Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly handling Rx checksum offload errors, which could result in corrupted packets being delivered...

PT-2025-49425

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the virtio-net component of the Linux kernel related to the handling of received packet lengths in large packets. A change introduced by commit 4959aebba8c0 altered how...

CVE-2025-40236 virtio-net: zero unused hash fields

In the Linux kernel, the following vulnerability has been resolved: virtio-net: zero unused hash fields When GSO tunnel is negotiated virtionethdrtnlfromskb tries to initialize the tunnel metadata but forget to zero unused rxhash fields. This may leak information to another side. Fixing this by...

WordPress Offload, AI & Optimize with Cloudflare Images plugin <= 1.9.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Offload, AI & Optimize with Cloudflare Images versions = 1.9.5...

TencentOS Server 4: dpdk (TSSA-2025:0249)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0249 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

kernel: sctp: linearize cloned gso packets in sctp_rcv

A flaw use of uninitialized memory uncontrolled and invisible by attacker in the Linux kernel SCTP transport protocol was found in the way user triggers malicious SCTP packets. A remote user could use this flaw to crash the system. The bug actual only for systems where SCTP protocol being enabled...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990764)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990764 advisory. In the Linux kernel, the following vulnerability has been resolved: net: gso: fix panic on fraglist with mixed head alloc types Since commit 3dcbdb134f32 net: gso: F...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990782)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990782 advisory. In the Linux kernel, the following vulnerability has been resolved: bridge: switchdev: Fix memory leaks when changing VLAN protocol The bridge driver can offload VLA...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990779)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990779 advisory. In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Fix zero-division error when disabling tc cbs The commit b8c43360f6e4 net: stmmac: N...

CLSA-2025-1762538077 dpdk: Fix of CVE-2024-11614

CVE-2024-11614: add bounds check in vhostdequeueoffload to prevent checksum computation overflow...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990149)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990149 advisory. In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989135)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989135 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: avoid disabling offload when it was never enabled In an incredibly strange API...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989720)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989720 advisory. In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988897)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988897 advisory. In the Linux kernel, the following vulnerability has been resolved: net: macsec: Fix offload support for NETDEVUNREGISTER event Current macsec netdev notify handler...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925stasetdecapoffload Add a NULL check for msta-vif before accessing its members to prevent a kernel panic in AP mode deployment. This also fix the issue reported in 1. T...

EUVD-2025-36974

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: fix mailbox API compatibility by negotiating supported features There was backward compatibility in the terms of mailbox API. Various drivers from various OSes supporting 10G adapters from Intel portfolio could easily...

AZL-69400 CVE-2025-40104 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: fix mailbox API compatibility by negotiating supported features There was backward compatibility in the terms of mailbox API. Various drivers from various OSes supporting 10G adapters from Intel portfolio could easily...

UBUNTU-CVE-2025-40104

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: fix mailbox API compatibility by negotiating supported features There was backward compatibility in the terms of mailbox API. Various drivers from various OSes supporting 10G adapters from Intel portfolio could easily...

CVE-2025-40104 ixgbevf: fix mailbox API compatibility by negotiating supported features

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: fix mailbox API compatibility by negotiating supported features There was backward compatibility in the terms of mailbox API. Various drivers from various OSes supporting 10G adapters from Intel portfolio could easily...

CVE-2025-40104 ixgbevf: fix mailbox API compatibility by negotiating supported features

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: fix mailbox API compatibility by negotiating supported features There was backward compatibility in the terms of mailbox API. Various drivers from various OSes supporting 10G adapters from Intel portfolio could easily...