Lucene search
K

15 matches found

OSV
OSV
added 2026/06/25 8:39 a.m.1 views

CVE-2026-53228 ipv6: sit: reload inner IPv6 header after GSO offloads

In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after GSO offloads ipip6tunnelxmit caches the inner IPv6 header pointer at function entry and continues using it after iptunnelhandleoffloads. For GSO skbs, iptunnelhandleoffloads calls...

9.8CVSS5.8AI score0.00559EPSS
Exploits0References11
CVE
CVE
added 2026/05/27 12:59 p.m.36 views

CVE-2026-46102

The CVE-2026-46102 issue affects the Linux kernel network stream parser (net: strparser). When the stream parser is aborted (e.g., after a message assembly timeout), the partially assembled message referenced by strp->skb_head is not released in strp_abort_strp(), causing a memory leak that co...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/05/27 12:59 p.m.12 views

EUVD-2026-32485

In the Linux kernel, the following vulnerability has been resolved: net: strparser: fix skbhead leak in strpabortstrp When the stream parser is aborted, for example after a message assembly timeout, it can still hold a reference to a partially assembled message in strp-skbhead. That skb is not...

5.8AI score0.00501EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.21 views

PT-2026-43970

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the stream parser when it is aborted, such as after a message assembly timeout. The strp abort strp function fails to release the reference to a partially assembl...

7.5CVSS6AI score0.00501EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix the issue of failing to release the skbuff in seg6inputcore. The seg6input function is responsible for adding the SRH into a packet, delegating this operation to seg6inputcore. This function uses skbcowhead to ensur...

6.2CVSS6.4AI score0.00223EPSS
Exploits0References2
NVD
NVD
added 2026/04/25 9:16 a.m.4 views

CVE-2026-31675

In the Linux kernel, the following vulnerability has been resolved: net/sched: schnetem: fix out-of-bounds access in packet corruption In netemenqueue, the packet corruption logic uses getrandomu32belowskbheadlenskb to select an index for modifying skb-data. When an AFPACKET TXRING sends fully...

7.8CVSS0.00126EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/01/28 12:25 a.m.6 views

SUSE CVE-2026-22988

In the Linux kernel, the following vulnerability has been resolved: arp: do not assume devhardheader does not change skb-head arpcreate is the only devhardheader caller making assumption about skb-head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after...

5.9CVSS5.8AI score0.00123EPSS
Exploits0References21
NVD
NVD
added 2026/01/23 4:15 p.m.6 views

CVE-2026-22988

In the Linux kernel, the following vulnerability has been resolved: arp: do not assume devhardheader does not change skb-head arpcreate is the only devhardheader caller making assumption about skb-head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after...

7.8CVSS0.00123EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/01/23 3:24 p.m.33 views

CVE-2026-22988 arp: do not assume dev_hard_header() does not change skb->head

In the Linux kernel, the following vulnerability has been resolved: arp: do not assume devhardheader does not change skb-head arpcreate is the only devhardheader caller making assumption about skb-head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after...

7.8CVSS0.00123EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/01/23 3:24 p.m.7 views

CVE-2026-22988

In the Linux kernel, the following vulnerability has been resolved: arp: do not assume devhardheader does not change skb-head arpcreate is the only devhardheader caller making assumption about skb-head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after...

7.8CVSS5.3AI score0.00123EPSS
Exploits0
CVE
CVE
added 2026/01/23 3:24 p.m.27 views

CVE-2026-22988

CVE-2026-22988 affects the Linux kernel’s arp handling, specifically the assumption that skb->head remains unchanged after dev_hard_header() in arp_create(). The issue arises when a recent commit altered skb->head, breaking that assumption. The publicly provided description and OpenVAS/Ness...

7.8CVSS5.2AI score0.00123EPSS
Exploits0References7Affected Software1
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.5 views

kernel: erspan: make sure erspan_base_hdr is present in skb->head

In the Linux kernel, the following vulnerability has been resolved: erspan: make sure erspanbasehdr is present in skb-head The Linux kernel CVE team has assigned CVE-2024-35888 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051947-CVE-2024-35888-1e04@gregkh/T...

5.5CVSS6.4AI score0.0025EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/07/08 2:5 a.m.9 views

kernel: erspan: make sure erspan_base_hdr is present in skb->head

In the Linux kernel, the following vulnerability has been resolved: erspan: make sure erspanbasehdr is present in skb-head The Linux kernel CVE team has assigned CVE-2024-35888 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051947-CVE-2024-35888-1e04@gregkh/T...

5.5CVSS6.4AI score0.0025EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/07/02 9:2 a.m.3 views

kernel: erspan: make sure erspan_base_hdr is present in skb->head

In the Linux kernel, the following vulnerability has been resolved: erspan: make sure erspanbasehdr is present in skb-head The Linux kernel CVE team has assigned CVE-2024-35888 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051947-CVE-2024-35888-1e04@gregkh/T...

5.5CVSS6.4AI score0.0025EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/23 2:57 a.m.4 views

SUSE CVE-2023-52701

In the Linux kernel, the following vulnerability has been resolved: net: use a bounce buffer for copying skb-mark syzbot found arm64 builds would crash in sockrecvmark when CONFIGHARDENEDUSERCOPY=y x86 and powerpc are not detecting the issue because they define useraccessbegin. This will be handl...

7.1CVSS6.6AI score0.00227EPSS
Exploits0References3
Rows per page
Query Builder