Lucene search
+L

648 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000984)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000984 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...

7.2CVSS5.5AI score0.00583EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004070)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004070 advisory. A memory leak in the qrtrtunwriteiter function in net/qrtr/tun.c in the Linux kernel before 5.3 allows attackers to cause a denial of service memory consumption, aka...

7.8CVSS6.9AI score0.02948EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004438)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004438 advisory. In tungetuser of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privilege...

6.7CVSS7.1AI score0.00174EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001649)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001649 advisory. In the tun subsystem in the Linux kernel before 4.13.14, devgetvalidname is not called before registernetdevice. This allows local users to cause a denial of service...

6.9CVSS6.3AI score0.00654EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001369)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001369 advisory. In tungetuser of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privilege...

6.7CVSS7.1AI score0.00174EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000742)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000742 advisory. Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAPNETADMIN capability a...

6.9CVSS6.6AI score0.00355EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001779)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001779 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...

7.2CVSS5.5AI score0.00583EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002257)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002257 advisory. The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cau...

7.2CVSS5.5AI score0.00583EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003527)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003527 advisory. In the tun subsystem in the Linux kernel before 4.13.14, devgetvalidname is not called before registernetdevice. This allows local users to cause a denial of service...

6.9CVSS6.3AI score0.00654EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002011)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002011 advisory. Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAPNETADMIN capability a...

6.9CVSS6.5AI score0.00355EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002068)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002068 advisory. Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAPNETADMIN capability a...

6.9CVSS6.5AI score0.00355EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001725)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001725 advisory. A double-free flaw was found in the Linux kernels TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails...

7.8CVSS6.4AI score0.00456EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.5 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: Net: tun: Update napi-skb after the XDP process. The syzbot report a UAF issue: BUG: KASAN: slab-use-after-free in skbresetmacheader include/linux/skbuff.h:3150 inline BUG: KASAN: slab-use-after-free in napifragsskb...

6.6AI score0.00184EPSS
Exploits0References3
Redos
Redos
added 2026/01/12 12:0 a.m.5 views

ROS-20260112-7340

A vulnerability in the tun.c component of the Linux kernel is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.1CVSS6.5AI score0.00254EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000251)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000251 advisory. A memory leak in the qrtrtunwriteiter function in net/qrtr/tun.c in the Linux kernel before 5.3 allows attackers to cause a denial of service memory consumption, aka...

7.8CVSS6.9AI score0.02948EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/06 12:0 a.m.10 views

AlmaLinux 10 : kernel (ALSA-2025:23279)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:23279 advisory. kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: net: tun: Update napi-skb after XDP process...

5.5CVSS7AI score0.00184EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-26114

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's UDP GRO Generic Receive Offload complete stage. The UDP GRO complete stage incorrectly assumes that the encapsulation flag is zeroed for all packets...

5.5CVSS6.1AI score0.00114EPSS
Exploits0
EUVD
EUVD
added 2025/12/24 3:30 p.m.3 views

EUVD-2023-60290

In the Linux kernel, the following vulnerability has been resolved: net: core: remove unnecessary framesz check in bpfxdpadjusttail Syzkaller reported the following issue: ======================================= Too BIG xdp-framesz = 131072 WARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121...

5.8AI score0.00168EPSS
Exploits0References5
CVE
CVE
added 2025/12/24 1:7 p.m.15 views

CVE-2023-54155

The CVE relates to the Linux kernel net/xdp path. Root cause: a previous check enforcing xdp.frame_sz > PAGE_SIZE was removed in the context of allowing bpf_xdp_adjust_tail() to grow packet size, after xdp_init_buff() was introduced. This can allow excessive frame sizes (e.g., xdp->frame_sz...

5.9AI score0.00168EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 1:7 p.m.3 views

CVE-2023-54155 net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()

In the Linux kernel, the following vulnerability has been resolved: net: core: remove unnecessary framesz check in bpfxdpadjusttail Syzkaller reported the following issue: ======================================= Too BIG xdp-framesz = 131072 WARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121...

6.2AI score0.00168EPSS
Exploits0References7
Rows per page
Query Builder