mellanox mlx5 network driver's traffic control offload flow management. A local user with privileges to configure traffic control flower filters can trigger concurrent flow deletion operations where the NOTREADY flag is checked before acquiring the...

kernel: net/mlx5e: Check for NOT_READY flag state after locking

A race condition was found in the Linux kernel Mellanox mlx5 network driver's traffic control offload flow management. A local user with privileges to configure traffic control flower filters can trigger concurrent flow deletion operations where the NOTREADY flag is checked before acquiring the...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005167)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005167 advisory. In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: always recalculate features after XDP clearing, fix null-deref Recalculate features wh...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005056)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005056 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftflowoffload: reset dst in route object after setting up flow dst is transferred to...

SUSE-SU-2026:0290-1 Security update for openvswitch3

This update for openvswitch3 fixes the following issues: Update to v3.1.7: - CVE-2023-3966: openvswitch, openvswitch3: Invalid memory access in Geneve with HW offload bsc1219465. - CVE-2024-2182: openvswitch: ov: insufficient validation of incoming BFD packets may lead to denial of service...

CVE-2026-22979

In the Linux kernel, the following vulnerability has been resolved: net: fix memory leak in skbsegmentlist for GRO packets When skbsegmentlist is called during packet forwarding, it handles packets that were aggregated by the GRO engine. Historically, the segmentation logic in skbsegmentlist...

Security update for openvswitch

This update for openvswitch fixes the following issues: Update to v3.1.7: CVE-2023-3966: openvswitch, openvswitch3: Invalid memory access in Geneve with HW offload bsc1219465. CVE-2024-2182: openvswitch: ov: insufficient validation of incoming BFD packets may lead to denial of service bsc1255435...

CVE-2026-22979 net: fix memory leak in skb_segment_list for GRO packets

In the Linux kernel, the following vulnerability has been resolved: net: fix memory leak in skbsegmentlist for GRO packets When skbsegmentlist is called during packet forwarding, it handles packets that were aggregated by the GRO engine. Historically, the segmentation logic in skbsegmentlist...

Azure Linux 3.0 Security Update: kernel (CVE-2025-37909)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37909 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: lan743x: Fix memleak issue when GSO...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38127)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38127 advisory. - In the Linux kernel, the following vulnerability has been resolved: ice: fix Tx scheduler error handling in...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38039)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38039 advisory. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid WARNON when configuring...