Lucene search
K

11 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from xfrm not safely canceling the hash of the xfrmstate list in the xfrmstatedelete function. This...

7.8CVSS5.8AI score0.00125EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2025/12/05 12:26 a.m.2 views

SUSE CVE-2025-40215

In the Linux kernel, the following vulnerability has been resolved: xfrm: delete x-tunnel as we delete x The ipcomp fallback tunnels currently get deleted from the various lists and hashtables as the last user state that needed that fallback is destroyed not deleted. If a reference to that user...

7CVSS6.3AI score0.00176EPSS
Exploits0References30
OSV
OSV
added 2025/12/04 4:16 p.m.11 views

UBUNTU-CVE-2025-40256

In the Linux kernel, the following vulnerability has been resolved: xfrm: also call xfrmstatedeletetunnel at destroy time for states that were never added In commit b441cf3f8c4b "xfrm: delete x-tunnel as we delete x", I missed the case where state creation fails between full initialization...

5.8AI score0.00173EPSS
Exploits0References10
EUVD
EUVD
added 2025/12/04 4:8 p.m.5 views

EUVD-2025-201201

In the Linux kernel, the following vulnerability has been resolved: xfrm: also call xfrmstatedeletetunnel at destroy time for states that were never added In commit b441cf3f8c4b "xfrm: delete x-tunnel as we delete x", I missed the case where state creation fails between full initialization...

6.2AI score0.00173EPSS
Exploits0References3
NVD
NVD
added 2025/12/04 1:15 p.m.4 views

CVE-2025-40215

In the Linux kernel, the following vulnerability has been resolved: xfrm: delete x-tunnel as we delete x The ipcomp fallback tunnels currently get deleted from the various lists and hashtables as the last user state that needed that fallback is destroyed not deleted. If a reference to that user...

0.00176EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from incomplete xfrm state deletion, which could lead to a resource leak...

6AI score0.00176EPSS
Exploits0References3
OSV
OSV
added 2025/10/13 2:15 p.m.3 views

UBUNTU-CVE-2025-39965

In the Linux kernel, the following vulnerability has been resolved: xfrm: xfrmallocspi shouldn't use 0 as SPI x-id.spi == 0 means "no SPI assigned", but since commit 94f39804d891 "xfrm: Duplicate SPI Handling", we now create states and add them to the byspi list with this value. xfrmstatedelete...

5.5CVSS6.2AI score0.00177EPSS
Exploits0References17
RedhatCVE
RedhatCVE
added 2025/08/12 11:25 a.m.6 views

CVE-2025-8805

A vulnerability was determined in Open5GS up to 2.7.5. Affected by this issue is the function smfgsmstatewaitpfcpdeletion of the file src/smf/gsm-sm.c of the component SMF. The manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the publ...

7.5CVSS5.5AI score0.00671EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-49953

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix crash caused by calling xfrmstatedelete twice The km.state is not checked in...

5.5CVSS5.6AI score0.00302EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.30 views

FreeBSD : Gitlab -- Multiple vulnerabilities (174e466b-1d48-11eb-bd0f-001b217b3468)

Gitlab reports : Path Traversal in LFS Upload Path traversal allows saving packages in arbitrary location Kubernetes agent API leaks private repos Terraform state deletion API exposes object storage URL Stored-XSS in error message of build-dependencies Git credentials persisted on disk Potential...

8.7CVSS6.1AI score0.68639EPSS
Exploits0References15
CNVD
CNVD
added 2017/04/25 12:0 a.m.2 views

MediaWiki security bypass vulnerability (CNVD-2017-06567)

MediaWiki is a free and free web-based Wiki engine developed and maintained by the Wikimedia Foundation and MediaWiki volunteers, which can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki. A remote attacker can exploit t...

6.5CVSS7.1AI score0.00962EPSS
Exploits0References1
Rows per page
Query Builder