Lucene search
+L

9 matches found

nvd
nvd
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31671

In the Linux kernel, the following vulnerability has been resolved: xfrmuser: fix info leak in buildreport struct xfrmuserreport is a u8 proto field followed by a struct xfrmselector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace...

5.5CVSS0.0012EPSS
Exploits0References10
euvd
euvd
added 2026/04/24 2:45 p.m.6 views

EUVD-2026-25564

In the Linux kernel, the following vulnerability has been resolved: xfrmuser: fix info leak in buildreport struct xfrmuserreport is a u8 proto field followed by a struct xfrmselector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace...

5.3AI score0.0012EPSS
Exploits0References8
cve
cve
added 2026/04/24 2:45 p.m.135 views

CVE-2026-31671

The CVE-2026-31671 issue is in the Linux kernel xfrm_user component. A struct xfrm_user_report includes a __u8 proto field followed by a struct xfrm_selector, creating three padding bytes that were never zeroed before copying to userspace. The vulnerability is a information leak caused by these u...

5.5CVSS5.3AI score0.0012EPSS
Exploits0References10Affected Software1
osv
osv
added 2026/04/24 2:45 p.m.2 views

CVE-2026-31671 xfrm_user: fix info leak in build_report()

In the Linux kernel, the following vulnerability has been resolved: xfrmuser: fix info leak in buildreport struct xfrmuserreport is a u8 proto field followed by a struct xfrmselector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace...

5.5CVSS6.2AI score0.0012EPSS
Exploits0References13
ptsecurity
ptsecurity
added 2026/03/25 12:0 a.m.6 views

PT-2026-36457

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An information leak exists when processing Router Advertisements with user options. The kernel constructs an 'RTM NEWNDUSEROPT' netlink message using the nduseroptmsg struct, which...

7.1CVSS5.5AI score0.00122EPSS
Exploits0
nessus
nessus
added 2025/10/29 12:0 a.m.7 views

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Sensitive Information in Resource Not Removed Before Reuse (CVE-2024-49997)

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiqetop: fix memory disclosure When applying padding, the buffer is not zeroed, which results in memory disclosure. The mentioned data is observed on the wire. This patch uses skbputpadto to pad Ethernet frames...

7.5CVSS6.4AI score0.01087EPSS
Exploits0References7
redhat
redhat
added 2025/08/27 11:42 a.m.4 views

kernel: misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram()

In the Linux kernel, the following vulnerability has been resolved: misc/vmwvmci: fix an infoleak in vmcihostdoreceivedatagram struct vmcieventqp allocated by qpnotifypeer contains padding, which may carry uninitialized data to the userspace, as observed by KMSAN: BUG: KMSAN: kernel-infoleak in...

5.5CVSS6.3AI score0.00187EPSS
Exploits0References5
redhat
redhat
added 2025/07/16 5:49 a.m.5 views

kernel: misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram()

In the Linux kernel, the following vulnerability has been resolved: misc/vmwvmci: fix an infoleak in vmcihostdoreceivedatagram struct vmcieventqp allocated by qpnotifypeer contains padding, which may carry uninitialized data to the userspace, as observed by KMSAN: BUG: KMSAN: kernel-infoleak in...

5.5CVSS6.3AI score0.00187EPSS
Exploits0References5
susecve
susecve
added 2024/10/23 1:22 p.m.5 views

SUSE CVE-2024-49997

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiqetop: fix memory disclosure When applying padding, the buffer is not zeroed, which results in memory disclosure. The mentioned data is observed on the wire. This patch uses skbputpadto to pad Ethernet frames...

5.5CVSS7.8AI score0.01087EPSS
Exploits0References5
Rows per page
Query Builder