[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-41091":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":25,"downstream":26,"duplicates":141,"related":142,"reserved_at":9,"published_at":156,"modified_at":157,"state":158,"summary":159,"references_raw":168,"kevs":207,"epss":208,"epss_history":211,"metrics":464,"affected":470},"CVE-2024-41091","In the Linux kernel, the following vulnerability has been resolved:\n\ntun: add missing verification for short frame\n\nThe cited commit missed to check against the validity of the frame length\nin the tun_xdp_one() path, which could cause a corrupted skb to be sent\ndownstack. Even before the skb is transmitted, the\ntun_xdp_one-->eth_type_trans() may access the Ethernet header although it\ncan be less than ETH_HLEN. Once transmitted, this could either cause\nout-of-bound access beyond the actual length, or confuse the underlayer\nwith incorrect or inconsistent header length in the skb metadata.\n\nIn the alternative path, tun_get_user() already prohibits short frame which\nhas the length less than Ethernet header size from being transmitted for\nIFF_TAP.\n\nThis is to drop any frame shorter than the Ethernet header size just like\nhow tun_get_user() does.\n\nCVE: CVE-2024-41091",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[],[],[],[27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111,113,115,117,119,121,123,125,127,129,131,133,135,137,139],{"_key":28},"SUSE-SU-2024:2802-1",{"_key":30},"SUSE-SU-2024:2894-1",{"_key":32},"SUSE-SU-2024:2892-1",{"_key":34},"SUSE-SU-2024:2901-1",{"_key":36},"SUSE-SU-2024:2940-1",{"_key":38},"SUSE-SU-2024:2896-1",{"_key":40},"SUSE-SU-2024:2939-1",{"_key":42},"SUSE-SU-2024:2947-1",{"_key":44},"SUSE-SU-2024:2973-1",{"_key":46},"DLA-4008-1",{"_key":48},"DSA-5747-1",{"_key":50},"SUSE-SU-2025:20008-1",{"_key":52},"SUSE-SU-2025:20028-1",{"_key":54},"MGASA-2024-0277",{"_key":56},"MGASA-2024-0278",{"_key":58},"DEBIAN-CVE-2024-41091",{"_key":60},"RHSA-2024:5256",{"_key":62},"RHSA-2024:5257",{"_key":64},"RHSA-2024:5281",{"_key":66},"RHSA-2024:5582",{"_key":68},"RHSA-2024:5672",{"_key":70},"RHSA-2024:5673",{"_key":72},"RHSA-2024:5858",{"_key":74},"RHSA-2024:5928",{"_key":76},"RHSA-2024:6156",{"_key":78},"RHSA-2024:6160",{"_key":80},"RHSA-2024:6206",{"_key":82},"RHSA-2024:6242",{"_key":84},"RHSA-2024:6313",{"_key":86},"RHSA-2024:6560",{"_key":88},"RHSA-2024:6663",{"_key":90},"RHSA-2024:6992",{"_key":92},"RHSA-2024:7000",{"_key":94},"RHSA-2024:7001",{"_key":96},"RHSA-2024:7429",{"_key":98},"UBUNTU-CVE-2024-41091",{"_key":100},"USN-7088-1",{"_key":102},"USN-7088-2",{"_key":104},"USN-7088-3",{"_key":106},"USN-7088-4",{"_key":108},"USN-7088-5",{"_key":110},"USN-7089-1",{"_key":112},"USN-7089-2",{"_key":114},"USN-7089-3",{"_key":116},"USN-7089-4",{"_key":118},"USN-7089-5",{"_key":120},"USN-7089-6",{"_key":122},"USN-7089-7",{"_key":124},"USN-7090-1",{"_key":126},"USN-7095-1",{"_key":128},"USN-7100-1",{"_key":130},"USN-7100-2",{"_key":132},"USN-7119-1",{"_key":134},"USN-7123-1",{"_key":136},"USN-7144-1",{"_key":138},"USN-7156-1",{"_key":140},"USN-7194-1",[],[143,144,145,146,147,148,149,150,151,152,153,154,155],{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":50},{"_key":52},{"_key":54},{"_key":56},"2024-07-29T06:18:12.019Z","2026-05-11T20:26:01.585Z","Modified",{"cisa_kev":160,"cisa_ransomware":160,"cisa_vendor":9,"epss_severity":161,"epss_score":162,"severity":163,"severity_score":164,"severity_version":165,"severity_source":166,"severity_vector":167,"severity_status":158},false,"low",0.00015,"high",7.1,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",[169,175,179,183,187,191,195,199,203],{"url":170,"sources":171,"tags":173},"https://git.kernel.org/stable/c/32b0aaba5dbc85816898167d9b5d45a22eae82e9",[172,166],"cve.org",[174],"Patch",{"url":176,"sources":177,"tags":178},"https://git.kernel.org/stable/c/6100e0237204890269e3f934acfc50d35fd6f319",[172,166],[174],{"url":180,"sources":181,"tags":182},"https://git.kernel.org/stable/c/589382f50b4a5d90d16d8bc9dcbc0e927a3e39b2",[172,166],[174],{"url":184,"sources":185,"tags":186},"https://git.kernel.org/stable/c/ad6b3f622ccfb4bfedfa53b6ebd91c3d1d04f146",[172,166],[174],{"url":188,"sources":189,"tags":190},"https://git.kernel.org/stable/c/d5ad89b7d01ed4e66fd04734fc63d6e78536692a",[172,166],[174],{"url":192,"sources":193,"tags":194},"https://git.kernel.org/stable/c/a9d1c27e2ee3b0ea5d40c105d6e728fc114470bb",[172,166],[174],{"url":196,"sources":197,"tags":198},"https://git.kernel.org/stable/c/8418f55302fa1d2eeb73e16e345167e545c598a5",[172,166],[174],{"url":200,"sources":201,"tags":202},"https://git.kernel.org/stable/c/049584807f1d797fc3078b68035450a9769eb5c3",[172,166],[174],{"url":204,"sources":205,"tags":206},"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html",[172,166],[],[],{"date":209,"score":162,"percentile":210},"2026-06-03",0.03122,[212,216,219,222,225,228,231,234,236,239,242,245,248,251,254,258,261,264,267,270,273,276,279,282,284,287,290,292,295,298,300,303,306,309,312,314,317,320,322,324,327,330,333,336,339,342,345,347,350,352,354,357,360,363,366,368,370,372,375,378,381,383,386,389,392,394,396,399,402,404,407,410,413,416,419,422,425,427,430,433,436,439,442,444,447,449,452,455,458,461],{"date":213,"score":214,"percentile":215},"2025-11-04",0.00013,0.01532,{"date":217,"score":214,"percentile":218},"2025-11-05",0.01558,{"date":220,"score":214,"percentile":221},"2025-11-06",0.01574,{"date":223,"score":214,"percentile":224},"2025-11-07",0.01578,{"date":226,"score":214,"percentile":227},"2025-11-08",0.01583,{"date":229,"score":214,"percentile":230},"2025-11-09",0.01584,{"date":232,"score":214,"percentile":233},"2025-11-10",0.01566,{"date":235,"score":214,"percentile":224},"2025-11-11",{"date":237,"score":214,"percentile":238},"2025-11-12",0.01587,{"date":240,"score":214,"percentile":241},"2025-11-13",0.01602,{"date":243,"score":214,"percentile":244},"2025-11-14",0.01605,{"date":246,"score":214,"percentile":247},"2025-11-15",0.01626,{"date":249,"score":214,"percentile":250},"2025-11-16",0.01629,{"date":252,"score":214,"percentile":253},"2025-11-17",0.01616,{"date":255,"score":256,"percentile":257},"2025-11-18",0.00087,0.21153,{"date":259,"score":256,"percentile":260},"2025-11-19",0.21162,{"date":262,"score":256,"percentile":263},"2025-11-20",0.21135,{"date":265,"score":214,"percentile":266},"2025-11-21",0.01678,{"date":268,"score":214,"percentile":269},"2025-11-22",0.01675,{"date":271,"score":214,"percentile":272},"2025-11-23",0.01665,{"date":274,"score":214,"percentile":275},"2025-11-24",0.01661,{"date":277,"score":214,"percentile":278},"2025-11-25",0.01657,{"date":280,"score":214,"percentile":281},"2025-11-26",0.01613,{"date":283,"score":214,"percentile":281},"2025-11-27",{"date":285,"score":214,"percentile":286},"2025-11-28",0.0161,{"date":288,"score":214,"percentile":289},"2025-11-29",0.01652,{"date":291,"score":214,"percentile":278},"2025-11-30",{"date":293,"score":214,"percentile":294},"2025-12-01",0.01685,{"date":296,"score":214,"percentile":297},"2025-12-02",0.01681,{"date":299,"score":214,"percentile":294},"2025-12-03",{"date":301,"score":214,"percentile":302},"2025-12-04",0.01655,{"date":304,"score":214,"percentile":305},"2025-12-05",0.01662,{"date":307,"score":214,"percentile":308},"2025-12-06",0.0166,{"date":310,"score":214,"percentile":311},"2025-12-07",0.01651,{"date":313,"score":214,"percentile":311},"2025-12-08",{"date":315,"score":214,"percentile":316},"2025-12-09",0.01668,{"date":318,"score":214,"percentile":319},"2025-12-10",0.01684,{"date":321,"score":214,"percentile":266},"2025-12-11",{"date":323,"score":214,"percentile":319},"2025-12-12",{"date":325,"score":214,"percentile":326},"2025-12-13",0.01666,{"date":328,"score":214,"percentile":329},"2025-12-14",0.01664,{"date":331,"score":214,"percentile":332},"2025-12-15",0.01659,{"date":334,"score":214,"percentile":335},"2025-12-16",0.01667,{"date":337,"score":214,"percentile":338},"2025-12-17",0.01679,{"date":340,"score":214,"percentile":341},"2025-12-18",0.0167,{"date":343,"score":214,"percentile":344},"2025-12-19",0.01674,{"date":346,"score":214,"percentile":269},"2025-12-20",{"date":348,"score":214,"percentile":349},"2025-12-21",0.01682,{"date":351,"score":214,"percentile":294},"2025-12-22",{"date":353,"score":214,"percentile":294},"2025-12-23",{"date":355,"score":214,"percentile":356},"2025-12-24",0.01688,{"date":358,"score":214,"percentile":359},"2025-12-25",0.01694,{"date":361,"score":214,"percentile":362},"2025-12-26",0.01696,{"date":364,"score":214,"percentile":365},"2025-12-27",0.0169,{"date":367,"score":214,"percentile":365},"2025-12-28",{"date":369,"score":214,"percentile":319},"2025-12-29",{"date":371,"score":214,"percentile":266},"2025-12-30",{"date":373,"score":214,"percentile":374},"2025-12-31",0.01676,{"date":376,"score":214,"percentile":377},"2026-01-01",0.01698,{"date":379,"score":214,"percentile":380},"2026-01-02",0.01695,{"date":382,"score":214,"percentile":377},"2026-01-03",{"date":384,"score":214,"percentile":385},"2026-01-04",0.01658,{"date":387,"score":214,"percentile":388},"2026-01-05",0.01654,{"date":390,"score":214,"percentile":391},"2026-01-06",0.01649,{"date":393,"score":214,"percentile":305},"2026-01-07",{"date":395,"score":214,"percentile":269},"2026-01-08",{"date":397,"score":214,"percentile":398},"2026-01-09",0.01689,{"date":400,"score":214,"percentile":401},"2026-01-10",0.01703,{"date":403,"score":214,"percentile":359},"2026-01-11",{"date":405,"score":162,"percentile":406},"2026-01-12",0.02245,{"date":408,"score":162,"percentile":409},"2026-01-13",0.02233,{"date":411,"score":162,"percentile":412},"2026-01-14",0.02237,{"date":414,"score":162,"percentile":415},"2026-01-15",0.02231,{"date":417,"score":162,"percentile":418},"2026-01-16",0.0223,{"date":420,"score":162,"percentile":421},"2026-01-17",0.02234,{"date":423,"score":162,"percentile":424},"2026-01-18",0.02242,{"date":426,"score":162,"percentile":418},"2026-01-19",{"date":428,"score":162,"percentile":429},"2026-01-20",0.02218,{"date":431,"score":162,"percentile":432},"2026-01-21",0.02211,{"date":434,"score":162,"percentile":435},"2026-01-22",0.02212,{"date":437,"score":162,"percentile":438},"2026-01-23",0.02222,{"date":440,"score":162,"percentile":441},"2026-01-24",0.02239,{"date":443,"score":162,"percentile":415},"2026-01-25",{"date":445,"score":162,"percentile":446},"2026-01-26",0.02228,{"date":448,"score":162,"percentile":418},"2026-01-27",{"date":450,"score":162,"percentile":451},"2026-01-28",0.02232,{"date":453,"score":162,"percentile":454},"2026-01-29",0.02251,{"date":456,"score":162,"percentile":457},"2026-01-30",0.02257,{"date":459,"score":162,"percentile":460},"2026-01-31",0.02278,{"date":462,"score":162,"percentile":463},"2026-02-01",0.02322,[465],{"source":166,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":466,"cvss_v4_0":9},{"baseScore":164,"baseSeverity":467,"vectorString":167,"impactScore":468,"exploitabilityScore":469},"HIGH",8.7,4.6,[471,506],{"ecosystem":9,"name":472,"vendor":473,"product":473,"cpe_part":474,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":475},"Linux","linux","a",[476,483,486,489,492,495,498,501,504],{"version":477,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":481,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C 32b0aaba5dbc85816898167d9b5d45a22eae82e9",true,"043d222f93ab8c76b56a3b315cd8692e35affb6c","including","32b0aaba5dbc85816898167d9b5d45a22eae82e9","excluding",{"version":484,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":485,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C 6100e0237204890269e3f934acfc50d35fd6f319","6100e0237204890269e3f934acfc50d35fd6f319",{"version":487,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":488,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C 589382f50b4a5d90d16d8bc9dcbc0e927a3e39b2","589382f50b4a5d90d16d8bc9dcbc0e927a3e39b2",{"version":490,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":491,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C ad6b3f622ccfb4bfedfa53b6ebd91c3d1d04f146","ad6b3f622ccfb4bfedfa53b6ebd91c3d1d04f146",{"version":493,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":494,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C d5ad89b7d01ed4e66fd04734fc63d6e78536692a","d5ad89b7d01ed4e66fd04734fc63d6e78536692a",{"version":496,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":497,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C a9d1c27e2ee3b0ea5d40c105d6e728fc114470bb","a9d1c27e2ee3b0ea5d40c105d6e728fc114470bb",{"version":499,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":500,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C 8418f55302fa1d2eeb73e16e345167e545c598a5","8418f55302fa1d2eeb73e16e345167e545c598a5",{"version":502,"is_range":478,"range_type":172,"version_start":479,"version_start_type":480,"version_end":503,"version_end_type":482,"fixed_in":9},">= 043d222f93ab8c76b56a3b315cd8692e35affb6c, \u003C 049584807f1d797fc3078b68035450a9769eb5c3","049584807f1d797fc3078b68035450a9769eb5c3",{"version":505,"is_range":160,"range_type":172,"version_start":505,"version_start_type":480,"version_end":505,"version_end_type":480,"fixed_in":9},"4.20",{"ecosystem":9,"name":507,"vendor":473,"product":508,"cpe_part":509,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":510},"linux kernel","linux_kernel","o",[511,515,519,523,527,531,535],{"version":512,"is_range":478,"range_type":513,"version_start":505,"version_start_type":480,"version_end":514,"version_end_type":482,"fixed_in":9},"gte4.20_lt5.4.281","cpe","5.4.281",{"version":516,"is_range":478,"range_type":513,"version_start":517,"version_start_type":480,"version_end":518,"version_end_type":482,"fixed_in":9},"gte5.5_lt5.10.223","5.5","5.10.223",{"version":520,"is_range":478,"range_type":513,"version_start":521,"version_start_type":480,"version_end":522,"version_end_type":482,"fixed_in":9},"gte5.11_lt5.15.164","5.11","5.15.164",{"version":524,"is_range":478,"range_type":513,"version_start":525,"version_start_type":480,"version_end":526,"version_end_type":482,"fixed_in":9},"gte5.16_lt6.1.102","5.16","6.1.102",{"version":528,"is_range":478,"range_type":513,"version_start":529,"version_start_type":480,"version_end":530,"version_end_type":482,"fixed_in":9},"gte6.2_lt6.6.43","6.2","6.6.43",{"version":532,"is_range":478,"range_type":513,"version_start":533,"version_start_type":480,"version_end":534,"version_end_type":482,"fixed_in":9},"gte6.7_lt6.9.12","6.7","6.9.12",{"version":536,"is_range":478,"range_type":513,"version_start":537,"version_start_type":480,"version_end":538,"version_end_type":482,"fixed_in":9},"gte6.10_lt6.10.2","6.10","6.10.2"]