Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: seg6: Fixed the iif in the IPv6 socket control block. When an IPv4 packet is received, the iprcvcore... function sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c, line 510: c...

kernel: sunrpc: fix client side handling of tls alerts

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

CVE-2023-53204

CVE-2023-53204 affects the Linux kernel af_unix subsystem. The root cause is a data race on the unix_inflight field: user->unix_inflight is modified under spin_lock(unix_gc_lock), while too_many_unix_fds() reads it locklessly, enabling a race between unix_attach_fds and the unix_inflight acces...

CVE-2025-38566

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

CVE-2025-38566

CVE-2025-38566 affects the Linux kernel sunrpc tls alert handling in NFS over TLS. The root cause is the kTLS/read path interaction with TLS control messages and TLS alert payloads, where mis-splitting control message data can lead to incorrect processing and potential exploitation. The connected...

Linux Distros Unpatched Vulnerability : CVE-2021-47515

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the...

Exploit for Use After Free in Linux Linux_Kernel

CVE-2024-0582 A data-only attack based on CVE-2024-0582 De...

bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.

...

CVE-2021-47515

In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...

DEBIAN-CVE-2021-47515

In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...

CVE-2021-47515

In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...

CVE-2021-47515

In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...

CVE-2021-47515

In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...

CVE-2021-47515 seg6: fix the iif in the IPv6 socket control block

In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...

CVE-2021-47515 seg6: fix the iif in the IPv6 socket control block

In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...

CVE-2021-47515

CVE-2021-47515 relates to a Linux kernel seg6/IPv6 SRH encapsulation issue where the IPv6 socket CB iif was cleared when an IPv4 packet is encapsulated in an IPv6+SRH header. The root cause is that the IP6CB(skb) is cleared (memset) during SRH ip4ip6 encapsulation, and since skb->cb memory is ...

UBUNTU-CVE-2023-52654

In the Linux kernel, the following vulnerability has been resolved: iouring/afunix: disable sending iouring over sockets File reference cycles have caused lots of problems for iouring in the past, and it still doesn't work exactly right and races with unixstreamreadgeneric. The safest fix would b...

io_uring UAF Unix SCM garbage collection

...

kernel: ipvlan: out-of-bounds write caused by unclear skb->cb

A flaw was found in the IPVLAN network driver in the Linux kernel. This issue is caused by missing skb-cb initialization in ipoptionsecho and can lead to an out-of-bounds write stack overflow. This may allow a local user to cause a denial of service or potentially achieve local privilege escalati...