Lucene search
+L

7 matches found

SUSE CVE
SUSE CVE
added 2026/06/10 2:25 a.m.10 views

SUSE CVE-2026-46322

In the Linux kernel, the following vulnerability has been resolved: tun: free page on buildskb failure in tunxdpone When buildskb fails in tunxdpone, the function sets ret to -ENOMEM and jumps to the out label, which returns without freeing the page that vhostnetbuildxdp allocated for the frame. ...

3.3CVSS5.3AI score0.00129EPSS
Exploits0References3
Redos
Redos
added 2026/02/20 12:0 a.m.8 views

ROS-20260220-73-0019

A vulnerability in the Linux kernel's TUN virtual network interface is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.6AI score0.00161EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.10 views

kernel: net: tun: unlink NAPI from device on destruction

In the Linux kernel, the following vulnerability has been resolved: net: tun: unlink NAPI from device on destruction Syzbot found a race between tun file and device destruction. NAPIs live in struct tunfile which can get destroyed before the netdev so we have to del them explicitly. The current...

5.5CVSS6.8AI score0.00274EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/15 9:30 a.m.5 views

EUVD-2025-34588

In the Linux kernel, the following vulnerability has been resolved: net: tun: Update napi-skb after XDP process The syzbot report a UAF issue: BUG: KASAN: slab-use-after-free in skbresetmacheader include/linux/skbuff.h:3150 inline BUG: KASAN: slab-use-after-free in napifragsskb net/core/gro.c:723...

6AI score0.00184EPSS
Exploits0References4
OSV
OSV
added 2025/02/26 7:1 a.m.2 views

DEBIAN-CVE-2022-49672

In the Linux kernel, the following vulnerability has been resolved: net: tun: unlink NAPI from device on destruction Syzbot found a race between tun file and device destruction. NAPIs live in struct tunfile which can get destroyed before the netdev so we have to del them explicitly. The current...

5.5CVSS5.5AI score0.00274EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/03/06 4:52 a.m.4 views

SUSE CVE-2021-47082

In the Linux kernel, the following vulnerability has been resolved: tun: avoid double free in tunfreenetdev Avoid double free in tunfreenetdev by moving the dev-tstats and tun-security allocs to a new ndoinit routine tunnetinit that will be called by registernetdevice. ndoinit is paired with the...

4.4CVSS7.9AI score0.0025EPSS
Exploits0References15
CVE
CVE
added 2010/03/24 10:0 a.m.111 views

CVE-2010-0437

CVE-2010-0437 affects the Linux kernel, specifically versions prior to 2.6.27. The vulnerability resides in ip6_dst_lookup_tail() (net/ipv6/ip6_output.c) where certain conditions involving an IPv6 TUN interface and a large number of neighbors are mishandled, allowing a remote attacker to cause a ...

7.8CVSS7.6AI score0.12426EPSS
Exploits2References13Affected Software1
Rows per page
Query Builder