648 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000984)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000984 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004070)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004070 advisory. A memory leak in the qrtrtunwriteiter function in net/qrtr/tun.c in the Linux kernel before 5.3 allows attackers to cause a denial of service memory consumption, aka...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004438)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004438 advisory. In tungetuser of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privilege...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001649)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001649 advisory. In the tun subsystem in the Linux kernel before 4.13.14, devgetvalidname is not called before registernetdevice. This allows local users to cause a denial of service...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001369)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001369 advisory. In tungetuser of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privilege...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000742)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000742 advisory. Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAPNETADMIN capability a...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001779)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001779 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002257)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002257 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003527)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003527 advisory. In the tun subsystem in the Linux kernel before 4.13.14, devgetvalidname is not called before registernetdevice. This allows local users to cause a denial of service...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002011)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002011 advisory. Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAPNETADMIN capability a...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002068)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002068 advisory. Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAPNETADMIN capability a...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001725)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001725 advisory. A double-free flaw was found in the Linux kernels TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: Net: tun: Update napi-skb after the XDP process. The syzbot report a UAF issue: BUG: KASAN: slab-use-after-free in skbresetmacheader include/linux/skbuff.h:3150 inline BUG: KASAN: slab-use-after-free in napifragsskb...
ROS-20260112-7340
A vulnerability in the tun.c component of the Linux kernel is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000251)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000251 advisory. A memory leak in the qrtrtunwriteiter function in net/qrtr/tun.c in the Linux kernel before 5.3 allows attackers to cause a denial of service memory consumption, aka...
AlmaLinux 10 : kernel (ALSA-2025:23279)
The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:23279 advisory. kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: net: tun: Update napi-skb after XDP process...
PT-2026-26114
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's UDP GRO Generic Receive Offload complete stage. The UDP GRO complete stage incorrectly assumes that the encapsulation flag is zeroed for all packets...
EUVD-2023-60290
In the Linux kernel, the following vulnerability has been resolved: net: core: remove unnecessary framesz check in bpfxdpadjusttail Syzkaller reported the following issue: ======================================= Too BIG xdp-framesz = 131072 WARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121...
CVE-2023-54155
The CVE relates to the Linux kernel net/xdp path. Root cause: a previous check enforcing xdp.frame_sz > PAGE_SIZE was removed in the context of allowing bpf_xdp_adjust_tail() to grow packet size, after xdp_init_buff() was introduced. This can allow excessive frame sizes (e.g., xdp->frame_sz...
CVE-2023-54155 net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
In the Linux kernel, the following vulnerability has been resolved: net: core: remove unnecessary framesz check in bpfxdpadjusttail Syzkaller reported the following issue: ======================================= Too BIG xdp-framesz = 131072 WARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121...