CNNVD-202510-4393 Information
CNNVD ID
CNNVD-202510-4393
Related CVE
- CNNVD Published: 2025-10-31
Description (Chinese)
Red Hat Enterprise Linux 10是美国红帽(Red Hat)公司的一套面向企业用户的Linux操作系统。 Red Hat Enterprise Linux 10存在安全漏洞,该漏洞源于设备接收代码仍能处理环回模式下的短帧,可能导致e1000_receive_iov函数出现栈缓冲区溢出,造成拒绝服务。
Description (English)
Red Hat Enterprise Linux 10 is a Linux operating system for business users by Red Hat. There is a security loophole in Red Hat Enterprise Linux 10, which stems from the fact that the equipment reception code still handles the frame under the loop-back mode, which could result in a flood of the e1000 receive iov function, resulting in the denial of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
红帽
Published
2025-10-31
Last Modified
2026-02-24
References
https://access.redhat.com/security/cve/CVE-2025-12464 https://bugzilla.redhat.com/show_bug.cgi?id=2408845 https://vigilance.fr/vulnerability/QEMU-buffer-overflow-via-e1000-receive-iov-48640
Patch
https://access.redhat.com/security/cve/cve-2025-12464
Share on: