Lucene search
+L

9 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: xsk: Avoid data corruption on cq descriptor number Since commit 30f241fcf52a “xsk: Fix immature cq descriptor production”, the descriptor number is stored in the skb control block, and xskcqsubmitaddrlocked relies on it to place...

5.7AI score0.00161EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/03/29 11:3 p.m.5 views

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.8CVSS6.1AI score0.00215EPSS
Exploits1References1
nvd
nvd
added 2026/03/28 12:16 a.m.4 views

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.8CVSS0.00215EPSS
Exploits1References1
euvd
euvd
added 2026/03/27 11:21 p.m.4 views

EUVD-2026-16903

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.1AI score0.00215EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/03/27 11:21 p.m.3 views

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.1AI score0.00215EPSS
Exploits1References2
osv
osv
added 2026/03/27 11:21 p.m.4 views

CVE-2026-1679 net: eswifi socket send payload length not bounded

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.2AI score0.00215EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2026/03/27 12:0 a.m.7 views

PT-2026-28314

Name of the Vulnerable Software and Affected Versions eswifi affected versions not specified Description The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space. Oversized sends can overflow eswifi-buf, leading to kernel memory corruptio...

7.3CVSS6.2AI score0.00215EPSS
Exploits1References7
susecve
susecve
added 2025/09/19 11:34 p.m.9 views

SUSE CVE-2023-53394

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix crash on regular rq reactivation When the regular rq is reactivated after the XSK socket is closed it could be reading stale cqes which eventually corrupts the rq. This leads to no more traffic being received ...

5.5CVSS6.6AI score0.00119EPSS
Exploits0References15
susecve
susecve
added 2025/01/22 3:48 a.m.4 views

SUSE CVE-2024-57933

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

5.5CVSS7.6AI score0.00202EPSS
Exploits0References13
Rows per page
Query Builder