702 matches found
PT-2025-5339 · Fastd +1 · Fastd +1
Name of the Vulnerable Software and Affected Versions: fastd versions prior to v23 Description: fastd is a VPN daemon that tunnels IP packets and Ethernet frames over UDP. When receiving a data packet from an unknown IP address/port combination, fastd initiates a reconnect by sending a handshake...
PT-2025-1019 · Hewlett Packard · Hpe Aruba Networking Cx 10000 Series Switches
Name of the Vulnerable Software and Affected Versions: HPE Aruba Networking CX 10000 Series Switches affected versions not specified Description: A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches exists, which could allow an unauthenticated adjacent attack...
UBUNTU-CVE-2024-56642
In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free of kernel socket in cleanupbearer. syzkaller reported a use-after-free of UDP kernel socket in cleanupbearer without repro. 01 When bearerdisable calls tipcudpdisable, cleanup of the UDP kernel socket is...
PT-2025-8761
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the Linux kernel's UDP socket handling. When a UDP socket changes its local address while receiving datagrams, there is a period during which a lookup operatio...
The vulnerability of the DHIP microprogramming-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera allows a intruder to escalate their privileges to root level and gain full access to the device.
The vulnerability of the DHIP microprogramming-based IP camera from Lorex 2K Indoor Wi-Fi Security Camera lies in the manipulation of the zero pointer. Exploiting this vulnerability allows an attacker to escalate their privileges to root and gain full access to the device through a connection usi...
The vulnerability of the UDP component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the udp component in the Linux operating system’s kernel is related to a memory corruption in the udpgroreceive function. Exploiting this vulnerability can allow an attacker to cause a service failure...
Bosch Rexroth IndraDrive 安全漏洞
Bosch Rexroth IndraDrive is a servo drive system from Bosch Rexroth that supports multiple protocols. A security vulnerability exists in Bosch Rexroth IndraDrive that originates from a flaw in the PROFINET stack implementation, which can be exploited by an attacker to send an arbitrary UDP messag...
OESA-2024-2371 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6fragment Blamed commit claimed rcureadlock was held by ip6fragment callers. It seems to not be always true, at least for UDP...
kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error
A flaw was found in Linux kernel tipc. tipcudpaddr2str does not return a nonzero value when UDP media address is invalid, which can result in a buffer overflow in tipcmediaaddrprintf...
Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-15040024125 fixes several issues. The following security issues were fixed: CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. Intermittent nfs mount failures may be due to SUNRPC over UDP bsc1231353 CVE-2024-40954: net: do not leav...
SUSE CVE-2022-48956
In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6fragment Blamed commit claimed rcureadlock was held by ip6fragment callers. It seems to not be always true, at least for UDP stack. syzbot reported: BUG: KASAN: use-after-free in ip6dstidev...
DEBIAN-CVE-2024-49978
In the Linux kernel, the following vulnerability has been resolved: gso: fix udp gso fraglist segmentation after pull from fraglist Detect gso fraglist skbs with corrupted geometry see below and pass these to skbsegment instead of skbsegmentlist, as the first can segment them correctly. Valid...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a fraglist segmentation issue in gso's handling of udp packets resulting in a segmentation error...
kernel: udp: do not accept non-tunnel GSO skbs landing in a tunnel
CVE-2024-35884 highlights a flaw in the Linux kernel's handling of UDP packets when Generic Receive Offload GRO forwarding is enabled. The issue occurs because non-tunnel UDP packets are sometimes mistakenly processed as if they belong to a tunnel. This can lead to data corruption or kernel...
kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error
A flaw was found in Linux kernel tipc. tipcudpaddr2str does not return a nonzero value when UDP media address is invalid, which can result in a buffer overflow in tipcmediaaddrprintf...
CVE-2024-45274
An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication...
kernel: udp: do not accept non-tunnel GSO skbs landing in a tunnel
CVE-2024-35884 highlights a flaw in the Linux kernel's handling of UDP packets when Generic Receive Offload GRO forwarding is enabled. The issue occurs because non-tunnel UDP packets are sometimes mistakenly processed as if they belong to a tunnel. This can lead to data corruption or kernel...
kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error
A flaw was found in Linux kernel tipc. tipcudpaddr2str does not return a nonzero value when UDP media address is invalid, which can result in a buffer overflow in tipcmediaaddrprintf...
Helmholz REX100 访问控制错误漏洞
The Helmholz REX100 is a wireless router from Helmholz. An access control error vulnerability exists in Helmholz REX100 versions prior to 2.3.1, which stems from a lack of authentication and allows an unauthenticated, remote attacker to execute operating system commands via UDP on the device...
HAProxy 安全漏洞
HAProxy is an open source TCP/HTTP load balancing server from the French company HAProxy. The server provides Layer 4 and Layer 7 proxies and can support tens of thousands of connection levels with high efficiency and stability. A security vulnerability exists in HAProxy that stems from the use o...