15 matches found
EUVD-2021-14591
Malware in sbrugna...
CVE-2025-38470 net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime
In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime Assuming the "rx-vlan-filter" feature is enabled on a net device, the 8021q module will automatically add or remove VLAN 0 when the net device is put...
CVE-2025-38470
Summary: CVE-2025-38470 affects the Linux kernel’s VLAN handling (net: vlan) where VLAN 0 is auto-managed when rx-vlan-filter is enabled. The root cause is a refcount imbalance during runtime toggling of VLAN filtering, which can cause a memory leak for VLAN 0 if the feature is disabled while a d...
K45012151: Layer 2 security bypass issue CVE-2021-27861, CVE-2021-27862, CVE-2021-27853, CVE-2021-27854
Security Advisory Description CVE-2021-27861 Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length and optionally VLAN0 headers CVE-2021-27862 Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using...
CVE-2021-27854
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using combinations of VLAN 0 headers, LLC/SNAP headers and Ethernet to Wifi frame translation...
CVE-2021-27853
Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers...
多款Cisco产品安全漏洞
Cisco IOS and others are products of Cisco Corporation.Cisco IOS is a set of operating systems developed for its network devices.Cisco IOS XE Software is an operating system.Cisco Small Business is a switch.Cisco IOS XE Software is an operating system.Cisco Small Business is a switch. Cisco IOS...
Security Advisory 0080
Security Advisory 0080 . CSAF PDF Date: September 28th 2023 Revision | Date | Changes ---|---|--- 1.5 | September 28th 2023 | Update to include 4.29 to EOS Releases that resolve the CVE's 1.4 | January 11th 2023 | Update the fixed release info of NetVisor OS Software 1.3 | October 24th 2022 |...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the way the Linux kernel handled VLAN 0 frames with the priority tag set. When using certain network drivers, an attacker on the local network could use this flaw to cause a denial of service...
USN-1253-1: Linux kernel vulnerabilities
Ryan Sweat discovered that the kernel incorrectly handled certain VLAN packets. On some systems, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. CVE-2011-1576 Vasiliy Kulikov and Dan Rosenberg discovered that ecryptfs did not correctly...
Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1239-1)
Ryan Sweat discovered that the kernel incorrectly handled certain VLAN packets. On some systems, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. CVE-2011-1576 Vasiliy Kulikov and Dan Rosenberg discovered that ecryptfs did not correctly...
USN-1245-1: Linux kernel (Marvell DOVE) vulnerabilities
Ryan Sweat discovered that the kernel incorrectly handled certain VLAN packets. On some systems, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. CVE-2011-1576 Vasiliy Kulikov and Dan Rosenberg discovered that ecryptfs did not correctly...
USN-1240-1: Linux kernel (Marvell DOVE) vulnerabilities
Ryan Sweat discovered that the kernel incorrectly handled certain VLAN packets. On some systems, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. CVE-2011-1576 Vasiliy Kulikov and Dan Rosenberg discovered that ecryptfs did not correctly...
Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1219-1)
Ryan Sweat discovered that the kernel incorrectly handled certain VLAN packets. On some systems, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. CVE-2011-1576 Timo Warns discovered that the EFI GUID partition table was not correctly...
USN-1220-1: Linux kernel (OMAP4) vulnerabilities
Ryan Sweat discovered that the kernel incorrectly handled certain VLAN packets. On some systems, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. CVE-2011-1576 Timo Warns discovered that the EFI GUID partition table was not correctly...