3076 matches found
kernel: net/sched: cls_u32: use skb_header_pointer_careful()
In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...
CVE-2026-41144
F´ F Prime is a framework that enables development and deployment of spaceflight and other embedded software applications. Prior to version 4.2.0, the bounds check byteOffset + dataSize fileSize uses U32 addition that wraps around on overflow. An attacker-crafted DataPacket with...
kernel: net/sched: cls_u32: use skb_header_pointer_careful()
In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...
kernel: net/sched: cls_u32: use skb_header_pointer_careful()
In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013429)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013429 advisory. In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur. Tenable has extracted the precedin...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013442)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013442 advisory. An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is an out-of- bounds read and OOPS for SMB2WRITE, when there is a large...
Linux Distros Unpatched Vulnerability : CVE-2026-31478
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: replace hardcoded hdr2len with offsetof in smb2calcmaxoutbuflen After this commit e2b76ab8b5c9 ksmbd: add support for read compound, response buffer...
PT-2026-34383
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ksmbd module where the smb2 calc max out buf len function used a hardcoded magic number for the hdr2 len argument instead of the correct offset of the Buffer field...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013481)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013481 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPICA: Avoid undefined behavior: applying zero offset to null pointer ACPICA commit...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013482)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013482 advisory. In the Linux kernel, the following vulnerability has been resolved: net: preserve skbendoffset in skbunclonekeeptruesize syzbot found another way to trigger the...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013777)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013777 advisory. In the Linux kernel, the following vulnerability has been resolved: loop: loopsetstatusfrominfo check before assignment In loopsetstatusfrominfo, lo-looffset and...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013662)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013662 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate data run offset This adds sanity checks for data run offset. We should make su...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013584)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013584 advisory. In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential buffer head reference count leak As in 'jbd2fcwaitbufs' if buffer isn't...
EUVD-2026-24577
F´ F Prime is a framework that enables development and deployment of spaceflight and other embedded software applications. Prior to version 4.2.0, the bounds check byteOffset + dataSize fileSize uses U32 addition that wraps around on overflow. An attacker-crafted DataPacket with...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-010743)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010743 advisory. In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur. Tenable has extracted the precedin...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010936)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010936 advisory. In the Linux kernel, the following vulnerability has been resolved: loop: loopsetstatusfrominfo check before assignment In loopsetstatusfrominfo, lo-looffset and...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013052)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013052 advisory. In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010882)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010882 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate data run offset This adds sanity checks for data run offset. We should make su...
Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011252)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011252 advisory. In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-013349)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013349 advisory. In the Linux kernel, the following vulnerability has been resolved: block: Fix wrong offset in biotruncate biotruncate clears the buffer outside of last block of bde...