1285 matches found
CVE-2022-28655
isclosingsession allows users to create arbitrary tcp dbus connections...
DEBIAN-CVE-2024-36905
In the Linux kernel, the following vulnerability has been resolved: tcp: defer shutdownSENDSHUTDOWN for TCPSYNRECV sockets TCPSYNRECV state is really special, it is only used by cross-syn connections, mostly used by fuzzers. In the following crash 1, syzbot managed to trigger a divide by zero in...
DEBIAN-CVE-2023-52881
In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The ACK value is considered...
UBUNTU-CVE-2023-52881
In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The ACK value is considered...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that the TCP protocol stack may accept an ACK acknowledgement for bytes that were never sent when...
OpenWrt 安全漏洞
OpenWrt is a Linux operating system for embedded devices. A security vulnerability exists in OpenWrt that stems from a vulnerability that allows an attacker to hijack a TCP session, potentially leading to a denial of service attack...
D-Link DI-7003G 安全漏洞
The D-Link DI-7003G is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DI-7003G that originates from a vulnerability that allows an attacker to hijack a TCP session, potentially resulting in a denial of service attack...
Comfast CF-616AC 安全漏洞
Comfast CF-616AC is a WiFi router from China Four Seas Zonglian Network Technology Comfast. A security vulnerability exists in the Comfast CF-616AC that originates from allowing an attacker to hijack a TCP session, which could lead to a denial of service attack...
Linksys E5600 安全漏洞
Linksys E5600 is a powerful, compact and reliable WiFi 5 router from Linksys, Inc. A security vulnerability exists in the Linksys E5600 that stems from a vulnerability that allows an attacker to hijack a TCP session, potentially leading to a denial of service attack...
H3C Magic R100 安全漏洞
H3C Magic R100 is a router from China's Xinhua San H3C. A security vulnerability exists in the H3C Magic R100, H3C Magic R365, which stems from a vulnerability that allows an attacker to hijack a TCP session, which could lead to a denial of service attack...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from page fragment corruption due to a page fault in the tcp module...
SUSE CVE-2021-47243
In the Linux kernel, the following vulnerability has been resolved: schcake: Fix out of bounds when parsing TCP options and header The TCP option parser in cake qdisc cakegettcpopt and caketcphmaydrop could read one byte out of bounds. When the length is 1, the execution flow gets into the loop,...
kernel: netfilter: xtables sctp out-of-bounds read in match_flags()
A flaw was found in the Netfilter subsystem in the Linux kernel. The sctpmtcheck did not validate the flagcount field. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of-bounds read, leading to a crash or information disclosure...
DEBIAN-CVE-2021-47397
In the Linux kernel, the following vulnerability has been resolved: sctp: break out if skbheaderpointer returns NULL in sctprcvootb We should always check if skbheaderpointer's return is NULL before using it, otherwise it may cause null-ptr-deref, as syzbot reported: KASAN: null-ptr-deref in rang...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an evaluation that is true when the size target is smaller than the skb size. This can result in a missing t...
Quanxun Huiju Network Technology IK-Q3000 安全漏洞
Quanxun Huiju Network Technology IK-Q3000 is a router from Quanxun Huiju Network Technology China. A security vulnerability exists in Quanxun Huiju Network Technology IK-Q3000 version 3.7.10 x64 Build202401261655, which originates from a vulnerability that allows an attacker to cause a denial of...
The vulnerability of the can_map_frag() function in the net/ipv4/tcp.c module of the Linux operating system’s IPv4 protocol implementation allows a attacker to cause a service failure.
The vulnerability of the canmapfrag function in the net/ipv4/tcp.c module of the Linux operating system’s IPv4 protocol implementation is related to the lack of necessary data validation checks. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
DEBIAN-CVE-2023-51592
BlueZ Audio Profile AVRCP parsemediafolder Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability i...
kernel: NVMe: info leak due to out-of-bounds read in nvmet_ctrl_find_get
An out-of-bounds read vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a remote attacker to send a crafted TCP packet, triggering a heap-based buffer overflow that results in kmalloc data being printed and potentially leaked to the kernel ring buffer...
The vulnerability of the kernel component of the Linux operating system, which allows a hacker to cause a service failure
The vulnerability of the kernel component of the Linux operating system is related to the generation of NULL pointer pointers, tcpavailablecongestioncontrol and tcpallowedcongestioncontrol. Exploiting this vulnerability can allow a perpetrator to cause service failures...