Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Wifi: wilc1000 – fixed a potential memory leak in wilcmacxmit The wilcmacxmit function returns NETDEVTXOK without freeing the skb buffer; devkfreeskb was added to address this issue. This fix has been tested only during compilati...

CVE-2026-45849

In the Linux kernel, the following vulnerability has been resolved: net: mscc: ocelot: add missing lock protection in ocelotportxmitinj ocelotportxmitinj calls ocelotcaninject and ocelotportinjectframe without holding the injection group lock. Both functions contain lockdepassertheld for the...

EUVD-2026-24817

In the Linux kernel, the following vulnerability has been resolved: virtionet: Fix UAF on dstops when IFFXMITDSTRELEASE is cleared and napitx is false A UAF issue occurs when the virtionet driver is configured with napitx=N and the device's IFFXMITDSTRELEASE flag is cleared e.g., during the...

CVE-2026-23276

A flaw was found in the Linux kernel. When a bond device in broadcast mode has Generic Routing Encapsulation GRE tap interfaces configured as slaves, and these GRE tunnels are routed back through the bond, multicast or broadcast network traffic can trigger an infinite recursion. This recursion...

SUSE CVE-2022-50728

In the Linux kernel, the following vulnerability has been resolved: s390/lcs: Fix return type of lcsstartxmit With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure the call target is valid ...

kernel: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit()

A use after free exists in the wifi module of the linux kernel in the function brcmfnetdevstartxmit,thereby leading to damage to system availability and integrity...

Siemens SCALANCE and RUGGEDCOM Devices Improper Handling of Unexpected Data Type (CVE-2024-56636)

geneve: vulnerability in genevexmitskb arises from incorrectly assuming the MAC header is set in the output path, which can lead to errors. The fix involves using skbethhdr instead of ethhdr to ensure the MAC header is correctly referenced, preventing potential issues. This plugin only works with...

pptp: ensure minimal skb length in pptp_xmit()

...

net: ppp: Add bound checking for skb data on ppp_sync_txmung

...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the erspan driver's incorrect use of skbmacheader in ndostartxmit, which could lead to memory access errors...

net: bcmasp: fix potential memory leak in bcmasp_xmit()

...

SUSE CVE-2022-3110

An issue was discovered in the Linux kernel through 5.16-rc6. rtwinitxmitpriv in drivers/staging/r8188eu/core/rtwxmit.c lacks check of the return value of rtwallochwxmits and will cause the null pointer dereference...

PT-2022-34673 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.214 Description: A potential security issue has been identified in the Linux Kernel, specifically in the cc2520 tx function. The actual impact and attack plausibility have not yet been proven...

SUSE: Security Advisory (SUSE-SU-2016:3273-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-2621

The QSslSocketBackendPrivate::transmit function in srcnetworksslqsslsocketopenssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed request...

CVE-2010-2621

The QSslSocketBackendPrivate::transmit function in srcnetworksslqsslsocketopenssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed request...

Design/Logic Flaw

The QSslSocketBackendPrivate::transmit function in srcnetworksslqsslsocketopenssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed request...

CVE-2010-2621

The QSslSocketBackendPrivate::transmit function in srcnetworksslqsslsocketopenssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed request...

CVE-2010-2621

CVE-2010-2621 affects Qt 4.6.3 and earlier; the QSslSocketBackendPrivate::transmit() function can be triggered by a malformed request to cause a denial of service via an infinite loop. Connected advisories confirm unpatched status in some distributions and note that security updates exist (e.g., ...

CVE-2010-2621

Removed by vendor...