19 matches found
kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()
A flaw was found in the Linux kernel's IPv6 tunnel implementation. A remote attacker could exploit this flaw by sending malicious ICMPv6 error messages to cause a stack-based buffer overflow in the kernel's IPv4-over-IPv6 tunnel error handling code. This could result in a kernel crash denial of...
ovn: ovn: Heap Over-Read in ICMP Error Response Generation
When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the ICMP error body using the IP header's self-declared total length iptotlen for IPv4, ip6plen for IPv6 without validating it against the actual packet buffer size...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000680)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000680 advisory. Race condition in the inetfragintern function in net/ipv4/inetfragment.c in the Linux kernel through 3.13.6 allows remote attackers to cause a denial of service...
CVE-2026-22541 DENIAL OF SERVICE VIA ICMP PACKETS
The massive sending of ICMP requests causes a denial of service on one of the boards from the EVCharger that allows control the EV interfaces. Since the board must be operating correctly for the charger to also function correctly...
Linux Distros Unpatched Vulnerability : CVE-2021-20322
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in the processing of received ICMP errors ICMP fragment needed and ICMP redirect in the Linux kernel functionality was found to allow the ability to...
Linux Distros Unpatched Vulnerability : CVE-2023-52577
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: dccp: fix dccpv4err/dccpv6err again dh-dccphx is the 9th byte offset 8 in struct dccphdr, no...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly ordered rate limiting of ICMP messages, which could lead to a side-channel attack...
PT-2024-27702 · Xiaomi · Redmi Router Rb03
Name of the Vulnerable Software and Affected Versions: Redmi router RB03 version 1.0.57 Description: The issue allows an attacker in the same WLAN as the victim to hijack traffic between the victim and any remote server by sending forged ICMP redirect messages. This can be exploited by an attacke...
SE-elektronic GmbH E-DDC Resource Management Error Vulnerability
The SE-elektronic GmbH E-DDC is a freely configurable building controller from SE-elektronic GmbH, Germany. A resource management error vulnerability exists in SE-elektronic GmbH E-DDC 03.07.03 and earlier versions, which originates from a vulnerability that allows an attacker to interrupt the...
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity because software that relies on UDP source port randomization are indirectly affected as well.
...
A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affected as well on the Linux Based Products (RUGGEDCOM RM1224: All versions between v5.0 and v6.4 SCALANCE M-800: All versions between v5.0 and v6.4 SCALANCE S615: All versions between v5.0 and v6.4 SCALANCE SC-600: All versions prior to v2.1.3 SCALANCE W1750D: v8.3.0.1 v8.6.0 and v8.7.0 SIMATIC Cloud Connect 7: All versions SIMATIC MV500 Family: All versions SIMATIC NET CP 1243-1 (incl. SIPLUS variants): Versions 3.1.39 and later SIMATIC NET CP 1243-7 LTE EU: Version
...
tcpdump buffer overflow vulnerability (CNVD-2019-40786)
tcpdump is a set of sniffing tools from Tcpdump team running under command line. The tool is mainly used for packet analysis and network traffic capture etc. A buffer error vulnerability exists in the 'icmpprint' function in the print-icmp.c file of the ICMP parser in versions prior to tcpdump...
The vulnerability of the iputils utility in the Astra Linux operating system, which allows a hacker to circumvent established access control rules
The vulnerability of the iputils utility in the Astra Linux operating system is related to the absence of a prohibition for using the -p option. Exploiting this vulnerability allows a remote attacker to circumvent established access control rules by sending data over the network within ICMP packe...
Input validation vulnerability in multiple Huawei products
Huawei S2300 and others are switching devices from Huawei in China.IP stack is one of the transport protocols. A security vulnerability exists in the IP stack of several Huawei products, which stems from the failure of the message processing module to correctly determine the IP option length. The...
CVE-2015-5058
Memory leak in the virtual server component in F5 Big-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.5.x before 11.5.1 HF10, 11.5.3 before HF1, and 11.6.0 before HF5, BIG-IQ Cloud, Device, and Security 4.4.0 through 4.5.0, and BIG-IQ ADC 4.5.0 allows remote attackers to...
DEBIAN-CVE-2014-7142
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service crash via a crafted 1 ICMP or 2 ICMP6 packet size...
USN-2422-1 squid3 vulnerabilities
Sebastian Krahmer discovered that the Squid pinger incorrectly handled certain malformed ICMP packets. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service...
PT-2002-1727 · Netfilter · Netfilter
Name of the Vulnerable Software and Affected Versions: Netfilter "iptables" versions 1.2.6a and earlier Description: The Network Address Translation NAT capability leaks translated IP addresses in ICMP error messages. Recommendations: For versions 1.2.6a and earlier, consider disabling the NAT...
PT-2002-1279 · Pgp · Pgpfire
Name of the Vulnerable Software and Affected Versions: PGPfire version 7.1 for Windows Description: The issue allows remote attackers to determine that the system is running PGPfire by modifying packets in ICMP error messages. This is due to PGPfire altering the system's TCP/IP stack...