4 matches found
UBUNTU-CVE-2026-31415
In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid overflows in ip6datagramsendctl Yiming Qian reported : I believe I found a locally triggerable kernel bug in the IPv6 sendmsg ancillary-data path that can panic the kernel via skbunderpanic local DoS. The core issue i...
CVE-2026-31415
CVE-2026-31415 affects Linux kernels where ipv6: ip6_datagram_send_ctl() accepts repeated IPV6_DSTOPTS, accumulating into a 16-bit opt_flen without deduplicating. This can cause opt_flen to wrap while dst1opt points to the last 2048-byte destination-options header, leading to under-headroom pushe...
GSD-2022-1002203 ax25: fix UAF bug in ax25_send_control()
ax25: fix UAF bug in ax25sendcontrol This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.190 by commit eaa7eb23fa76db45f7da1b6192518705863d0ebe...
GSD-2022-1001749 ax25: fix UAF bug in ax25_send_control()
ax25: fix UAF bug in ax25sendcontrol This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.35 by commit 1bf8946d5826788c82971977245bcd3313678eac...