CVE-2026-22258

CVE-2026-22258 affects Suricata (IDS/IPS/NSM). Before versions 8.0.3 and 7.0.14, crafted DCERPC traffic can trigger unbounded buffering, causing memory exhaustion and process termination. While initially observed over UDP, TCP and SMB are also considered vulnerable; however, DCERPC/TCP defaults l...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005024)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005024 advisory. In the Linux kernel, the following vulnerability has been resolved: inetdiag: fix kernel-infoleak for UDP sockets KMSAN reported a kernel-infoleak 1, that can...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005175)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005175 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free of kernel socket in cleanupbearer. syzkaller reported a use-after-free o...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2019-10638)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-10638 advisory. - In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values the...

VulnCheck KEV: CVE-2024-12248

Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution...

MiracleLinux 9 : cups-filters-1.28.7-17.el9_4 (AXSA:2024-8862:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8862:03 advisory. cups-browsed: cups-browsed binds on UDP INADDRANY:631 trusting any packet from any source cups-filters: libcupsfilters: cfGetPrinterAttributes API...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001258)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001258 advisory. The ipcmsgrecvchecksum function in net/ipv4/ipsockglue.c in the Linux kernel before 4.10.1 has incorrect expectations about skb data layout, which allows local users...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001054)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001054 advisory. The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000703)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000703 advisory. The 1 udprecvmsg and 2 udpv6recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004415)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004415 advisory. A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic...

MiracleLinux 4 : wireshark-1.8.10-17.AXS4 (AXSA:2015-372:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-372:01 advisory. Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library,...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000581)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000581 advisory. The rdsincinfocopy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obta...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000839)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000839 advisory. The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to...

MiracleLinux 7 : libtirpc-0.2.4-0.8.0.1.el7.AXS7 (AXSA:2017-1681:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2017-1681:01 advisory. This package contains SunLib's implementation of transport-independent RPC TI-RPC documentation. This library forms a piece of the base of Open Network...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003981)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003981 advisory. A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000725)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000725 advisory. Race condition in the ip4datagramreleasecb function in net/ipv4/datagram.c in the Linux kernel before 3.15.2 allows local users to gain privileges or cause a denial ...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000653)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000653 advisory. udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000623)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000623 advisory. net/ipv6/ip6output.c in the Linux kernel through 3.11.4 does not properly determine the need for UDP Fragmentation Offload UFO processing of small packets after the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001943)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001943 advisory. Race condition in the ip4datagramreleasecb function in net/ipv4/datagram.c in the Linux kernel before 3.15.2 allows local users to gain privileges or cause a denial ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003192)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003192 advisory. The dccpdisconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service use-after-free...