Lucene search
+L

347 matches found

osv
osv
added 3 days ago3 views

SUSE-SU-2026:2930-1 Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.3 fixes various security issues The following security issues were fixed: - CVE-2025-71089: iommu: disable SVA when CONFIGX86 is set bsc1256615. - CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524. -...

9.8CVSS6.7AI score0.00563EPSS
Exploits7References51
osv
osv
added 2026/06/25 9:16 a.m.5 views

UBUNTU-CVE-2026-53221

In the Linux kernel, the following vulnerability has been resolved: ip6vti: fix incorrect tunnel matching in vti6tnllookup In vti6tnllookup, when an exact match for a tunnel fails, the code falls back to searching for wildcard tunnels: - Tunnels matching the packet's local address, with any remot...

9.8CVSS5.9AI score0.00559EPSS
Exploits0References11
cvelist
cvelist
added 2026/06/25 8:39 a.m.31 views

CVE-2026-53221 ip6_vti: fix incorrect tunnel matching in vti6_tnl_lookup()

In the Linux kernel, the following vulnerability has been resolved: ip6vti: fix incorrect tunnel matching in vti6tnllookup In vti6tnllookup, when an exact match for a tunnel fails, the code falls back to searching for wildcard tunnels: - Tunnels matching the packet's local address, with any remot...

9.8CVSS0.00559EPSS
Exploits0References8
nessus
nessus
added 2026/06/25 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53070

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sctp: disable BH before calling udptunnelxmitskb udptunnelxmitskb / udptunnel6xmitskb are expected to run with BH disabled. After commit 6f1a9140ecda add xmit...

7.5CVSS6.1AI score0.0035EPSS
Exploits0References4
astralinux
astralinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: removed WARNONONCE when accessing the forward path array. Although unlikely, recent support for IPIP tunnels increases the chances of encountering this WARNONONCE if the user space manages to create a sufficiently long forwa...

5.5CVSS5.7AI score0.00156EPSS
Exploits0References2
astralinux
astralinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: xfrm: The x-tunnel is deleted as soon as the x is deleted. The ipcomp fallback tunnels are currently deleted from various lists and hashtables because the last user state that relied on those fallbacks is destroyed not deleted. I...

6AI score0.00167EPSS
Exploits0References3
nessus
nessus
added 2026/06/10 12:0 a.m.7 views

EulerOS 2.0 SP13 : libsoup (EulerOS-SA-2026-2341)

According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in...

8.2CVSS5.6AI score0.00254EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2026/06/05 5:59 p.m.9 views

CVE-2026-2379 Arista EOS IPsec Tunnel Sequence Number Mismatch via Interface Flaps when Anti-Replay is Disabled

On affected platforms with hardware IPSec support running Arista EOS with certain IPsec features enabled, EOS may exhibit unexpected behavior in specific cases. Physical interface flaps and certain agent restarts can cause IPsec tunnel re-establishment with existing Security Associations, resulti...

8.2CVSS5.4AI score0.00226EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/06/05 12:0 a.m.12 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular Linux-based network operating system developed by the American company Arista. There is a security vulnerability in Arista EOS, which occurs when, under certain conditions, physical interface fluctuations and proxy restarts may cause the IPsec...

8.2CVSS5.2AI score0.00226EPSS
Exploits0References1
vulnersosv
vulnersosv
added 2026/05/29 7:37 p.m.9 views

async-ssh2-tokio (>=0.2.0 <=0.8.11), dev-tunnels (=0.1.0) +6 more potentially affected by CVE-2026-46702 via russh (>=0.34.0 <=0.43.0)

russh CARGO version =0.34.0, =0.2.0, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =0.4.1 - sshrpc =0.1.0 - tunnels =0.1.0 Source cves: CVE-2026-46702 Source advisory: OSV:GHSA-WWX6-X28X-8259...

7.5CVSS5.5AI score0.00268EPSS
Exploits0
nessus
nessus
added 2026/05/29 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-45847

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: remove WARNONONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARNONONCE if...

5.5CVSS6.2AI score0.00156EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/05/28 8:12 p.m.13 views

CVE-2026-44473

Ella Core is a 5G core designed for private networks. Prior to 1.10.0, a radio with a valid NG Setup can send a forged PDUSessionResourceSetupResponse carrying any UE's AMF-UE-NGAP-ID. Ella Core does not verify the message arrived on the SCTP association bound to that UE's logical NG-connection,...

7.1CVSS5.8AI score0.00166EPSS
Exploits0References1
mscve
mscve
added 2026/05/28 8:10 a.m.9 views

net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels

...

8.1CVSS5.4AI score0.00321EPSS
Exploits0
redhatcve
redhatcve
added 2026/05/28 5:9 a.m.14 views

CVE-2026-45847

A flaw was found in the Linux kernel's network component, specifically related to handling Internet Protocol over Internet Protocol IPIP tunnels. A local user could potentially craft a network configuration with a very long forward path, which could lead to an unexpected condition within the...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
susecve
susecve
added 2026/05/28 3:57 a.m.10 views

SUSE CVE-2026-45847

In the Linux kernel, the following vulnerability has been resolved: net: remove WARNONONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARNONONCE if userspace manages to build a sufficiently long forward path. Remove it...

5.8AI score0.00156EPSS
Exploits0References3
euvd
euvd
added 2026/05/27 3:33 p.m.14 views

EUVD-2026-32313

In the Linux kernel, the following vulnerability has been resolved: net: remove WARNONONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARNONONCE if userspace manages to build a sufficiently long forward path. Remove it...

5.8AI score0.00156EPSS
Exploits0References8
nvd
nvd
added 2026/05/27 2:17 p.m.14 views

CVE-2026-46099

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6inputcore and rplinput call ip6routeinput which sets a NOREF dst on the skb, then pass it to dstcachesetip6 invoking dsthold unconditionally. On PREEMPTRT, ksoftirqd is...

8.1CVSS0.00321EPSS
Exploits0References10
osv
osv
added 2026/05/27 2:16 p.m.9 views

UBUNTU-CVE-2026-45847

In the Linux kernel, the following vulnerability has been resolved: net: remove WARNONONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARNONONCE if userspace manages to build a sufficiently long forward path. Remove it...

6.9CVSS5.7AI score0.00156EPSS
Exploits0References11
euvd
euvd
added 2026/05/27 12:59 p.m.11 views

EUVD-2026-32482

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels seg6inputcore and rplinput call ip6routeinput which sets a NOREF dst on the skb, then pass it to dstcachesetip6 invoking dsthold unconditionally. On PREEMPTRT, ksoftirqd is...

5.8AI score0.00321EPSS
Exploits0References5
cve
cve
added 2026/05/27 12:59 p.m.71 views

CVE-2026-46099

The CVE-2026-46099 entry describes a use-after-free race in Linux kernel IPv6 handling for seg6 and rpl lightweight tunnels. A NOREF destination cached during ip6_route_input() can be freed by a concurrent FIB lookup on a shared nexthop under PREEMPT_RT, leading to a WARN or potential instability...

8.1CVSS5.8AI score0.00321EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder