Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Bonding: Fix for xfrm realdev null pointer dereference We should not set realdev to NULL, because packets may still be in transit, and xfrm might call xdodevoffloadok in parallel. All callbacks assume that realdev is set. Example...

5.5CVSS6.2AI score0.00239EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-380858)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-380858 advisory. In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm realdev null pointer dereference We shouldn't set realdev to NULL because packe...

5.5CVSS6.1AI score0.00239EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/02/28 2:21 a.m.3 views

SUSE CVE-2025-21720

In the Linux kernel, the following vulnerability has been resolved: xfrm: delete intermediate secpath entry in packet offload mode Packets handled by hardware have added secpath as a way to inform XFRM core code that this path was already handled. That secpath is not needed at all after policy is...

5.5CVSS7.6AI score0.00171EPSS
Exploits0References16
OSV
OSV
added 2025/02/27 2:15 a.m.2 views

DEBIAN-CVE-2025-21720

In the Linux kernel, the following vulnerability has been resolved: xfrm: delete intermediate secpath entry in packet offload mode Packets handled by hardware have added secpath as a way to inform XFRM core code that this path was already handled. That secpath is not needed at all after policy is...

5.5CVSS5.8AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2025/02/27 2:15 a.m.2 views

UBUNTU-CVE-2025-21720

In the Linux kernel, the following vulnerability has been resolved: xfrm: delete intermediate secpath entry in packet offload mode Packets handled by hardware have added secpath as a way to inform XFRM core code that this path was already handled. That secpath is not needed at all after policy is...

5.5CVSS6.3AI score0.00171EPSS
Exploits0References19
CVE
CVE
added 2025/02/27 2:7 a.m.116 views

CVE-2025-21720

CVE-2025-21720 affects the Linux kernel XFRM/IPsec offload path. When IP forwarding is enabled, a secpath entry added for hardware offload isn’t removed after policy checks, causing re-entry into the TX path with xfrm_offload set and a NULL pointer dereference in mlx5 core driver during packet pr...

5.5CVSS5.2AI score0.00171EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/09/04 8:15 p.m.13 views

AZL-48719 CVE-2024-44989 affecting package kernel for versions less than 6.6.51.1-1

In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm realdev null pointer dereference We shouldn't set realdev to NULL because packets can be in transit and xfrm might call xdodevoffloadok in parallel. All callbacks assume realdev is set. Example trace: kernel: BU...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References1
Rows per page
Query Builder