Lucene search
K

86 matches found

AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.7 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fixed the issue with rcudereferenceprotected. When destroying all sets, we are either in the pernetexit phase or executing a “destroy all sets” command from user space. The latter was taken into account in...

5.5CVSS6.2AI score0.00278EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fixed a potential null-ptr-deref in ip6tablenattableinit. ip6tablenattableinit accesses net-gen-ptrip6tablenatnetops.id, but this function is exposed to user space before the entry is allocated via...

5.5CVSS6.2AI score0.00226EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net: fixed out-of-bounds access in opsinit The netallocgeneric function is called by netalloc, which does not use any locking mechanisms. It reads maxgenptrs, which is modified under the pernetopsrwsem context. This reading occur...

7.1CVSS6.4AI score0.00308EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/20 3:47 a.m.3 views

SUSE CVE-2025-21641

In the Linux kernel, the following vulnerability has been resolved: mptcp: sysctl: blackhole timeout: avoid using current-nsproxy As mentioned in the previous commit, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS6.5AI score0.00172EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/19 12:0 a.m.3 views

PT-2025-4322 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the Linux kernel, specifically the mptcp subsystem and its handling of the blackhole timeout via sysctl. The problem arises from using the net structure via current,...

5.5CVSS7.3AI score0.00172EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2024/08/18 2:2 a.m.3 views

SUSE CVE-2024-42269

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix potential null-ptr-deref in ip6tablenattableinit. ip6tablenattableinit accesses net-gen-ptrip6tablenatnetops.id, but the function is exposed to user space before the entry is allocated via...

5.5CVSS6.3AI score0.00226EPSS
Exploits0References10
OSV
OSV
added 2024/08/17 9:15 a.m.6 views

AZL-47811 CVE-2024-42269 affecting package kernel for versions less than 6.6.47.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix potential null-ptr-deref in ip6tablenattableinit. ip6tablenattableinit accesses net-gen-ptrip6tablenatnetops.id, but the function is exposed to user space before the entry is allocated via...

5.5CVSS6.3AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2024/08/17 9:15 a.m.1 views

DEBIAN-CVE-2024-42269

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix potential null-ptr-deref in ip6tablenattableinit. ip6tablenattableinit accesses net-gen-ptrip6tablenatnetops.id, but the function is exposed to user space before the entry is allocated via...

5.5CVSS5.6AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2024/08/17 9:15 a.m.3 views

DEBIAN-CVE-2024-42270

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix null-ptr-deref in iptablenattableinit. We had a report that iptables-restore sometimes triggered null-ptr-deref at boot time. 0 The problem is that iptablenattableinit is exposed to user space before the...

5.5CVSS5.6AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2024/08/17 9:15 a.m.6 views

AZL-47814 CVE-2024-42270 affecting package kernel for versions less than 6.6.47.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix null-ptr-deref in iptablenattableinit. We had a report that iptables-restore sometimes triggered null-ptr-deref at boot time. 0 The problem is that iptablenattableinit is exposed to user space before the...

5.5CVSS6.7AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2024/08/17 9:15 a.m.4 views

UBUNTU-CVE-2024-42269

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix potential null-ptr-deref in ip6tablenattableinit. ip6tablenattableinit accesses net-gen-ptrip6tablenatnetops.id, but the function is exposed to user space before the entry is allocated via...

5.5CVSS6.2AI score0.00226EPSS
Exploits0References18
OSV
OSV
added 2024/08/17 9:15 a.m.5 views

UBUNTU-CVE-2024-42270

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix null-ptr-deref in iptablenattableinit. We had a report that iptables-restore sometimes triggered null-ptr-deref at boot time. 0 The problem is that iptablenattableinit is exposed to user space before the...

5.5CVSS6.2AI score0.00226EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2024/07/16 2:33 a.m.6 views

SUSE CVE-2024-40993

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix suspicious rcudereferenceprotected When destroying all sets, we are either in pernet exit phase or are executing a "destroy all sets command" from userspace. The latter was taken into account in...

5.5CVSS7.3AI score0.00278EPSS
Exploits0References3
OSV
OSV
added 2024/07/12 1:15 p.m.4 views

DEBIAN-CVE-2024-40993

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix suspicious rcudereferenceprotected When destroying all sets, we are either in pernet exit phase or are executing a "destroy all sets command" from userspace. The latter was taken into account in...

5.5CVSS5.7AI score0.00278EPSS
Exploits0References1
OSV
OSV
added 2024/07/12 1:15 p.m.10 views

UBUNTU-CVE-2024-40993

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix suspicious rcudereferenceprotected When destroying all sets, we are either in pernet exit phase or are executing a "destroy all sets command" from userspace. The latter was taken into account in...

5.5CVSS6.5AI score0.00278EPSS
Exploits0References10
OSV
OSV
added 2024/06/19 2:15 p.m.7 views

UBUNTU-CVE-2024-38612

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix invalid unregister error path The error path of seg6init is wrong in case CONFIGIPV6SEG6LWTUNNEL is not defined. In that case if seg6hmacinit fails, the genlunregisterfamily isn't called. This issue exist since comm...

9.8CVSS6.2AI score0.01107EPSS
Exploits0References29
NVD
NVD
added 2024/05/30 4:15 p.m.23 views

CVE-2024-36883

In the Linux kernel, the following vulnerability has been resolved: net: fix out-of-bounds access in opsinit netallocgeneric is called by netalloc, which is called without any locking. It reads maxgenptrs, which is changed under pernetopsrwsem. It is read twice, first to allocate an array, then t...

7.1CVSS7.3AI score0.00308EPSS
Exploits0References11
OSV
OSV
added 2024/05/30 4:15 p.m.0 views

DEBIAN-CVE-2024-36883

In the Linux kernel, the following vulnerability has been resolved: net: fix out-of-bounds access in opsinit netallocgeneric is called by netalloc, which is called without any locking. It reads maxgenptrs, which is changed under pernetopsrwsem. It is read twice, first to allocate an array, then t...

7.1CVSS6.2AI score0.00308EPSS
Exploits0References1
OSV
OSV
added 2024/05/30 4:15 p.m.5 views

UBUNTU-CVE-2024-36883

In the Linux kernel, the following vulnerability has been resolved: net: fix out-of-bounds access in opsinit netallocgeneric is called by netalloc, which is called without any locking. It reads maxgenptrs, which is changed under pernetopsrwsem. It is read twice, first to allocate an array, then t...

7.1CVSS6.5AI score0.00308EPSS
Exploits0References29
SUSE CVE
SUSE CVE
added 2024/05/28 3:32 a.m.3 views

SUSE CVE-2021-47507

In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix nsfd startup race again Commit bd5ae9288d64 "nfsd: register pernet ops last, unregister first" has re-opened rpcpipefsevent race against nfsdnetid registration registerpernetsubsys which has been fixed by commit...

5.5CVSS6.3AI score0.00187EPSS
Exploits0References10
Rows per page
Query Builder