Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: net: flowdissector: Use DEBUGNETWARNONONCE. This issue is easy to reproduce both upstream and in the -stable kernels. Florian Westphal provided the following commit: d1dab4f71d37 “net: add and use skbgethashsymmetricnet". However...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003576)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003576 advisory. Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selectiv...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000297)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000297 advisory. Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments...

SUSE CVE-2023-53635

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: fix wrong ct-timeout value struct nfconn-timeout is an interval before the conntrack confirmed. After confirmed, it becomes a timestamp. It is observed that timeout of an unconfirmed conntrack: - Set by...

AZL-76410 CVE-2023-53635 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: fix wrong ct-timeout value struct nfconn-timeout is an interval before the conntrack confirmed. After confirmed, it becomes a timestamp. It is observed that timeout of an unconfirmed conntrack: - Set by...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414593)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414593 advisory. The eBPF RINGBUF bpfringbufreserve function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to...

DEBIAN-CVE-2025-21995

In the Linux kernel, the following vulnerability has been resolved: drm/sched: Fix fence reference count leak The lastscheduled fence leaks when an entity is being killed and adding the cleanup callback fails. Decrement the reference count of prev when dmafenceaddcallback fails, ensuring proper...

Fedora 37 : kernel (2022-1a5b125ac6)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-1a5b125ac6 advisory. The 101/201/301 builds of the 5.19.15 kernel contain fixes for some wireless network vulnerabilities and a couple of important arm bug fixes. ---- T...

Fedora: Security Advisory (FEDORA-2024-8bda3bcaea)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-6d35739db7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-47436 usb: musb: dsps: Fix the probe error path

In the Linux kernel, the following vulnerability has been resolved: usb: musb: dsps: Fix the probe error path Commit 7c75bde329d7 "usb: musb: musbdsps: requestirq after initializing musb" has inverted the calls to dspssetupoptionalvbusirq and dspscreatemusbpdev without updating correctly the erro...

CVE-2021-47436

CVE-2021-47436 – Linux kernel USB Musb DSPS probe error path fix . The connected Astra/Unity advisories confirm a root cause in the Musb DSPS driver where dsps_setup_optional_vbus_irq() and dsps_create_musb_pdev() were inverted in the error path, leaving a platform device registered but not unreg...

SUSE CVE-2024-35882

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix a slow server-side memory leak with RPC-over-TCP Jan Schunk reports that his small NFS servers suffer from memory exhaustion after just a few days. A bisect shows that commit e18e157bb5c8 "SUNRPC: Send RPC message on...

Fedora 38 : kernel (2024-e513c6594d)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-e513c6594d advisory. The 6.8.9 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly from the...

Sprecher Automation SPRECON-E TCP SACK PANIC (CVE-2019-11477)

Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments SACKs. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182,...

Sprecher Automation SPRECON-E TCP SACK PANIC (CVE-2019-11479)

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...

Fedora 36 : kernel (2023-457955ce13)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-457955ce13 advisory. The 6.1.12 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly from the...

SUSE CVE-2019-11479

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...

Fedora 32 : kernel (2021-8953a0780d)

The remote Fedora 32 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-8953a0780d advisory. - The 5.11.12 stable kernel update contains a number of important fixes across the tree. FEDORA-2021-8953a0780d Note that Nessus has not tested for this issu...

Fedora 31 : kernel (2020-ad980d282f)

This update contains patches for the BleedingTooth CVEs. ---- The 5.8.15 stable kernel update contains a number of important fixes across the tree. ---- The 5.8.14 stable kernel update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the...