Lucene search
K

32 matches found

EUVD
EUVD
added 2026/06/25 4:27 p.m.5 views

EUVD-2026-39478

Zephyr's IPv6 network stack can be prevented from receiving or processing future incoming packets by sending a small number of maliciously fragmented IPv6 packets. When such a packet is handled by the fragment-header processing path, the associated RX network packet buffer allocated from a memory...

7.5CVSS6AI score0.00263EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/25 4:27 p.m.16 views

CVE-2026-13351 net: Maliciously fragmented IPv6 packets can prevent receiving/processing future incoming packets

Zephyr's IPv6 network stack can be prevented from receiving or processing future incoming packets by sending a small number of maliciously fragmented IPv6 packets. When such a packet is handled by the fragment-header processing path, the associated RX network packet buffer allocated from a memory...

7.5CVSS0.00263EPSS
Exploits1References1
OSV
OSV
added 2026/06/25 9:16 a.m.4 views

UBUNTU-CVE-2026-53215

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP or skb use The RX error path returns the current descriptor buffer to the hardware BM pool. That is only valid while the driver still owns the buffer. mvpp2rxrefill can fail after the...

9.8CVSS5.9AI score0.00546EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.8 views

PT-2026-52310

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the mvpp2 network driver where the RX error path returns the current descriptor buffer to the hardware Buffer Manager BM pool. This action is only valid while the driv...

9.8CVSS6.1AI score0.00546EPSS
Exploits0References16
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: comedi: vmk80xx: fixed the bulk-buffer overflow issue. The driver uses buffers sized equal to the endpoint size, but it should not assume that the tx and rx buffers have the same size. A malicious device could cause the...

7.8CVSS5.6AI score0.00259EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/06 11:32 a.m.47 views

CVE-2025-71285 net: qrtr: Drop the MHI auto_queue feature for IPCR DL channels

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Drop the MHI autoqueue feature for IPCR DL channels MHI stack offers the 'autoqueue' feature, which allows the MHI stack to auto queue the buffers for the RX path DL channel. Though this feature simplifies the client...

0.00126EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2025-71285

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: qrtr: Drop the MHI autoqueue feature for IPCR DL channels MHI stack offers the 'autoqueue' feature, which allows the MHI stack to auto queue the buffers fo...

5.5CVSS6.2AI score0.00126EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/04/25 1:40 a.m.7 views

SUSE CVE-2026-31539

In the Linux kernel, the following vulnerability has been resolved: smb: smbdirect: introduce smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.5AI score0.00426EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/24 9:39 p.m.4 views

CVE-2026-31644

A flaw was found in the Linux kernel's lan966x network driver. When the lan966xfdmareload function encounters an error during the allocation of new receive RX buffers, it can lead to a use-after-free condition. This occurs because the system may attempt to restart Direct Memory Access DMA...

7.8CVSS5.4AI score0.00125EPSS
Exploits0References4
OSV
OSV
added 2026/04/24 3:16 p.m.3 views

DEBIAN-CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.3AI score0.00426EPSS
Exploits0References1
NVD
NVD
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31539

In the Linux kernel, the following vulnerability has been resolved: smb: smbdirect: introduce smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS0.00426EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.4AI score0.00426EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/24 2:44 p.m.29 views

CVE-2026-31644 net: lan966x: fix use-after-free and leak in lan966x_fdma_reload()

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix use-after-free and leak in lan966xfdmareload When lan966xfdmareload fails to allocate new RX buffers, the restore path restarts DMA using old descriptors whose pages were already freed via lan966xfdmarxfreepages...

7.8CVSS0.00125EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/24 2:30 p.m.34 views

CVE-2026-31538 smb: server: make use of smbdirect_socket.recv_io.credits.available

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS0.00426EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.15 views

PT-2026-34887

In the Linux kernel, the following vulnerability has been resolved: smb: client: make use of smbdirect socket.recv io.credits.available The logic off managing recv credits by counting posted recv io and granted credits is racy. That's because the peer might already consumed a credit, but between...

5.4AI score0.00088EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013749)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013749 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix DMA mappings leak During reallocation of RX buffers, new DMA mappings are created for...

5.6AI score0.00206EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010793)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010793 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix DMA mappings leak During reallocation of RX buffers, new DMA mappings are created for...

5.9AI score0.00206EPSS
Exploits0References4
CVE
CVE
added 2025/10/28 11:48 a.m.15 views

CVE-2025-40046

CVE-2025-40046 concerns the Linux kernel: io_uring/zcrx may overshoot the recv limit because io_zcrx_recv_skb() double-counted desc->count when processing frag lists, leading to receiving more data than requested and underflow during recursive frag-list handling. The available connected docume...

6.1AI score0.00182EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/09/10 6:51 p.m.12 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00177EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/14 12:0 a.m.8 views

PT-2025-31086

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw was identified in the Linux kernel's networking subsystem, specifically within the libwx component. The issue involves a redundant call to page pool put full page, which should on...

7.8CVSS6.6AI score0.00151EPSS
Exploits0
Rows per page
Query Builder