UBUNTU-CVE-2025-29918

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability i...

CVE-2025-29918

CVE-2025-29918 affects Suricata (IDS/IPS/NSM). A PCRE rule that is negated can cause an infinite loop during packet processing, leading to stalled threads and degraded visibility/availability in inline mode. The issue is mitigated by upgrading to Suricata 7.0.9, as noted across multiple sources i...

PT-2025-18430

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns a potential out-of-bounds access in the Linux kernel when processing short packets. Specifically, in the ppp sync txmung function, there is a risk of accessing data...

CVE-2025-30656 Junos OS: MX Series, SRX Series: Processing of specific SIP INVITE messages by the SIP ALG will lead to an FPC crash

An Improper Handling of Additional Special Element vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on MX Series with MS-MPC, MS-MIC and SPC3, and SRX Series, allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. If the SIP ALG processes...

Prisma SD-WAN: Denial of Service (DoS) Vulnerability Through Burst of Crafted Packets

A denial-of-service DoS vulnerability in Palo Alto Networks Prisma® SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to disrupt the packet processing capabilities of the device by sending a burst of crafted packets to that device. Work...

CVE-2025-30216 CryptoLib Has Heap Overflow in Crypto_TM_ProcessSecurity due to Unchecked Secondary Header Length

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. In versions 1.3.3 and prior, a Heap Overflow vulnerability occurs in t...

RLSA-2025:0210 Important: dpdk security update

The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Security Fixes: dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library CVE-2024-11614 For more details about the security...

Linux Distros Unpatched Vulnerability : CVE-2015-6815

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The processtxdesc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allo...

Linux Distros Unpatched Vulnerability : CVE-2018-14633

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security flaw was found in the chapservercomputemd5 function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the failure to disassociate NAPI when the tun device is destroyed...

LSN-0109-1: Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: tls: fix use-after-free on failed backlog decryption When the decrypt request goes to the backlog and cryptoaeaddecrypt returns -EBUSY, tlsdodecryption will wait until all async decryptions have completed. If one of them fails,...

CVE-2025-23406

Out-of-bounds read vulnerability caused by improper checking of TCP MSS option values exists in Cente middleware TCP/IP Network Series, which may lead to processing a specially crafted packet to cause the affected product crashed...

CVE-2022-25734

Denial of service in modem due to missing null check while processing IP packets with padding...

CVE-2022-25733

Denial of service in modem due to null pointer dereference while processing DNS packets...

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP...

CVE-2024-38413

Memory corruption while processing frame packets...

OSV-2025-85 Segv on unknown address in ndpi_free_flow_data

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=393414230 Crash type: Segv on unknown address Crash state: ndpifreeflowdata fuzzprocesspacket.c...

PT-2025-5667 · Git +1 · Ndpi

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash, specifically a Segv on an unknown address. The crash involves the ndpi snprintf function, process ndpi collected info, a...

OSV-2025-33 UNKNOWN READ in pcpp::RawPacket::insertData

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=390004170 Crash type: UNKNOWN READ Crash state: pcpp::RawPacket::insertData pcpp::Packet::extendLayer pcpp::BgpUpdateMessageLayer::setNetworkLayerReachabilityInfo...

dpdk security update

An update is available for dpdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The dpdk packages provide the Data Plane Development Kit, which is a set of...