91 matches found
CVE-2026-52988
A flaw was found in the Linux kernel's netfilter component. This vulnerability involves a concurrency issue during updates to netfilter rulesets. When multiple updates occur simultaneously, improper synchronization could lead to unsafe data access during netlink dump list traversal. This could...
Linux Distros Unpatched Vulnerability : CVE-2026-52988
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure...
EUVD-2026-38856
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...
CVE-2026-52988
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...
CVE-2026-52988 netfilter: nf_tables: join hook list via splice_list_rcu() in commit phase
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...
CVE-2026-52988
The CVE-2026-52988 issue affects the Linux kernel netfilter nf_tables code, specifically the join hook list updated via splice_list_rcu() during commit phases. The vulnerability arises when new hooks are published to the basechain/flowtable while a concurrent ruleset update is ongoing, potentiall...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection, as a cycle in the process could lead to a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also iterates through the maps via t...
coreruleset 4.21.0 - Firewall Bypass
Exploit Title: coreruleset 4.21.0 - Firewall Bypass Date: 04/08/2026 Exploit Author: Daytrift Newgen Vendor Homepage: https://github.com/coreruleset Software Link: https://github.com/coreruleset/coreruleset Version: 4.22.0/3.3.8 Tested on: Fedora, MacOS CVE : CVE-2026-21876 import base64 import o...
EUVD-2025-199348
Malicious code in @accordproject/concerto-linter-default-ruleset npm...
MAL-2025-191173 Malicious code in @accordproject/concerto-linter-default-ruleset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9f48c313afcaf0a201a7b16889d968e2694c7e3751cc334b257de8f8084d9df The package @accordproject/concerto-linter-default-ruleset was found to contain malicious code. Source: ghsa-malware...
Malicious code in @zapier/spectral-api-ruleset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f10a9695952f169fff0da94ca1ea47045d97dd486857aad5dbc7b608e2316b The package @zapier/spectral-api-ruleset was found to contain malicious code. Source: google-open-source-security...
EUVD-2025-198908
Malicious code in @zapier/spectral-api-ruleset npm...
MAL-2025-190919 Malicious code in @zapier/spectral-api-ruleset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f10a9695952f169fff0da94ca1ea47045d97dd486857aad5dbc7b608e2316b The package @zapier/spectral-api-ruleset was found to contain malicious code. Source: google-open-source-security...
EUVD-2014-3024
Malware in sbrugna...
EUVD-2024-41603
Malicious code in bioql PyPI...
EUVD-2024-47449
Malicious code in bioql PyPI...
EUVD-2024-32056
Malicious code in bioql PyPI...
EUVD-2022-28190
Malicious code in bioql PyPI...
Malicious code in dependabot-ruleset-runner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bf6203024b7b15e14f8667f837a351ecd9b34c2298117e781b04de05af28cdc9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
kernel: netfilter: nf_tables: prefer nft_chain_validate
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection because a cycle will result in a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also follows maps via -validate callback in...