Lucene search
+L

39 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/27 8:6 a.m.31 views

net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list

...

8.7CVSS5.8AI score0.00131EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/25 8:39 a.m.9 views

CVE-2026-53230

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5querynicvportmaclist mlx5querynicvportmaclist sizes its firmware command buffer using the PF's logmaxcurrentuc/mclist capabilities. When querying a VF vport with a larger configured max via...

8.7CVSS5.9AI score0.00131EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/25 8:39 a.m.35 views

CVE-2026-53230 net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5querynicvportmaclist mlx5querynicvportmaclist sizes its firmware command buffer using the PF's logmaxcurrentuc/mclist capabilities. When querying a VF vport with a larger configured max via...

8.7CVSS0.00131EPSS
Exploits0References5
OSV
OSV
added 2026/06/25 8:39 a.m.3 views

CVE-2026-53230 net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5querynicvportmaclist mlx5querynicvportmaclist sizes its firmware command buffer using the PF's logmaxcurrentuc/mclist capabilities. When querying a VF vport with a larger configured max via...

8.7CVSS6AI score0.00131EPSS
Exploits0References8
CVE
CVE
added 2026/06/25 8:39 a.m.19 views

CVE-2026-53230

CVE-2026-53230 describes a slab-out-of-bounds vulnerability in the Linux kernel mlx5 driver: mlx5_query_nic_vport_mac_list sizes its firmware command buffer using the PF’s log_max_current_uc/mc_list, risking an overflow when querying a VF vport with a larger max. The resulting memory access is a ...

8.7CVSS6AI score0.00131EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/28 9:36 a.m.15 views

EUVD-2026-32771

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Fix error unwind in manaibcreateqprss Sashiko points out that manaibcfgvportsteering is leaked, the normal destroy path cleans it up...

5.8AI score0.00127EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.41 views

CVE-2026-46144 RDMA/mana: Fix error unwind in mana_ib_create_qp_rss()

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Fix error unwind in manaibcreateqprss Sashiko points out that manaibcfgvportsteering is leaked, the normal destroy path cleans it up...

0.00127EPSS
Exploits0References5
NVD
NVD
added 2026/05/27 2:17 p.m.11 views

CVE-2026-46084

In the Linux kernel, the following vulnerability has been resolved: RDMA/manaib: Disable RX steering on RSS QP destroy When an RSS QP is destroyed e.g. DPDK exit, manaibdestroyqprss destroys the RX WQ objects but does not disable vPort RX steering in firmware. This leaves stale steering...

7.8CVSS0.00129EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.25 views

PT-2026-43951

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description An issue exists in the RDMA mana ib component where the mana ib destroy qp rss function destroys RX WQ objects without disabling vPort RX steering in the firmware. This results in stale...

7.8CVSS5.8AI score0.00129EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fixed the vport QoS cleanup mechanism in case of errors. When enabling vport QoS fails, the scheduling node never gets freed, resulting in a leak. The missing operations were added, and the vport scheduling node pointer...

5.5CVSS5.8AI score0.00161EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: idpf: Detaching and closing netdevs while handling a reset Protect the reset path from callbacks by setting the netdevs to detached state and closing any netdevs in UP state until the reset handling is completed. During a reset,...

5.5CVSS6AI score0.00115EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/02/05 12:25 a.m.5 views

SUSE CVE-2026-23042

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

4.4CVSS5.2AI score0.00145EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/02/04 4:0 p.m.2 views

CVE-2026-23042

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

5.1AI score0.00145EPSS
Exploits0
CVE
CVE
added 2026/02/04 4:0 p.m.15 views

CVE-2026-23042

CVE-2026-23042 concerns the Linux kernel: the idpf driver may dereference a NULL vdev_info during unplugging of an aux device if RDMA is not enabled on the vport (VIRTCHNL2_VPORT_ENABLE_RDMA). The vulnerability arises when the driver does not allocate vdev_info for a vport lacking RDMA support, l...

5.2AI score0.00145EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo fo...

6.1AI score0.00145EPSS
Exploits0References3
CVE
CVE
added 2026/01/23 3:24 p.m.36 views

CVE-2026-22981

CVE-2026-22981 pertains to the Linux kernel driver for IDPF (Intel Ethernet 800/900-series? context in the doc refers to idpf) where, during reset handling, netdev interfaces are detached/closed to protect the reset path. The vulnerability description states that if reset handling succeeds, netde...

5.5CVSS5.3AI score0.00115EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/01/23 3:24 p.m.7 views

CVE-2026-22981 idpf: detach and close netdevs while handling a reset

In the Linux kernel, the following vulnerability has been resolved: idpf: detach and close netdevs while handling a reset Protect the reset path from callbacks by setting the netdevs to detached state and close any netdevs in UP state until the reset handling has completed. During a reset, the...

5.5CVSS5.3AI score0.00115EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-57801)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-57801 advisory. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Skip restore TC rules for vpo...

7.8CVSS5.3AI score0.00219EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/15 8:23 p.m.5 views

CVE-2026-21910

An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on EX4k Series and QFX5k Series platforms allows an unauthenticated network-adjacent attacker flapping an interface to cause traffic between VXLAN Network...

7.1CVSS5.6AI score0.00249EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/01/15 8:23 p.m.10 views

EUVD-2026-2694

An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on EX4k Series and QFX5k Series platforms allows an unauthenticated network-adjacent attacker flapping an interface to cause traffic between VXLAN Network...

7.1CVSS6.4AI score0.00249EPSS
Exploits0References3
Rows per page
Query Builder