Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: vxlan: Check the return value of vxlanvnigroupinit. vxlaninit must check the success of vxlanvnigroupinit; otherwise, a crash may occur later. This issue was detected by syzbot. Error: General Protection Fault, likely due to a...

Azure Linux 3.0 Security Update: kernel (CVE-2025-21790)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21790 advisory. - In the Linux kernel, the following vulnerability has been resolved: vxlan: check vxlanvnigroupinit return...

EUVD-2025-5142

Malicious code in bioql PyPI...

Important: kernel-livepatch-6.12.30-34.92

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: vxlan: Annotate FDB data races CVE-2025-38037 Affected Packages: kernel-livepatch-6.12.30-34.92 Issue Correction: Please ensure you have live patching enabled. Run dnf update kernel-livepatch-6.12.30-34.92...

CVE-2025-6443

Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability. This vulnerability allows remote attackers to bypass access restrictions on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2025-6443

Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability. This vulnerability allows remote attackers to bypass access restrictions on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2025-6443 Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability

Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability. This vulnerability allows remote attackers to bypass access restrictions on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2025-6443 Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability

Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability. This vulnerability allows remote attackers to bypass access restrictions on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2025-6443

CVE-2025-6443 describes an access-control bypass in MikroTik RouterOS related to VXLAN traffic. The flaw is in how remote IP addresses are handled during VXLAN processing, where the remote IP is not validated against configured values before allowing ingress into the internal network. This can al...

Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability

This vulnerability allows remote attackers to bypass access restrictions on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of remote IP addresses when processing VXLAN traffic. The issue resul...

CVE-2025-21790 vxlan: check vxlan_vnigroup_init() return value

In the Linux kernel, the following vulnerability has been resolved: vxlan: check vxlanvnigroupinit return value vxlaninit must check vxlanvnigroupinit success otherwise a crash happens later, spotted by syzbot. Oops: general protection fault, probably for non-canonical address 0xdffffc000000002c:...

CVE-2025-21716 vxlan: Fix uninit-value in vxlan_vnifilter_dump()

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...

kernel: Linux kernel: Out-of-bounds write in VXLAN due to incorrect nexthop hash size leading to denial of service

A flaw was found in the Linux kernel's Virtual Extensible LAN VXLAN implementation. An attacker with elevated privileges CAPNETADMIN can exploit this vulnerability by configuring the system to accept and forward VXLAN packets. The issue arises from an incorrect nexthop hash size, where a 32-bit...

Design/Logic Flaw

A vulnerability in the VXLAN Operation, Administration, and Maintenance OAM feature of Cisco NX-OS Software, known as NGOAM, could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of specific...

Security Advisory 0047

Security Advisory 0047 PDF Date: April 14th, 2020 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | April 14th, 2020 | Initial Release The CVE-ID tracking this issue: CVE-2019-18948 CVSSv3 Base Score: 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Description This security advisory documents the...