Lucene search
K

6 matches found

Debian CVE
Debian CVE
added 2026/05/27 12:17 p.m.11 views

CVE-2026-45905

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix iprtbug race in icmproutelookup reverse path icmproutelookup performs multiple route lookups to find a suitable route for sending ICMP error messages, with special handling for XFRM IPsec policies. The lookup sequence i...

4.7CVSS5.7AI score0.00111EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: xfrm: fixed the refcount leak in xfrmmigratepolicyfind Syzkaller reported a memory leak in xfrmpolicyalloc: BUG: Memory leak Unreferenced object: 0xffff888114d79000 size 1024 Source: comm “syz.1.17”, pid 931 …...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/04/06 12:0 a.m.6 views

CVE-2026-31406

In the Linux kernel, the following vulnerability has been resolved: xfrm: Fix work re-schedule after cancel in xfrmnatkeepalivenetfini After canceldelayedworksync is called from xfrmnatkeepalivenetfini, xfrmstatefini flushes remaining states via xfrmstatedelete, which calls...

7.8CVSS5.7AI score0.00159EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/10/13 1:48 p.m.6 views

CVE-2025-39965 xfrm: xfrm_alloc_spi shouldn't use 0 as SPI

In the Linux kernel, the following vulnerability has been resolved: xfrm: xfrmallocspi shouldn't use 0 as SPI x-id.spi == 0 means "no SPI assigned", but since commit 94f39804d891 "xfrm: Duplicate SPI Handling", we now create states and add them to the byspi list with this value. xfrmstatedelete...

0.00174EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.3 views

kernel: xfrm_expand_policies() in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. An error while resolving policies in xfrmbundlelookup causes the refcount to drop twice, leading to a possible crash and a denial of service...

5.5CVSS6.6AI score0.00309EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/09/12 12:0 a.m.9 views

The vulnerability of the xfrm_expand_policies function (net/xfrm/xfrm_policy.c) in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the xfrmexpandpolicies function net/xfrm/xfrmpolicy.c in the Linux operating system is related to errors during resource release. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

5.5CVSS6.6AI score0.00309EPSS
Exploits0References39Affected Software4
Rows per page
Query Builder