Lucene search
K

18 matches found

AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: ipv6: Rejected malicious packets in ipv6gsoSegment. syzbot was able to create a packet with very long IPv6 extension headers, leading to an overflow of skb-transportheader. This 16-bit field has a limited range. Add the...

7.8CVSS6.7AI score0.0018EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/25 12:24 a.m.4 views

SUSE CVE-2025-68363

In the Linux kernel, the following vulnerability has been resolved: bpf: Check skb-transportheader is set in bpfskbcheckmtu The bpfskbcheckmtu helper needs to use skb-transportheader when the BPFMTUCHKSEGS flag is used: bpfskbcheckmtuskb, ifindex, &mtulen, 0, BPFMTUCHKSEGS The transportheader is...

5.5CVSS6.3AI score0.00173EPSS
Exploits0References20
OSV
OSV
added 2025/12/24 11:15 a.m.10 views

AZL-73135 CVE-2025-68363 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Check skb-transportheader is set in bpfskbcheckmtu The bpfskbcheckmtu helper needs to use skb-transportheader when the BPFMTUCHKSEGS flag is used: bpfskbcheckmtuskb, ifindex, &mtulen, 0, BPFMTUCHKSEGS The transportheader is...

5.8AI score0.00173EPSS
Exploits0References1
CVE
CVE
added 2025/12/24 10:32 a.m.19 views

CVE-2025-68363

CVE-2025-68363 : Linux kernel BPF MTU check bug. The helper bpf_skb_check_mtu used skb->transport_header without guaranteeing that skb_transport_header was set, causing a WARN_ON_ONCE during BPF test_run. The fix adds a guard using skb_transport_header_was_set() and performs the check just bef...

6AI score0.00173EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-59949

Malicious code in bioql PyPI...

6.3AI score0.00143EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/09/18 11:37 p.m.4 views

SUSE CVE-2023-53439

In the Linux kernel, the following vulnerability has been resolved: net: skbpartialcsumset fix against transport header magic value skb-transportheader uses the special 0xFFFF value to mark if the transport header was set or not. We must prevent callers to accidentaly set skb-transportheader to...

5.5CVSS6.6AI score0.00134EPSS
Exploits0References3
OSV
OSV
added 2025/09/18 4:15 p.m.4 views

UBUNTU-CVE-2023-53439

In the Linux kernel, the following vulnerability has been resolved: net: skbpartialcsumset fix against transport header magic value skb-transportheader uses the special 0xFFFF value to mark if the transport header was set or not. We must prevent callers to accidentaly set skb-transportheader to...

5.5CVSS5.7AI score0.00134EPSS
Exploits0References6
CVE
CVE
added 2025/09/18 4:4 p.m.32 views

CVE-2023-53439

CVE-2023-53439 concerns the Linux kernel fix for skb_partial_csum_set() where skb->transport_header used the sentinel value 0xFFFF to indicate the transport header status. The description indicates the vulnerability arose from callers potentially setting skb->transport_header to 0xFFFF, and...

5.5CVSS6.2AI score0.00134EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2025/09/16 11:29 p.m.4 views

SUSE CVE-2023-53312

In the Linux kernel, the following vulnerability has been resolved: net: fix netdevstartxmit trace event vs skbtransportoffset After blamed commit, we must be more careful about using skbtransportoffset, as reminded us by syzbot: WARNING: CPU: 0 PID: 10 at include/linux/skbuff.h:2868...

5.5CVSS6.5AI score0.00143EPSS
Exploits0References15
NVD
NVD
added 2025/09/16 5:15 p.m.6 views

CVE-2023-53312

In the Linux kernel, the following vulnerability has been resolved: net: fix netdevstartxmit trace event vs skbtransportoffset After blamed commit, we must be more careful about using skbtransportoffset, as reminded us by syzbot: WARNING: CPU: 0 PID: 10 at include/linux/skbuff.h:2868...

5.5CVSS0.00143EPSS
Exploits0References3
OSV
OSV
added 2025/09/16 5:15 p.m.2 views

DEBIAN-CVE-2023-53312

In the Linux kernel, the following vulnerability has been resolved: net: fix netdevstartxmit trace event vs skbtransportoffset After blamed commit, we must be more careful about using skbtransportoffset, as reminded us by syzbot: WARNING: CPU: 0 PID: 10 at include/linux/skbuff.h:2868...

5.5CVSS5.4AI score0.00143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/16 4:11 p.m.3 views

CVE-2023-53312 net: fix net_dev_start_xmit trace event vs skb_transport_offset()

In the Linux kernel, the following vulnerability has been resolved: net: fix netdevstartxmit trace event vs skbtransportoffset After blamed commit, we must be more careful about using skbtransportoffset, as reminded us by syzbot: WARNING: CPU: 0 PID: 10 at include/linux/skbuff.h:2868...

6.2AI score0.00143EPSS
Exploits0References3
CVE
CVE
added 2025/09/16 4:11 p.m.21 views

CVE-2023-53312

CVE-2023-53312 : In the Linux kernel, a trace-event interaction with skb_transport_offset() in net_dev_start_xmit could lead to unsafe skb_transport_offset usage. The issue arises after a blamed commit and is fixed by the kernel remediation described in the initial document (commit references inc...

5.5CVSS6.2AI score0.00143EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2025/09/16 4:11 p.m.4 views

CVE-2023-53312

In the Linux kernel, the following vulnerability has been resolved: net: fix netdevstartxmit trace event vs skbtransportoffset After blamed commit, we must be more careful about using skbtransportoffset, as reminded us by syzbot: WARNING: CPU: 0 PID: 10 at include/linux/skbuff.h:2868...

5.5CVSS5.3AI score0.00143EPSS
Exploits0
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper use of the skbtransportoffset function, which can lead to null pointer dereferences...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/03/28 3:0 a.m.9 views

SUSE CVE-2025-21890

In the Linux kernel, the following vulnerability has been resolved: idpf: fix checksums set in idpfrxrsc idpfrxrsc uses skbtransportoffsetskb while the transport header is not set yet. This triggers the following warning for CONFIGDEBUGNET=y builds. DEBUGNETWARNONONCE!skbtransportheaderwassetskb...

5.5CVSS7.8AI score0.00176EPSS
Exploits0References15
OSV
OSV
added 2025/02/26 7:1 a.m.7 views

UBUNTU-CVE-2022-49340

In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum offload on CHECKSUMPARTIAL packets. ipgrexmit must validate csumstart after an optional skbpull, else lcocsum may trigger an overflow...

5.5CVSS6.1AI score0.00267EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2022/11/15 11:55 a.m.4 views

kernel: ip_gre: test csum_start instead of transport header

In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum offload on CHECKSUMPARTIAL packets. ipgrexmit must validate csumstart after an optional skbpull, else lcocsum may trigger an overflow...

5.5CVSS6.2AI score0.00267EPSS
Exploits0References5
Rows per page
Query Builder