7 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: xfrm: Also calls xfrmstatedeletetunnel at the time of destruction for states that were never added. In commit b441cf3f8c4b “xfrm: deletes x-tunnel as we delete x”, I missed the case where state creation fails between full...
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50095)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50095 advisory. - xfrm: delete x-tunnel as we delete x Sabrina Dubroca Orabug: 38933003 CVE-2025-40215 - mptcp: fix race condition in mptcpschedulework Eric Dumaz...
SUSE SLES11: kernel-default / kernel-default-base / kernel-default-devel / etc (SUSE-SU-2026:0352-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0352-1 advisory. The SUSE Linux Enterprise 11 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-54168:...
SUSE-SU-2026:0263-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50630: mm: hugetlb: fix UAF in hugetlbhandleuserfault bsc1254785. - CVE-2022-50700: wifi: ath10k: Delay the unmapping of the buffer bsc1255576. -...
PT-2026-8113
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a data-race condition within the l2tp tunnel del work function. This issue arises when handling kernel sockets, specifically during the deletion of an L2TP...
CVE-2025-40256
In the Linux kernel, the following vulnerability has been resolved: xfrm: also call xfrmstatedeletetunnel at destroy time for states that were never added In commit b441cf3f8c4b "xfrm: delete x-tunnel as we delete x", I missed the case where state creation fails between full initialization...
CVE-2025-40256 xfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added
In the Linux kernel, the following vulnerability has been resolved: xfrm: also call xfrmstatedeletetunnel at destroy time for states that were never added In commit b441cf3f8c4b "xfrm: delete x-tunnel as we delete x", I missed the case where state creation fails between full initialization...