15 matches found
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix nested key length validation in the set action It is not safe to access nlalenovskey if the data is smaller than the netlink header. Make sure the attribute is valid first...
SUSE CVE-2026-31679
In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...
CVE-2026-31679
In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...
CVE-2026-31679
In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...
PT-2026-35139
In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/set masked payload length validate set accepted OVS KEY ATTR MPLS as variable-sized payload for SET/SET MASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovs key mpls...
kernel: Linux kernel (openvswitch): Denial of Service and limited data exposure via improper key length validation
A flaw was found in the Linux kernel's openvswitch virtual environment. A local attacker with low privileges could exploit improper data and key length validation in the set action. This could lead to a denial of service, making the system unresponsive, and potentially result in limited informati...
kernel: Linux kernel (openvswitch): Denial of Service and limited data exposure via improper key length validation
A flaw was found in the Linux kernel's openvswitch virtual environment. A local attacker with low privileges could exploit improper data and key length validation in the set action. This could lead to a denial of service, making the system unresponsive, and potentially result in limited informati...
kernel: Linux kernel (openvswitch): Denial of Service and limited data exposure via improper key length validation
A flaw was found in the Linux kernel's openvswitch virtual environment. A local attacker with low privileges could exploit improper data and key length validation in the set action. This could lead to a denial of service, making the system unresponsive, and potentially result in limited informati...
Azure Linux 3.0 Security Update: kernel (CVE-2025-37789)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37789 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix nested key length...
EUVD-2022-55118
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-37789
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: openvswitch: fix nested key length validation in the set action It's not safe to access nlalenovskey if the data is smaller than the netlink header. Check...
net: openvswitch: fix nested key length validation in the set() action
...
SUSE CVE-2025-37789
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix nested key length validation in the set action It's not safe to access nlalenovskey if the data is smaller than the netlink header. Check that the attribute is OK first...
UBUNTU-CVE-2025-37789
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix nested key length validation in the set action It's not safe to access nlalenovskey if the data is smaller than the netlink header. Check that the attribute is OK first...
PT-2025-18469
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, specifically in the openvswitch component. The issue concerns the validation of nested key length in the set action, where it is no...