49 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-53055
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: hisilicon/sec2 - prevent req used-after-free for sec During packet transmission, if the system is under heavy load, the hardware might complete processi...
CVE-2026-53055
In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec2 - prevent req used-after-free for sec During packet transmission, if the system is under heavy load, the hardware might complete processing the packet and free the request memory req before the transmission...
CVE-2026-53055
CVE-2026-53055 concerns the Linux kernel crypto: hisilicon/sec2 module. Under heavy load, during packet transmission, the hardware may free the request memory (req) before the software finishes processing, causing a use-after-free when the software accesses the freed memory. The issue affects the...
CVE-2026-53055 crypto: hisilicon/sec2 - prevent req used-after-free for sec
In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec2 - prevent req used-after-free for sec During packet transmission, if the system is under heavy load, the hardware might complete processing the packet and free the request memory req before the transmission...
PT-2026-51949
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the hisilicon/sec2 crypto component. Under heavy load during packet transmission, the hardware may complete packet processing and free the request memory...
UBUNTU-CVE-2026-45866
In the Linux kernel, the following vulnerability has been resolved: serial: caif: fix use-after-free in caifserial ldiscclose There is a use-after-free bug in caifserial where handletx may access ser-tty after the tty has been freed. The race condition occurs between ldiscclose and packet...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: geneve: Fixed header validation in geneve6xmitskb. syzbot is able to trigger an uninit-value in genevexmit. Problem: While most IP tunnel helpers such as iptunnelgetdsfield use skbprotocolskb, true, pskbinetmaypull only uses...
CVE-2025-40264 be2net: pass wrb_params in case of OS2BMC
In the Linux kernel, the following vulnerability has been resolved: be2net: pass wrbparams in case of OS2BMC beinsertvlaninpkt is called with the wrbparams argument being NULL at besendpkttobmc call site. This may lead to dereferencing a NULL pointer when processing a workaround for specific...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989149)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989149 advisory. In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix out-of-bound bugs caused by unset skb-macheader If an AFPACKET socket is used to send...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987191)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987191 advisory. In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix out-of-bound bugs caused by unset skb-macheader If an AFPACKET socket is used to send...
EUVD-2025-9418
Malicious code in bioql PyPI...
EUVD-2025-9990
Malicious code in bioql PyPI...
EUVD-2022-43810
Malicious code in bioql PyPI...
EUVD-2024-54462
Malicious code in bioql PyPI...
CVE-2019-5248
CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target device...
CVE-2024-12378 On affected platforms running Arista EOS with secure Vxlan configured, restarting the Tunnelsec agent will result in packets being sent over the secure Vxlan tunnels in the clear.
On affected platforms running Arista EOS with secure Vxlan configured, restarting the Tunnelsec agent will result in packets being sent over the secure Vxlan tunnels in the clear...
CVE-2025-32886
An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. All packets sent over RF are also sent over UART with USB Shell, allowing someone with local access to gain information about the protocol and intercept sensitive data...
CVE-2025-22108
In the Linux kernel, the following vulnerability has been resolved: bnxten: Mask the bdcnt field in the TX BD properly The bdcnt field in the TX BD specifies the total number of BDs for the TX packet. The bdcnt field has 5 bits and the maximum number supported is 32 with the value 0...
CVE-2025-21442
CVE-2025-21442 concerns Qualcomm chipsets experiencing memory corruption when transmitting packet mapping information with an invalid header payload size. The vulnerability is described as a memory corruption issue in the handling of header payload sizing during packet mapping transmission. The C...
CVE-2025-21903
CVE-2025-21903 affects the Linux kernel’s MCTP over I3C header handling: daddr may be NULL when no neighbour table entry exists, in which case the TX packet should be dropped; saddr may also be NULL if transmitted by a different protocol. The issue is escalated as a local vector with a Medium bas...