DEBIAN-CVE-2021-47248

In the Linux kernel, the following vulnerability has been resolved: udp: fix race between close and udpabort Kaustubh reported and diagnosed a panic in udpliblookup. The root cause is udpabort racing with close. Both racing functions acquire the socket lock, but udpv6destroysock release it before...

SUSE CVE-2024-35884

In the Linux kernel, the following vulnerability has been resolved: udp: do not accept non-tunnel GSO skbs landing in a tunnel When rx-udp-gro-forwarding is enabled UDP packets might be GROed when being forwarded. If such packets might land in a tunnel this can cause various issues and...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a contention between close and udpabort...

PT-2024-31875 · Unknown · Lan Messenger

Name of the Vulnerable Software and Affected Versions: LAN Messenger version 3.4.0 Description: The issue is a remote denial of service vulnerability that allows an attacker to crash the LAN Messenger service. This is achieved by sending a long string directly and continuously over the UDP...

CYCZCAM A9 Camera 安全漏洞

CYCZCAM A9 Camera is a camera from CYCZCAM. A security vulnerability exists in the CYCZCAM A9 Camera that originates from allowing a remote attacker to obtain sensitive information by sending a crafted request to a UDP port...

Silex Technology DS-600 安全漏洞

The Silex Technology DS-600 is a hardware device from Silex Technology, Inc. designed to easily connect and share USB 3.0 and 2.0 devices over a network. A security vulnerability exists in the Silex Technology DS-600 version v.1.4.1. A remote attacker can exploit the vulnerability to cause a deni...

SUSE CVE-2024-2169

Implementations of UDP application protocol are vulnerable to network loops. An unauthenticated attacker can use maliciously-crafted packets against a vulnerable implementation that can lead to Denial of Service DOS and/or abuse of resources...

CVE-2024-30249 Cloudburst Network DoS in RakNet connection handling

Cloudburst Network provides network components used within Cloudburst projects. A vulnerability in versions prior to 1.0.0.CR1-20240330.101522-15 impacts publicly accessible software depending on the affected versions of Network and allows an attacker to use Network as an amplification vector for...

DEBIAN-CVE-2024-26663

In the Linux kernel, the following vulnerability has been resolved: tipc: Check the bearer type before calling tipcudpnlbeareradd syzbot reported the following general protection fault 1: general protection fault, probably for non-canonical address 0xdffffc0000000010: 0000 1 PREEMPT SMP KASAN...

dnsmasq: default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232

A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020...

dnsmasq: default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232

A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020...

PT-2024-21427 · Vseeface · Vseeface

Name of the Vulnerable Software and Affected Versions: VSeeFace versions 1.13.38.c2 and earlier Description: The issue allows attackers to cause a denial of service, resulting in an application hang, via a spoofed UDP packet containing at least 10 digits in JSON data. Recommendations: For version...

The vulnerability of applications that use the UDP protocol lies in the possibility of implementing spoofing attacks, allowing attackers to cause service failures.

The vulnerability of applications that use the UDP protocol is related to the possibility of implementing spoofing attacks. Exploiting this vulnerability allows a remote attacker to cause service interruptions by sending specially crafted packets...

User Datagram Protocol Security Vulnerability

User Datagram Protocol is the User Datagram Protocol UDP. User Datagram Protocol UDP suffers from a security vulnerability that stems from being susceptible to network loops, which can be exploited by an attacker to attack a device using maliciously crafted packets, resulting in a denial of servi...

PT-2024-2233 · Broadcom +2 · Broadcom +2

Name of the Vulnerable Software and Affected Versions: Webmin/Virtualmin versions affected versions not specified Broadcom affected versions not specified Microsoft affected versions not specified MikroTik affected versions not specified Description: The issue is related to implementations of UDP...

Cisco IOS XR Security Vulnerability

Cisco IOS XR is an operating system developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR, which stems from a security hole in the UDP forwarding code that could allow an unauthenticated, neighboring attacker to bypass the management plane protection policy a...

SUSE CVE-2021-47036

In the Linux kernel, the following vulnerability has been resolved: udp: skip L4 aggregation for UDP tunnel packets If NETIFFGROFRAGLIST or NETIFFGROUDPFWD are enabled, and there are UDP tunnels available in the system, udpgroreceive could end-up doing L4 aggregation either SKBGSOUDPL4 or...

DEBIAN-CVE-2021-47036

In the Linux kernel, the following vulnerability has been resolved: udp: skip L4 aggregation for UDP tunnel packets If NETIFFGROFRAGLIST or NETIFFGROUDPFWD are enabled, and there are UDP tunnels available in the system, udpgroreceive could end-up doing L4 aggregation either SKBGSOUDPL4 or...

UBUNTU-CVE-2021-47036

In the Linux kernel, the following vulnerability has been resolved: udp: skip L4 aggregation for UDP tunnel packets If NETIFFGROFRAGLIST or NETIFFGROUDPFWD are enabled, and there are UDP tunnels available in the system, udpgroreceive could end-up doing L4 aggregation either SKBGSOUDPL4 or...

CVE-2021-46952

In the Linux kernel, the following vulnerability has been resolved: NFS: fscontext: validate UDP retrans to prevent shift out-of-bounds Fix shift out-of-bounds in xprtcalcmajortimeo. This is caused by a garbage timeout retrans mount option being passed to nfs mount, in this case from syzkaller. I...