198 matches found
AZL-54815 CVE-2024-56647 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering iprtbug arp link failure may trigger iprtbug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 iprtbug+0x14/0x20 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm...
CVE-2024-56647 net: Fix icmp host relookup triggering ip_rt_bug
In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering iprtbug arp link failure may trigger iprtbug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 iprtbug+0x14/0x20 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an ICMP host relookup in the net subsystem triggering an iprtbug issue...
UBUNTU-CVE-2024-53259
quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IPPMTUDISCDO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceed...
PT-2024-36956
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc6-00077-g2e1b3cc9d7f7 Description A vulnerability in the Linux kernel has been resolved, which could trigger an ip rt bug when an arp link failure occurs while xfrm is enabled. The issue arises from the...
icmp: change the order of rate limits
...
AZL-50716 CVE-2024-47678 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of rate limits ICMP messages are ratelimited : After the blamed commits, the two rate limiters are applied in this order: 1 host wide ratelimit icmpglobalallow 2 Per destination ratelimit inetpeer based In...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly ordered rate limiting of ICMP messages, which could lead to a side-channel attack...
PT-2024-32733
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58 Description The issue concerns the order of rate limits for ICMP messages in the Linux kernel. To avoid side-channel attacks, the per destination check needs to be applied first. The patch changes the orde...
In the Linux kernel before 5.1.7 a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols (e.g. UDP and ICMP). When such traffic is sent to multiple destination IP addresses it is possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). An attack may be conducted by hosting a crafted web page that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP addresses.
...
FreeBSD 安全漏洞
FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A security vulnerability exists in FreeBSD that stems from ICMPv6 packets that bypass firewall rules...
kernel: icmp: prevent possible NULL dereferences from icmp_build_probe()
A flaw was found in the Linux kernel's ICMP protocol. Under some conditions, a NULL pointer dereference can be triggered due to a missing check, causing a system crash and resulting in a denial of service...
CVE-2024-37661
TP-LINK TL-7DR5130 v1.0.23 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages...
CVE-2024-37663
Redmi router RB03 v1.0.57 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages...
PT-2024-27702 · Xiaomi · Redmi Router Rb03
Name of the Vulnerable Software and Affected Versions: Redmi router RB03 version 1.0.57 Description: The issue allows an attacker in the same WLAN as the victim to hijack traffic between the victim and any remote server by sending forged ICMP redirect messages. This can be exploited by an attacke...
SUSE CVE-2024-35857
In the Linux kernel, the following vulnerability has been resolved: icmp: prevent possible NULL dereferences from icmpbuildprobe First problem is a double call to indevgetrcu, because the second one could return NULL. if indevgetrcudev && indevgetrcudev-ifalist Second problem is a read from...
The vulnerability of the ICMP and ICMPv6 analysis functions of the protocol generator stack used in uC/OS and uC/TCP-IP allows a attacker to cause service interruptions.
The vulnerability of the ICMP and ICMPv6 analysis functions of the ISN stack generator used in uC/OS and uC/TCP-IP is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause service failures...
The vulnerability of the ICMP and ICMPv6 analysis functions of the protocol generator stack used in uC/OS and uC/TCP-IP allows a attacker to cause service interruptions.
The vulnerability of the ICMP and ICMPv6 analysis functions of the ISN stack generator used in uC/OS and uC/TCP-IP is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause service failures...
SE-elektronic GmbH E-DDC Resource Management Error Vulnerability
The SE-elektronic GmbH E-DDC is a freely configurable building controller from SE-elektronic GmbH, Germany. A resource management error vulnerability exists in SE-elektronic GmbH E-DDC 03.07.03 and earlier versions, which originates from a vulnerability that allows an attacker to interrupt the...
PT-2024-1187 · Oracle · Oracle Integrated Lights Out Manager
Name of the Vulnerable Software and Affected Versions: Oracle Integrated Lights Out Manager ILOM versions 3 through 5 Description: The issue is related to insufficient input validation in the System Management component of Oracle Integrated Lights Out Manager ILOM. This easily exploitable...