413 matches found
VulnCheck KEV: CVE-2009-2698
The udpsendmsg function in the UDP implementation in 1 net/ipv4/udp.c and 2 net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash via vectors involving the MSGMORE flag and a UDP socket...
kernel: xsk: check IFF_UP earlier in Tx path
In the Linux kernel, the following vulnerability has been resolved: xsk: check IFFUP earlier in Tx path Xsk Tx can be triggered via either sendmsg or poll syscalls. These two paths share a call to common function xskxmit which has two sanity checks within. A pseudo code example to show the two...
Unbreakable Enterprise kernel security update
5.4.17-2136.351.3.3 - crypto: afalg - Fix incorrect boolean values in afalgctx Eric Biggers Orabug: 38884602 CVE-2025-40022...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38185)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38185 advisory. - In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Free invalid length skb in...
Azure Linux 3.0 Security Update: kernel (CVE-2025-23142)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-23142 advisory. - In the Linux kernel, the following vulnerability has been resolved: sctp: detect and prevent references to a...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001579)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001579 advisory. A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001376)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001376 advisory. In the Linux kernel before 5.4.2, the iouring feature leads to requests that inadvertently have UID 0 and full capabilities, aka CID-181e448d8709. This is related to...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004299)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004299 advisory. In the Linux Kernel before versions 4.20.8 and 4.19.21 a use-after-free error in the sctpsendmsg function net/sctp/socket.c when handling SCTPSENDALL flag can be...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000704)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000704 advisory. Race condition in the rdssendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service NULL pointer...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004072)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004072 advisory. In the Linux Kernel before versions 4.20.8 and 4.19.21 a use-after-free error in the sctpsendmsg function net/sctp/socket.c when handling SCTPSENDALL flag can be...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002038)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002038 advisory. Race condition in the rdssendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service NULL pointer...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002209)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002209 advisory. Race condition in the rdssendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service NULL pointer...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003180)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003180 advisory. Race condition in the netlinkdump function in net/netlink/afnetlink.c in the Linux kernel before 4.6.3 allows local users to cause a denial of service double free or...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002968)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002968 advisory. The IPv6 stack in the Linux kernel before 4.3.3 mishandles options data, which allows local users to gain privileges or cause a denial of service use-after-free and...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003464)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003464 advisory. Race condition in the netlinkdump function in net/netlink/afnetlink.c in the Linux kernel before 4.6.3 allows local users to cause a denial of service double free or...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003097)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003097 advisory. The IPv6 stack in the Linux kernel before 4.3.3 mishandles options data, which allows local users to gain privileges or cause a denial of service use-after-free and...
kernel: Linux kernel: SCTP use-after-free due to race condition in sendmsg
A flaw was found in the Linux kernel's SCTP implementation. This vulnerability allows a use-after-free read via a race condition during SCTP message sending...
UBUNTU-CVE-2025-68787
In the Linux kernel, the following vulnerability has been resolved: netrom: Fix memory leak in nrsendmsg syzbot reported a memory leak 1. When function sockallocsendskb return NULL in nroutput, the original skb is not freed, which was allocated in nrsendmsg. Fix this by freeing it before return. ...
CVE-2025-68787
In the Linux kernel, the following vulnerability has been resolved: netrom: Fix memory leak in nrsendmsg syzbot reported a memory leak 1. When function sockallocsendskb return NULL in nroutput, the original skb is not freed, which was allocated in nrsendmsg. Fix this by freeing it before return. ...
kernel: Linux kernel: SCTP use-after-free due to race condition in sendmsg
A flaw was found in the Linux kernel's SCTP implementation. This vulnerability allows a use-after-free read via a race condition during SCTP message sending...