Lucene search
+L

19 matches found

Cvelist
Cvelist
added 2026/06/25 8:39 a.m.30 views

CVE-2026-53223 net: guard timestamp cmsgs to real error queue skbs

In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error queue skbs skbiserrqueue treats PACKETOUTGOING as the sole marker for an skb from skerrorqueue. That assumption is not true for AFPACKET sockets: outgoing packet taps are also delivered to...

7.1CVSS0.00131EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-52981

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - neigh: let neighxmit take skb ownership neighxmit always releases the skb, except when no neighbour table is found. But even the first added user of neighxmit...

7.5CVSS6.1AI score0.00539EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.5 views

CVE-2026-52981

In the Linux kernel, the following vulnerability has been resolved: neigh: let neighxmit take skb ownership neighxmit always releases the skb, except when no neighbour table is found. But even the first added user of neighxmit mpls relied on neighxmit to release the skb or queue it for tx. sashik...

5.8AI score0.00539EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/04/03 6:31 p.m.3 views

EUVD-2026-18688

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211txprepareskb failure ieee80211txprepareskb has three error paths, but only two of them free the skb. The first error path ieee80211txprepare returning TXDROP does not free it, while...

5.8AI score0.00129EPSS
Exploits0References4
NVD
NVD
added 2026/04/03 4:16 p.m.3 views

CVE-2026-23444

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211txprepareskb failure ieee80211txprepareskb has three error paths, but only two of them free the skb. The first error path ieee80211txprepare returning TXDROP does not free it, while...

7.8CVSS0.00129EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.5 views

CVE-2026-23444

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211txprepareskb failure ieee80211txprepareskb has three error paths, but only two of them free the skb. The first error path ieee80211txprepare returning TXDROP does not free it, while...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.29 views

CVE-2026-23444 wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211txprepareskb failure ieee80211txprepareskb has three error paths, but only two of them free the skb. The first error path ieee80211txprepare returning TXDROP does not free it, while...

7.8CVSS0.00129EPSS
Exploits0References8
OSV
OSV
added 2025/12/30 1:15 p.m.10 views

UBUNTU-CVE-2022-50829

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in ath9khtcrxmsg, then usbsubmiturb fails and we try to free skb again. It causes use-after-free bug. Moreover, if allocskb fails,...

5.7AI score0.00239EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30865

Malicious code in bioql PyPI...

6.3AI score0.00148EPSS
Exploits0References7
NVD
NVD
added 2025/09/23 6:15 a.m.5 views

CVE-2025-39873

In the Linux kernel, the following vulnerability has been resolved: can: xilinxcan: xcanwriteframe: fix use-after-free of transmitted SKB canputechoskb takes ownership of the SKB and it may be freed during or after the call. However, xilinxcan xcanwriteframe keeps using SKB after the call. Fix th...

7.8CVSS0.00148EPSS
Exploits0References7
OSV
OSV
added 2025/09/23 6:15 a.m.6 views

UBUNTU-CVE-2025-39873

In the Linux kernel, the following vulnerability has been resolved: can: xilinxcan: xcanwriteframe: fix use-after-free of transmitted SKB canputechoskb takes ownership of the SKB and it may be freed during or after the call. However, xilinxcan xcanwriteframe keeps using SKB after the call. Fix th...

7.8CVSS6.6AI score0.00148EPSS
Exploits0References32
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-27418

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: mctp: take ownership of skb in mctplocaloutput Currently, mctplocaloutput only takes ownership of skb on success, and we may leak an skb if mctplocaloutput...

5.5CVSS6.1AI score0.00219EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/12/09 12:0 a.m.19 views

CBL Mariner 2.0 Security Update: hyperv-daemons (CVE-2024-27418)

The version of hyperv-daemons installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27418 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: mctp: take ownership of skb...

5.5CVSS6AI score0.00219EPSS
Exploits0References2
NVD
NVD
added 2024/05/17 12:15 p.m.15 views

CVE-2024-27418

In the Linux kernel, the following vulnerability has been resolved: net: mctp: take ownership of skb in mctplocaloutput Currently, mctplocaloutput only takes ownership of skb on success, and we may leak an skb if mctplocaloutput fails in specific states; the skb ownership isn't transferred until...

5.5CVSS6.5AI score0.00219EPSS
Exploits0References4
OSV
OSV
added 2024/05/17 12:15 p.m.4 views

AZL-42156 CVE-2024-27418 affecting package hyperv-daemons for versions less than 5.15.158.2-1

In the Linux kernel, the following vulnerability has been resolved: net: mctp: take ownership of skb in mctplocaloutput Currently, mctplocaloutput only takes ownership of skb on success, and we may leak an skb if mctplocaloutput fails in specific states; the skb ownership isn't transferred until...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/17 12:15 p.m.30 views

CVE-2024-27418

In the Linux kernel, the following vulnerability has been resolved: net: mctp: take ownership of skb in mctplocaloutput Currently, mctplocaloutput only takes ownership of skb on success, and we may leak an skb if mctplocaloutput fails in specific states; the skb ownership isn't transferred until...

5.5CVSS5.9AI score0.00219EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/05/17 11:51 a.m.17 views

CVE-2024-27418 net: mctp: take ownership of skb in mctp_local_output

In the Linux kernel, the following vulnerability has been resolved: net: mctp: take ownership of skb in mctplocaloutput Currently, mctplocaloutput only takes ownership of skb on success, and we may leak an skb if mctplocaloutput fails in specific states; the skb ownership isn't transferred until...

6.8AI score0.00219EPSS
Exploits0References4
CVE
CVE
added 2024/05/17 11:51 a.m.107 views

CVE-2024-27418

CVE-2024-27418 affects the Linux kernel net: mctp component. The vulnerability is a memory leak: mctp_local_output currently frees the skb only on success, risking skb leakage if mctp_local_output fails in certain states because ownership isn’t transferred until routing occurs. The fix is to have...

5.5CVSS6.7AI score0.00219EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2024/04/30 2:26 a.m.4 views

SUSE CVE-2022-48637

In the Linux kernel, the following vulnerability has been resolved: bnxt: prevent skb UAF after handing over to PTP worker When reading the timestamp is required bnxttxint hands over the ownership of the completed skb to the PTP worker. The skb should not be used afterwards, as the worker may run...

5.5CVSS6.2AI score0.00227EPSS
Exploits0References8
Rows per page
Query Builder