17 matches found
xfrm: clear trailing padding in build_polexpire()
...
EUVD-2020-29916
Malware in sbrugna...
AZL-67334 CVE-2025-39797 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...
CVE-2020-9087
Taurus-AL00A version 10.0.0.1C00E1R1P1 has an out-of-bounds read vulnerability in XFRM module. An authenticated, local attacker may perform a specific operation to exploit this vulnerability. Due to insufficient validation of the parameters, which may be exploited to cause information leak...
CVE-2022-49345
The CVE-2022-49345 issue affects the Linux kernel’s net: xfrm subsystem, where __init-annotated xfrm4_protocol_init() is exported via EXPORT_SYMBOL, causing use-after-free risk when __init and EXPORT_SYMBOL co-exist. The root cause is the .init text is freed after init, so modules could access fr...
kernel: xfrm: fix one more kernel-infoleak in algo dumping
A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...
kernel: xfrm: fix one more kernel-infoleak in algo dumping
A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...
kernel: xfrm: fix one more kernel-infoleak in algo dumping
A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...
CVE-2024-50142 xfrm: validate new SA's prefixlen using SA family when sel.family is unset
In the Linux kernel, the following vulnerability has been resolved: xfrm: validate new SA's prefixlen using SA family when sel.family is unset This expands the validation introduced in commit 07bf7908950a "xfrm: Validate address prefix lengths in the xfrm selector." syzbot created an SA with...
PT-2022-35107 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue concerns the reinjection of transport-mode packets through a workqueue in the xfrm module. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
HUAWEI Taurus-AL00A Information Disclosure Vulnerability
The Huawei Taurus-AL00A is a smartphone from the Chinese company Huawei Huawei. A security vulnerability exists in the HUAWEI Taurus-AL00A XFRM module. The vulnerability stems from a failure to adequately validate parameters, which can be exploited by an authenticated attacker by performing certa...
CVE-2020-9087
Taurus-AL00A version 10.0.0.1C00E1R1P1 has an out-of-bounds read vulnerability in XFRM module. An authenticated, local attacker may perform a specific operation to exploit this vulnerability. Due to insufficient validation of the parameters, which may be exploited to cause information leak...
CVE-2020-9087
Taurus-AL00A version 10.0.0.1C00E1R1P1 has an out-of-bounds read vulnerability in XFRM module. An authenticated, local attacker may perform a specific operation to exploit this vulnerability. Due to insufficient validation of the parameters, which may be exploited to cause information leak...
Out-of-bounds
Taurus-AL00A version 10.0.0.1C00E1R1P1 has an out-of-bounds read vulnerability in XFRM module. An authenticated, local attacker may perform a specific operation to exploit this vulnerability. Due to insufficient validation of the parameters, which may be exploited to cause information leak...
CVE-2020-9087
CVE-2020-9087 affects Huawei Taurus-AL00A smartphones (version 10.0.0.1, build C00E1R1P1). The vulnerability is an out-of-bounds read in the XFRM module caused by insufficient parameter validation, allowing an authenticated, local attacker to trigger an information leak. Documents consistently de...
CVE-2020-9087
Taurus-AL00A version 10.0.0.1C00E1R1P1 has an out-of-bounds read vulnerability in XFRM module. An authenticated, local attacker may perform a specific operation to exploit this vulnerability. Due to insufficient validation of the parameters, which may be exploited to cause information leak...
Security Advisory - Out-of-Bounds Read Vulnerability in Some Huawei Smart Phone
There is an out-of-bounds read vulnerability in XFRM module of some Huawei smart phone. An authenticated, local attacker may perform a specific operation to exploit this vulnerability. Due to insufficient validation of the parameters, which may be exploited to cause information leak. Vulnerabilit...