Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002965)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002965 advisory. The XFRM dump policy implementation in net/xfrm/xfrmuser.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service...

7.8CVSS6.3AI score0.0215EPSS
Exploits3References17
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001886)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001886 advisory. The xfrmstatenetlink function in net/xfrm/xfrmuser.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dumponestate function calls, which...

6.2CVSS6.5AI score0.00514EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9717

Malware in sbrugna...

4.9CVSS5AI score0.00379EPSS
Exploits0References4
OSV
OSV
added 2023/07/25 4:15 p.m.17 views

AZL-33496 CVE-2023-3773 affecting package hyperv-daemons for versions less than 5.15.158.1-1

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

4.4CVSS6.4AI score0.00237EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/08/06 12:0 a.m.6 views

The vulnerability of the Linux operating system’s kernel lies in the improper handling of a certain interaction between XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets. This allows an attacker to cause a service failure.

The vulnerability of the Linux operating system’s kernel is related to the improper handling of a certain interaction between XFRM Netlink messages, IPPROTOAH packets, and IPPROTOIP packets. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.9CVSS7.7AI score0.00379EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2018/10/08 5:29 p.m.20 views

Code injection

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTOAH packets, and IPPROTOIP packets, which allows local users to cause a denial of service memory consumption and system hang by leveraging root access to execute crafted applications, as demonstrated on...

4.9CVSS4.8AI score0.00379EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2018/10/08 5:29 p.m.25 views

CVE-2018-17977

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTOAH packets, and IPPROTOIP packets, which allows local users to cause a denial of service memory consumption and system hang by leveraging root access to execute crafted applications, as demonstrated on...

4.9CVSS6.4AI score0.00379EPSS
Exploits0References3
NVD
NVD
added 2018/10/08 5:29 p.m.24 views

CVE-2018-17977

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTOAH packets, and IPPROTOIP packets, which allows local users to cause a denial of service memory consumption and system hang by leveraging root access to execute crafted applications, as demonstrated on...

4.9CVSS5.5AI score0.00379EPSS
Exploits0References2
CVE
CVE
added 2018/10/08 5:0 p.m.93 views

CVE-2018-17977

CVE-2018-17977 affects Linux kernel 4.14.67, where interaction between XFRM Netlink messages, IPPROTO_AH, and IPPROTO_IP can be exploited locally (with root) to trigger memory exhaustion and system hang; demonstrated on CentOS 7. The provided documents do not specify a fix or patch version.

4.9CVSS4.7AI score0.00379EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/10/08 5:0 p.m.31 views

CVE-2018-17977

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTOAH packets, and IPPROTOIP packets, which allows local users to cause a denial of service memory consumption and system hang by leveraging root access to execute crafted applications, as demonstrated on...

4.6AI score0.00379EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2018/10/08 5:0 p.m.29 views

CVE-2018-17977

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTOAH packets, and IPPROTOIP packets, which allows local users to cause a denial of service memory consumption and system hang by leveraging root access to execute crafted applications, as demonstrated on...

4.9CVSS4.9AI score0.00379EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2018/09/06 12:0 a.m.3 views

PT-2018-2963

Name of the Vulnerable Software and Affected Versions Linux kernel version 4.14.67 Description The issue is related to incorrect handling of certain interactions between XFRM Netlink messages, IPPROTO AH packets, and IPPROTO IP packets. This can be exploited to cause a denial of service, resultin...

4.9CVSS5.9AI score0.00379EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2018/07/04 12:0 a.m.52 views

CentOS Update for kernel CESA-2018:1965 centos7

Check the version of kernel SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882915";...

7CVSS7.5AI score0.60631EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2018/06/26 4:49 p.m.82 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7CVSS7.2AI score0.60631EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2018/05/30 12:0 a.m.295 views

Amazon Linux 2 : kernel (ALAS-2018-1023)

A weakness was found in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated. CVE-2018-1108 A flaw was found in the way the Linux kernel handled exceptions delivered after a stac...

8CVSS6.4AI score0.18404EPSS
Exploits14References8
Virtuozzo
Virtuozzo
added 2018/01/12 12:0 a.m.48 views

Important kernel security update: CVE-2017-8824 and other; Virtuozzo ReadyKernel patch 42.0 for Virtuozzo 7.0.0, 7.0.1, and 7.0.3

The cumulative Virtuozzo ReadyKernel patch was updated with security and stability fixes. The patch applies to Virtuozzo kernels 3.10.0-327.18.2.vz7.15.2 Virtuozzo 7.0.0, 3.10.0-327.42.0.vz7.18.7 Virtuozzo 7.0.1, and 3.10.0-327.42.0.vz7.20.18 Virtuozzo 7.0.3. Vulnerability id: CVE-2017-8824 A...

10CVSS7.7AI score0.52189EPSS
Exploits17References8
Tenable Nessus
Tenable Nessus
added 2017/12/12 12:0 a.m.51 views

Virtuozzo 7 : readykernel-patch (VZA-2017-111)

According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - dccpdisconnect set the socket state to DCCPCLOSED but did not properly free some of the resources associated with th...

7.8CVSS7.1AI score0.83524EPSS
Exploits97References6
Tenable Nessus
Tenable Nessus
added 2017/12/12 12:0 a.m.49 views

Virtuozzo 7 : readykernel-patch (VZA-2017-110)

According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - dccpdisconnect set the socket state to DCCPCLOSED but did not properly free some of the resources associated with th...

7.8CVSS7.1AI score0.83524EPSS
Exploits97References6
Tenable Nessus
Tenable Nessus
added 2017/08/07 12:0 a.m.34 views

Virtuozzo 7 : readykernel-patch (VZA-2017-068)

According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in the handling of xfrm Netlink messages. A privileged user inside a container could cause...

7.8CVSS7AI score0.00547EPSS
Exploits0References6
CNVD
CNVD
added 2017/07/25 12:0 a.m.1 views

Linux kernel net/xfrm/xfrm_policy.c file denial of service vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the net/xfrm/xfrmpolicy.c file in Linux kernel version 4.12.3 and earlier, which stems from the program failing to detect the dir value of...

7CVSS6.2AI score0.00406EPSS
Exploits0References1
Rows per page
Query Builder