Lucene search
+L

262 matches found

Debian CVE
Debian CVE
added 2025/09/17 2:56 p.m.4 views

CVE-2023-53354

In the Linux kernel, the following vulnerability has been resolved: skbuff: skbsegment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 "skbuff: in skbsegment, call zerocopy functions once per nskb" added the call to zero copy functions in skbsegment. The change introduced ...

5.5CVSS5.5AI score0.00177EPSS
Exploits0
Cvelist
Cvelist
added 2025/09/17 2:56 p.m.5 views

CVE-2023-53354 skbuff: skb_segment, Call zero copy functions before using skbuff frags

In the Linux kernel, the following vulnerability has been resolved: skbuff: skbsegment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 "skbuff: in skbsegment, call zerocopy functions once per nskb" added the call to zero copy functions in skbsegment. The change introduced ...

0.00177EPSS
Exploits0References8
OSV
OSV
added 2025/09/17 2:56 p.m.4 views

CVE-2023-53354 skbuff: skb_segment, Call zero copy functions before using skbuff frags

In the Linux kernel, the following vulnerability has been resolved: skbuff: skbsegment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 "skbuff: in skbsegment, call zerocopy functions once per nskb" added the call to zero copy functions in skbsegment. The change introduced ...

5.5CVSS5.5AI score0.00177EPSS
Exploits0References11
OSV
OSV
added 2025/09/15 3:15 p.m.4 views

UBUNTU-CVE-2022-50323

In the Linux kernel, the following vulnerability has been resolved: net: do not sense pfmemalloc status in skbappendpagefrags skbappendpagefrags is used by afunix and udp sendpage implementation so far. In commit 326140063946 "tcp: TX zerocopy should not sense pfmemalloc status" we explained why ...

5.5CVSS5.7AI score0.00143EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.9 views

PT-2025-37681

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability exists in the Linux kernel related to the xsk socket kernel functionality. Specifically, the issue involves a potential NULL pointer dereference in the xsk transmit Tx pa...

5.5CVSS6.1AI score0.00143EPSS
Exploits0References22
OSV
OSV
added 2025/09/05 6:15 p.m.16 views

AZL-67001 CVE-2025-39682 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

7.1CVSS6.8AI score0.00178EPSS
Exploits1References1
OSV
OSV
added 2025/09/05 5:20 p.m.6 views

CVE-2025-39682 tls: fix handling of zero-length records on the rx_list

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

7.1CVSS6AI score0.00178EPSS
Exploits1References10
Cvelist
Cvelist
added 2025/09/05 5:20 p.m.24 views

CVE-2025-39682 tls: fix handling of zero-length records on the rx_list

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

0.00178EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/09/05 5:20 p.m.32 views

CVE-2025-39682 tls: fix handling of zero-length records on the rx_list

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

6.7AI score0.00178EPSS
Exploits1References5
CVE
CVE
added 2025/09/05 5:20 p.m.47 views

CVE-2025-39682

CVE-2025-39682: Linux kernel TLS processing fix for zero-length TLS records in the rx_list. The patch changes recvmsg() to process either contiguous DATA records (any number) or one non-DATA record. If a future record type differs after decryption (possible with TLS 1.3 when type is undecided unt...

7.1CVSS5.7AI score0.00178EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2025/08/22 1:1 p.m.8 views

CVE-2025-38616

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.1CVSS6AI score0.00178EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-50003

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ice: xsk: prohibit usage of non- balanced queue id Fix the following scenario: 1. ethtool -L...

5.5CVSS6.1AI score0.00159EPSS
Exploits0References3
OSV
OSV
added 2025/08/11 1:52 p.m.7 views

BIT-LIBPYTHON-2024-12254 Unbounded memory buffering in SelectorSocketTransport.writelines()

Starting in Python 3.12.0, the asyncio.SelectorSocketTransport.writelines method would not "pause" writing and signal to the Protocol to drain the buffer to the wire once the write buffer reached the "high-water mark". Because of this, Protocols would not periodically drain the write buffer...

8.7CVSS7.2AI score0.0188EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-11407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg...

7.5CVSS6AI score0.00576EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 11:15 a.m.2 views

DEBIAN-CVE-2022-50003

In the Linux kernel, the following vulnerability has been resolved: ice: xsk: prohibit usage of non-balanced queue id Fix the following scenario: 1. ethtool -L $IFACE rx 8 tx 96 2. xdpsock -q 10 -t -z Above refers to a case where user would like to attach XSK socket in txonly mode at a queue id...

5.5CVSS5.4AI score0.00159EPSS
Exploits0References1
OSV
OSV
added 2025/05/30 1:48 p.m.4 views

OESA-2025-1577 libbpf security update

A mirror of bpf-next linux tree bpf-next/tools/lib/bpf directory plus its supporting header files. The version of the package reflects the version of ABI. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: libbpf: Use OPTSSET macro in bpfxdpquery When the...

5.5CVSS6.7AI score0.00272EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/05/25 12:0 a.m.5 views

Secure IVSHMEM: End-To-End Shared-Memory Protocol with Hypervisor-CA Handshake and In-Kernel Access Control

In-host shared memory IVSHMEM enables high-throughput, zero-copy communication between virtual machines, but today's implementations lack any security control, allowing any application to eavesdrop or tamper with the IVSHMEM region. This paper presents Secure IVSHMEM, a protocol that provides...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.5 views

kernel: virtio/vsock: Improve MSG_ZEROCOPY error handling

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Improve MSGZEROCOPY error handling Add a missing kfreeskb to prevent memory leaks...

5.5CVSS6.8AI score0.00203EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/02/19 12:0 a.m.8 views

PT-2025-27751

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the bpf Berkeley Packet Filter functionality, specifically with ktls panic and sockmap. The issue arises when the BPF...

5.5CVSS6.4AI score0.00147EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/02/14 5:33 a.m.3 views

SUSE CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

5.8CVSS6.1AI score0.00576EPSS
Exploits0References9
Rows per page
Query Builder