Xiumei Mu

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: A vulnerability in the Linux kernel has been resolved. The issue occurs when a secpath, which holds a reference on an xfrm state, is still attached to an skb and not deleted at the time a netns is deleted. This happens because the skb is defer-free'd by skb attempt defer free and its defer list is not flushed before the netns is deleted. The problem arises when running tests that involve creating a pair of netns, running a basic TCP test over ipcomp6, and then deleting the pair of netns. To fix this, the secpath is dropped at the same time as the dst in the TCP receive path. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the kernel isn't correctly routing tunneled data over the encrypted link; rather sending the data unencrypted. This would allow anyone in between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.