CVE-2026-46321

A flaw was found in the Linux kernel. A local attacker with access to the tun/tap device can exploit this vulnerability. By sending network frames shorter than the expected header length, the system fails to free allocated memory pages, leading to memory leaks. This can exhaust system memory,...

Unbreakable Enterprise kernel security update

6.12.0-203.76.7.1 - smb: client: reject userspace cifs.spnego descriptions Asim Viladi Oglu Manizada Orabug: 39474418 6.12.0-203.76.7 - tun: free page on buildskb failure in tunxdpone Weiming Shi Orabug: 39456024 - tap: free page on error paths in tapgetuserxdp Weiming Shi Orabug: 39456024 - tun:...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

A flaw was discovered in the Linux kernel. The tun/tap sockets have their socket UID hardcoded to 0 due to a type confusion in their initialization function. While this will usually be correct, since tuntap devices require CAPNETADMIN, it may not always be the case. For example, a non-root user...

Astra Linux - уязвимость в linux-5.10

A double-free flaw was discovered in the Linux kernel’s TUN/TAP device driver functionality, particularly in how a user registers the device when the registernetdevice function fails with the NETDEVREGISTER notifier. This flaw allows a local user to crash the system or potentially escalate their...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000984)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000984 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002257)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002257 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001779)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001779 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001725)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001725 advisory. A double-free flaw was found in the Linux kernels TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails...

EUVD-2012-2136

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414317)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414317 advisory. A double-free flaw was found in the Linux kernels TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails...

EUVD-2023-44445

Malicious code in bioql PyPI...

EUVD-2022-52042

Malicious code in bioql PyPI...

EUVD-2023-54072

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-4744

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A double-free flaw was found in the Linux kernel's TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function...

Linux Distros Unpatched Vulnerability : CVE-2023-3812

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds memory access flaw was found in the Linux kernel's TUN/TAP device driver functionality in how a user generates a malicious too big networking...

Linux Distros Unpatched Vulnerability : CVE-2023-4194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some...

Linux Distros Unpatched Vulnerability : CVE-2023-1076

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0 due to a type confusion in their initialization function. While i...

ROS-20250220-01

Vulnerability of tunfreenetdev function of virtual network drivers TUN/TAP of kernel operating systems Linux is related to repeated freeing of previously freed memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service or escalate privileges A vulnerability in...

SUSE CVE-2022-4744

A double-free flaw was found in the Linux kernel's TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails NETDEVREGISTER notifier. This flaw allows a local user to crash or potentially escalate their privileges on the system...

SUSE CVE-2023-3812

An out-of-bounds memory access flaw was found in the Linux kernel's TUN/TAP device driver functionality in how a user generates a malicious too big networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on the system...