48 matches found
UBUNTU-CVE-2026-53151
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the SACK table for parsing Fix modification of the received skbuff in rxrpcinputsoftacks and a potential incorrect access of the buffer in a fragmented UDP packet the packet would probably hav...
EUVD-2026-39320
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdpframe leak on XDPTX xmit failure In the XSK branch of mlx5exmitxdpbuff, when sq-xmitxdpframe returns false e.g. XDPSQ is full, the function returns without unmapping the DMA address or freeing the...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: can: dev: cangetechoskb: prevents calling kfreeskb in a hard IRQ context. If a driver calls cangetechoskb during a hardware IRQ which is often, but not always the case, the WARNONinirq in net/core/skbuff.cskbreleaseheadstate migh...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: - bus: mhi: core: Fixed an invalid error that was returned in mhiqueue. - mhiqueue returns an error when the doorbell is not accessible in the current state. This can occur when the device is in a non-M0 state, such as M3, and...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net/x25: Fixed a leak in x25lapbreceiveframe. x25lapbreceiveframe uses skbcopy to obtain a private copy of a skb. The newly created skb should be freed in the under-sized/fragmented skb error handling path. Otherwise, a memory le...
Linux Distros Unpatched Vulnerability : CVE-2026-43029
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mptcp: fix soft lockup in mptcprecvmsg syzbot reported a soft lockup in mptcprecvmsg 0. When receiving data with MSGPEEK | MSGWAITALL flags, the skb is not...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010826)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010826 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004955)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004955 advisory. In the Linux kernel, the following vulnerability has been resolved: netsched: schsfq: fix a potential crash on gsoskb handling SFQ has an assumption of always being...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38185)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38185 advisory. - In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Free invalid length skb in...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003353)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003353 advisory. In drivers/net/ethernet/hisilicon/hns/hnsenet.c in the Linux kernel before 4.13, local users can cause a denial of service use-after-free and BUG or possibly have...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002461)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002461 advisory. The veth aka virtual Ethernet driver in the Linux kernel before 2.6.34 does not properly manage skbs during congestion, which allows remote attackers to cause a deni...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003369)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003369 advisory. In drivers/net/ethernet/hisilicon/hns/hnsenet.c in the Linux kernel before 4.13, local users can cause a denial of service use-after-free and BUG or possibly have...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001736)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001736 advisory. Guests can trigger deadlock in Linux netback driver This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond ...
EUVD-2022-55869
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in ath9khtcrxmsg, then usbsubmiturb fails and we try to free skb again. It causes use-after-free bug. Moreover, if allocskb fails,...
CVE-2022-50829
The CVE-2022-50829 entry concerns the Linux kernel wireless driver ath9k (hif_usb path). The issue is a use-after-free: skb could be freed in ath9k_htc_rx_msg(), then usb_submit_urb() fails and the code attempts to free skb again. There can also be a memory leak if alloc_skb() fails, leaving urb-...
CVE-2022-50829 wifi: ath9k: hif_usb: Fix use-after-free in ath9k_hif_usb_reg_in_cb()
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in ath9khtcrxmsg, then usbsubmiturb fails and we try to free skb again. It causes use-after-free bug. Moreover, if allocskb fails,...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990478)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990478 advisory. In the Linux kernel, the following vulnerability has been resolved: llc: verify mac len before reading mac header LLC reads the mac header with ethhdr without...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989978)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989978 advisory. In the Linux kernel, the following vulnerability has been resolved: tap: add missing verification for short frame The cited commit missed to check against the validi...
Linux Distros Unpatched Vulnerability : CVE-2025-39984
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: tun: Update napi-skb after XDP process The syzbot report a UAF issue: BUG: KASAN: slab-use-after- free in skbresetmacheader include/linux/skbuff.h:3150...
Linux Distros Unpatched Vulnerability : CVE-2023-53462
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: hsr: Fix uninit-value access in fillframeinfo Syzbot reports the following uninit-value acce...