Lucene search
K

11 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.3 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: In the net: bridge section, for the mcast function, it was decided to always update the mdbnEntries value for VLAN contexts. The syzbot triggered a warning1 regarding the number of mdb entries in a context. It turns out that ther...

5.5CVSS5.7AI score0.00155EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/27 3:33 p.m.14 views

EUVD-2026-32379

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: always update mdbnentries for vlan contexts syzbot triggered a warning1 about the number of mdb entries in a context. It turned out that there are multiple ways to trigger that warning today some got added...

5.8AI score0.00155EPSS
Exploits0References6
NVD
NVD
added 2026/05/27 2:17 p.m.15 views

CVE-2026-45913

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: always update mdbnentries for vlan contexts syzbot triggered a warning1 about the number of mdb entries in a context. It turned out that there are multiple ways to trigger that warning today some got added...

5.5CVSS0.00155EPSS
Exploits0References5
OSV
OSV
added 2026/05/27 2:17 p.m.10 views

UBUNTU-CVE-2026-45913

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: always update mdbnentries for vlan contexts syzbot triggered a warning1 about the number of mdb entries in a context. It turned out that there are multiple ways to trigger that warning today some got added...

5.5CVSS5.7AI score0.00155EPSS
Exploits0References11
OSV
OSV
added 2026/05/27 12:17 p.m.1 views

CVE-2026-45913 net: bridge: mcast: always update mdb_n_entries for vlan contexts

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: always update mdbnentries for vlan contexts syzbot triggered a warning1 about the number of mdb entries in a context. It turned out that there are multiple ways to trigger that warning today some got added...

5.5CVSS5.9AI score0.00155EPSS
Exploits0References8
CVE
CVE
added 2026/05/27 12:17 p.m.23 views

CVE-2026-45913

CVE-2026-45913 concerns the Linux kernel bridge multicast code where mdb_n_entries for VLAN contexts could be inconsistently updated, triggering kernel warnings. The fix standardizes counting by removing conditional increases and ensuring the counter is initialized on port-vlan context creation a...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.16 views

PT-2026-43780

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the bridge multicast component where the mdb n entries count for VLAN contexts is updated conditionally. This can lead to a state where a decrease operation is perform...

5.5CVSS5.4AI score0.00155EPSS
Exploits0
EUVD
EUVD
added 2025/12/08 3:31 a.m.3 views

EUVD-2025-201647

In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix use-after-free due to MST port state bypass syzbot reported1 a use-after-free when deleting an expired fdb. It is due to a race condition between learning still happening and a port being deleted, after all its...

5.9AI score0.00183EPSS
Exploits0References6
OSV
OSV
added 2025/12/08 1:16 a.m.4 views

UBUNTU-CVE-2025-40297

In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix use-after-free due to MST port state bypass syzbot reported1 a use-after-free when deleting an expired fdb. It is due to a race condition between learning still happening and a port being deleted, after all its...

5.7AI score0.00183EPSS
Exploits0References29
CVE
CVE
added 2025/12/08 12:46 a.m.21 views

CVE-2025-40297

The CVE-2025-40297 fix applies to the Linux kernel net/bridge code. It addresses a use-after-free race that could occur when deleting an expired fdb if MST is enabled. The race happens between ongoing learning and port deletion, where the port state is disabled but MST can bypass the port state, ...

6AI score0.00183EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/02/27 3:4 a.m.5 views

SUSE CVE-2022-49582

In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix NULL pointer dereference in dsaportresetvlanfiltering The "ds" iterator variable used in dsaportresetvlanfiltering - dsaswitchforeachport overwrites the "dp" received as argument, which is later used to call...

5.5CVSS6.7AI score0.00209EPSS
Exploits0References3
Rows per page
Query Builder