Astra Linux - уязвимость в qemu

An integer overflow issue was identified in the vmxnet3 NIC emulator of QEMU for versions up to v5.2.0. This issue can occur if a guest provides invalid values for the rx/tx queue size or other NIC parameters. A privileged guest user may exploit this flaw to crash the QEMU process on the host,...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fixed the missing reserved tailroom issue. Use rbi-len instead of rcd-len for non-data-carrying packets. The following issue was identified: XDPWARN: xdpupdateframefrombuffline:278: Driver BUG: missing reserved tailroom...

Astra Linux - уязвимость в qemu

In QEMU versions up to 5.0.0, an assertion failure can occur during network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could exploit this flaw to terminate the QEMU process on the host, resulting in a denial-of-service condition in...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: The unregister xdp rxq info operation is not performed in the reset path. In the vmxnet3resetwork code path, the unregister xdp rxq info operation is not executed because the vmxnet3rqdestroy function is not invoked in...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: vmxnet3: Fixed malformed packet sizes in vmxnet3processxdp. The XDP handling of the vmxnet3 driver is buggy for packet sizes using ring0 i.e., packet sizes between 128 and 3k bytes. We observed connectivity issues related to M...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

A use-after-free flaw was discovered in vmxnet3rqallocrxbuf in drivers/net/vmxnet3/vmxnet3drv.c within VMware’s vmxnet3 Ethernet NIC driver in the Linux kernel. This issue could allow a local attacker to cause the system to crash due to a double-free operation while cleaning up vmxnet3rqcleanupal...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Packet corruption occurred in vmxnet3xdpxmitframe. Andrew and Nikolay reported connectivity issues with Cilium’s service load-balancing in the case of vmxnet3. If a BPF program for native XDP adds an encapsulation header...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

A NULL pointer dereference flaw was discovered in vmxnet3rqcleanup in drivers/net/vmxnet3/vmxnet3drv.c within the networking sub-component of vmxnet3 in the Linux Kernel. This issue may allow a local attacker with normal user privileges to cause a denial of service due to a missing sanity check...

(Pwn2Own) VMware ESXi VMXNET3 Integer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of VMware ESXi. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the implementatio...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-27026)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27026 advisory. - In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix missing reserved...

MiracleLinux 9 : kernel-5.14.0-570.25.1.el9_6 (AXSA:2025-10697:52)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10697:52 advisory. kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup...

AlmaLinux 10 : kernel (ALSA-2025:10371)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10371 advisory. kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes...

EUVD-2016-7721

Malware in sbrugna...

EUVD-2015-8446

Malware in sbrugna...

RockyLinux 10 : kernel (RLSA-2025:10371)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:10371 advisory. kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes...

RLSA-2025:10379 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ipv6: mcast: extend RCU protection in igmp6send CVE-2025-21759 kernel: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup CVE-2025-21887 kernel: net: atm: fix use after free...

EUVD-2021-7647

Malicious code in bioql PyPI...

EUVD-2025-11190

Malicious code in bioql PyPI...

EUVD-2023-54314

Malicious code in bioql PyPI...

EUVD-2025-21544

Malicious code in bioql PyPI...