CVE-2026-45859

The CVE-2026-45859 entry describes a Linux kernel netfilter nfnetlink_queue issue where a shared-unconfirmed nf_conn entry is not checked before segmentation, causing UDP packets to be dropped instead of queued when F_GSO is not set and a GSO packet arrives. The regression arose due to the check ...

CVE-2026-45859 netfilter: nfnetlink_queue: do shared-unconfirmed check before segmentation

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: do shared-unconfirmed check before segmentation Ulrich reports a regression with nfqueue: If an application did not set the 'FGSO' capability flag and a gso packet with an unconfirmed nfconn entry is...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: UDP: Do not accept non-tunnel GSO packets that land in a tunnel. When rx-udp-gro-forwarding is enabled, UDP packets may be forwarded in a way that causes them to land in a tunnel. This can lead to various issues. udpgroreceive...

EUVD-2023-59729

Malicious code in bioql PyPI...

The vulnerability of the `udp_gro_receive()` function in the `net/ipv4/udp_offload.c` module of the Linux operating system’s IPv4 protocol implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the udpgroreceive function in the net/ipv4/udpoffload.c module of the Linux operating system’s IPv4 protocol implementation is related to incorrect input validation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

SUSE CVE-2023-52991

In the Linux kernel, the following vulnerability has been resolved: net: fix NULL pointer in skbsegmentlist Commit 3a1296a38d0c "net: Support GRO/GSO fraglist chaining." introduced UDP listifyed GRO. The segmentation relies on fraglist being untouched when passing through the network stack. This...

UBUNTU-CVE-2024-35884

In the Linux kernel, the following vulnerability has been resolved: udp: do not accept non-tunnel GSO skbs landing in a tunnel When rx-udp-gro-forwarding is enabled UDP packets might be GROed when being forwarded. If such packets might land in a tunnel this can cause various issues and...

GSD-2022-1000831 net: fix up skbs delta_truesize in UDP GRO frag_list

net: fix up skbs deltatruesize in UDP GRO fraglist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.104 by commit...

GSD-2022-1000702 net: fix up skbs delta_truesize in UDP GRO frag_list

net: fix up skbs deltatruesize in UDP GRO fraglist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.13 by commit...