7 matches found
SUSE CVE-2026-46322
In the Linux kernel, the following vulnerability has been resolved: tun: free page on buildskb failure in tunxdpone When buildskb fails in tunxdpone, the function sets ret to -ENOMEM and jumps to the out label, which returns without freeing the page that vhostnetbuildxdp allocated for the frame. ...
ROS-20260220-73-0019
A vulnerability in the Linux kernel's TUN virtual network interface is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
kernel: net: tun: unlink NAPI from device on destruction
In the Linux kernel, the following vulnerability has been resolved: net: tun: unlink NAPI from device on destruction Syzbot found a race between tun file and device destruction. NAPIs live in struct tunfile which can get destroyed before the netdev so we have to del them explicitly. The current...
EUVD-2025-34588
In the Linux kernel, the following vulnerability has been resolved: net: tun: Update napi-skb after XDP process The syzbot report a UAF issue: BUG: KASAN: slab-use-after-free in skbresetmacheader include/linux/skbuff.h:3150 inline BUG: KASAN: slab-use-after-free in napifragsskb net/core/gro.c:723...
DEBIAN-CVE-2022-49672
In the Linux kernel, the following vulnerability has been resolved: net: tun: unlink NAPI from device on destruction Syzbot found a race between tun file and device destruction. NAPIs live in struct tunfile which can get destroyed before the netdev so we have to del them explicitly. The current...
SUSE CVE-2021-47082
In the Linux kernel, the following vulnerability has been resolved: tun: avoid double free in tunfreenetdev Avoid double free in tunfreenetdev by moving the dev-tstats and tun-security allocs to a new ndoinit routine tunnetinit that will be called by registernetdevice. ndoinit is paired with the...
CVE-2010-0437
CVE-2010-0437 affects the Linux kernel, specifically versions prior to 2.6.27. The vulnerability resides in ip6_dst_lookup_tail() (net/ipv6/ip6_output.c) where certain conditions involving an IPv6 TUN interface and a large number of neighbors are mishandled, allowing a remote attacker to cause a ...