Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989042)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989042 advisory. In the Linux kernel, the following vulnerability has been resolved: net: bridge: vlan: fix memory leak in allowedingress When using per-vlan state, if vlan snooping...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987262)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987262 advisory. In the Linux kernel, the following vulnerability has been resolved: net: bridge: vlan: fix memory leak in allowedingress When using per-vlan state, if vlan snooping...

AZL-70492 CVE-2025-38248 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

DEBIAN-CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

UBUNTU-CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

CVE-2025-38248

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

CVE-2025-38248 bridge: mcast: Fix use-after-free during router port configuration

In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a multicast router resides. The list is consulted during forwarding to ensure multicast packets are...

PT-2025-28876

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel bridge component contains a flaw related to multicast router port configuration. Specifically, when per-VLAN multicast snooping is enabled or disabled, ports can be...

DEBIAN-CVE-2022-48748

In the Linux kernel, the following vulnerability has been resolved: net: bridge: vlan: fix memory leak in allowedingress When using per-vlan state, if vlan snooping and stats are disabled, untagged or priority-tagged ingress frame will go to check pvid state. If the port state is forwarding and t...

UBUNTU-CVE-2022-48748

In the Linux kernel, the following vulnerability has been resolved: net: bridge: vlan: fix memory leak in allowedingress When using per-vlan state, if vlan snooping and stats are disabled, untagged or priority-tagged ingress frame will go to check pvid state. If the port state is forwarding and t...

CVE-2022-48748 net: bridge: vlan: fix memory leak in __allowed_ingress

In the Linux kernel, the following vulnerability has been resolved: net: bridge: vlan: fix memory leak in allowedingress When using per-vlan state, if vlan snooping and stats are disabled, untagged or priority-tagged ingress frame will go to check pvid state. If the port state is forwarding and t...

CVE-2018-0480

A vulnerability in the errdisable per VLAN feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause the device to crash, leading to a denial of service DoS condition. The vulnerability is due to a race condition that occurs when the VLAN and port enter an...

Cisco Catalyst 3650, 3850, and 4500E Series Switchess IOS XE Software Denial of Service Vulnerability

The Cisco Catalyst 3650, 3850, and 4500E Series Switches are all different families of switch products from Cisco, Inc.IOS XE Software is a set of operating systems that Cisco has developed for its network devices that run on them. A denial of service vulnerability exists in the errdisable per VL...

vlan_security.txt

Subject: Re: VLAN Security To: [email protected] -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, You're right this is definitively a problem. However I don't think it is related to the 802.1Q specification. Any non-trunk port should discard 802.1Q frames because non-trunk ports are just...