Astra Linux – Vulnerability in Qemu

An integer overflow issue was identified in the vmxnet3 NIC emulator of QEMU for versions up to v5.2.0. This issue can occur if a guest provides invalid values for the rx/tx queue size or other NIC parameters. A privileged guest user may exploit this flaw to crash the QEMU process on the host,...

Astra Linux – Vulnerability in Qemu

In QEMU versions up to 5.0.0, an assertion failure can occur during network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could exploit this flaw to terminate the QEMU process on the host, resulting in a denial-of-service condition in...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: vmxnet3: Fixed the missing reserved tailroom. Use rbi-len instead of rcd-len for non-data-carrying packets. Issues found: XDPWARN: xdpupdateframefrombuffline:278: Driver BUG: missing reserved tailroom WARNING: CPU: 0 PID: 0 at...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: The unregister xdp rxq info operation is not performed in the reset path. In the vmxnet3resetwork code path, the unregister xdp rxq info operation is not executed because the vmxnet3rqdestroy function is not invoked in...

Astra Linux - уязвимость в linux-5.10, linux

A use-after-free flaw was discovered in vmxnet3rqallocrxbuf in drivers/net/vmxnet3/vmxnet3drv.c within VMware’s vmxnet3 Ethernet NIC driver in the Linux kernel. This issue could allow a local attacker to cause the system to crash due to a double-free operation while cleaning up vmxnet3rqcleanupal...

Astra Linux - уязвимость в linux-5.10, linux

A NULL pointer dereference flaw was discovered in vmxnet3rqcleanup in drivers/net/vmxnet3/vmxnet3drv.c within the networking sub-component of vmxnet3 in the Linux Kernel. This issue may allow a local attacker with normal user privileges to cause a denial of service due to a missing sanity check...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Packet corruption occurred in vmxnet3xdpxmitframe. Andrew and Nikolay reported connectivity issues with Cilium’s service load-balancing in the case of vmxnet3. If a BPF program for native XDP adds an encapsulation header...

(Pwn2Own) VMware ESXi VMXNET3 Integer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of VMware ESXi. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the implementatio...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-27026)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27026 advisory. - In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix missing reserved...

MiracleLinux 9 : kernel-5.14.0-570.25.1.el9_6 (AXSA:2025-10697:52)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10697:52 advisory. kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup...

AlmaLinux 10 : kernel (ALSA-2025:10371)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10371 advisory. kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes...

EUVD-2015-8446

Malware in sbrugna...

EUVD-2016-7721

Malware in sbrugna...

RockyLinux 10 : kernel (RLSA-2025:10371)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:10371 advisory. kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes...

RLSA-2025:10379 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup CVE-2025-21887 kernel: net: atm: fix use after free...

EUVD-2023-54314

Malicious code in bioql PyPI...

EUVD-2025-11190

Malicious code in bioql PyPI...

EUVD-2021-7647

Malicious code in bioql PyPI...

EUVD-2025-14197

Malicious code in bioql PyPI...

EUVD-2025-13363

Malicious code in bioql PyPI...