527 matches found
CVE-2026-31890
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is – incidentally or maliciously – already full, the gadget will silently drop events. Th...
EUVD-2026-11641
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is – incidentally or maliciously – already full, the gadget will silently drop events. Th...
CVE-2026-31890 Inspektor Gadget: Tracing Denial of Service via Event Flooding
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is – incidentally or maliciously – already full, the gadget will silently drop events. Th...
CVE-2026-31890
Inspektor Gadget (eBPF-based data collection framework for Kubernetes/Linux) contains a DoS vulnerability prior to 0.50.1. When the gadget’s ring-buffer (hard-coded to 256KB) is full, the transfer mechanism via ring-buffers can fail to enqueue events and silently drop them; similarly, a gadget_re...
CVE-2026-31890 Inspektor Gadget: Tracing Denial of Service via Event Flooding
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is – incidentally or maliciously – already full, the gadget will silently drop events. Th...
CVE-2026-31890
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is – incidentally or maliciously – already full, the gadget will silently drop events. Th...
PT-2026-25030
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is – incidentally or maliciously – already full, the gadget will silently drop events. Th...
Inspektor Gadget 安全漏洞
Inspektor Gadget is a set of tools and frameworks based on eBPF developed by Inspektor Gadget Inc. Versions of Inspektor Gadget prior to 0.50.1 contained security vulnerabilities. These vulnerabilities stemmed from the silent discarding of events when the ring buffer was full, with the discard...
CLSA-2026-1773048865 kernel: Fix of 53 CVEs
xhci: Remove device endpoints from bandwidth list when freeing the device CVE-2022-50470 - HID: multitouch: Add NULL check in mtinputconfigured CVE-2024-58020 - netfilter: nftsetpipapo: clamp maximum map bucket size to INTMAX CVE-2025-38201 - fs: writeback: fix use-after-free in markinodedirty...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005735)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005735 advisory. In the Linux kernel, the following vulnerability has been resolved: tracing: Fix race issue between cpu buffer write and swap Warning happened in rbendcommit at cod...
SUSE SLES15 Security Update : kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7) (SUSE-SU-2026:0748-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:0748-1 advisory. This update for the SUSE Linux Enterprise kernel 6.4.0-150700.51 fixes one security issue The following security issue was fixed: - CVE-2025-38129:...
UBUNTU-CVE-2026-23217
In the Linux kernel, the following vulnerability has been resolved: riscv: trace: fix snapshot deadlock with sbi ecall If sbiecall.c's functions are traceable, echo "sbiecall:snapshot" /sys/kernel/tracing/setftracefilter may get the kernel into a deadlock. Functions in sbiecall.c are excluded fro...
CLSA-2026-1771239384 kernel: Fix of 75 CVEs
net/sched: Make cakeenqueue return NETXMITCN when past bufferlimit CVE-2025-39766 - NFSD: Avoid calling OPDESC with ops-opnum == OPILLEGAL CVE-2023-53680 - scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow CVE-2023-53676 - KVM: x86: use arrayindexnospec with indices that come from...
CLSA-2026-1771077729 kernel: Fix of 107 CVEs
net/ieee802154: don't warn zero-sized rawsendmsg CVE-2022-50706 - bpf: Don't redirect packets with invalid pktlen CVE-2022-49975 - media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat CVE-2025-38680 - ipv6: addrlabel: fix infoleak when sending struct ifaddrlblmsg to network...
SUSE SLES12 Security Update : kernel (SUSE-SU-2026:0316-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0316-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: -...
Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-49604,CVE-2025-40074: ip: Fix data-races around sysctlipfwdusepmtu bsc1238414 bsc1252794. CVE-2022-50527: drm/amdgpu: Fix size validation for non-exclusive domains...
SUSE-SU-2026:0316-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-49604,CVE-2025-40074: ip: Fix data-races around sysctlipfwdusepmtu bsc1238414 bsc1252794. - CVE-2022-50527: drm/amdgpu: Fix size validation for non-exclusive...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003998)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003998 advisory. A use-after-free flaw was found in kernel/trace/ringbuffer.c in Linux kernel before 5.10-rc1. There was a race problem in traceopen and resize of cpu buffer running...
MiracleLinux 4 : kernel-2.6.32-754.25.1.el6 (AXSA:2019-4425:06)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4425:06 advisory. Kernel: KVM: OOB memory access via mmio ring buffer CVE-2019-14821 Tenable has extracted the preceding description block directly from the MiracleLinux...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001391)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001391 advisory. A use-after-free flaw was found in kernel/trace/ringbuffer.c in Linux kernel before 5.10-rc1. There was a race problem in traceopen and resize of cpu buffer running...