Lucene search
+L

591 matches found

redhat
redhat
added 2026/05/06 3:54 p.m.6 views

corosync: Corosync: Denial of Service and information disclosure via crafted UDP packet

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol UDP packet. This can lead to an out-of-bounds read, causing a denial of service...

8.2CVSS5.8AI score0.00867EPSS
Exploits1References5
nvd
nvd
added 2026/05/06 12:16 p.m.8 views

CVE-2026-43164

In the Linux kernel, the following vulnerability has been resolved: udplite: Fix null-ptr-deref in udpenqueuescheduleskb. syzbot reported null-ptr-deref of udpsksk-udpprodqueue. 0 Since the cited commit, udplibinitsock can fail, as can udpinitsock and udpv6initsock. Let's handle the error in...

7.5CVSS0.00451EPSS
Exploits0References3
cve
cve
added 2026/05/06 7:40 a.m.28 views

CVE-2026-43080

Summary of CVE-2026-43080 (Linux kernel) : The issue resides in the L2TP/PPP over L2TP code path where an oversized PPPoL2TP packet sent with UDP encapsulation can trigger an overflow of the 16‑bit UDP length field, causing the length to be trimmed and potentially sending malformed packets. The p...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
cnnvd
cnnvd
added 2026/05/06 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from unhandled UDP LibiLibinitSock failed operations, leading to a null pointer derefrence...

7.5CVSS5.8AI score0.00451EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/05/06 12:0 a.m.14 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from l2tp’s failure to check for UDP length field overflows during UDP encapsulation. This could lead to the...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
nessus
nessus
added 2026/05/06 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-43080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series 1. The actual issue is an overflow of 16-bit UDP length field, and it exists i...

5.5CVSS6AI score0.00123EPSS
Exploits0References3
nessus
nessus
added 2026/05/06 12:0 a.m.11 views

RHEL 9 : corosync (RHSA-2026:14212)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:14212 advisory. The corosync packages provide the Corosync Cluster Engine and C APIs for Red Hat Enterprise Linux cluster software. Security Fixes: corosyn...

8.2CVSS5.9AI score0.00994EPSS
Exploits2References7
nessus
nessus
added 2026/05/06 12:0 a.m.8 views

RockyLinux 10 : corosync (RLSA-2026:13644)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:13644 advisory. corosync: Corosync: Denial of Service and information disclosure via crafted UDP packet CVE-2026-35091 corosync: Corosync: Denial of Service via intege...

8.2CVSS5.9AI score0.00994EPSS
Exploits2References5
redhat
redhat
added 2026/05/05 10:35 a.m.5 views

corosync: Corosync: Denial of Service via integer overflow in join message validation

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.8AI score0.00994EPSS
Exploits1References5
redhat
redhat
added 2026/05/05 10:22 a.m.9 views

corosync: Corosync: Denial of Service via integer overflow in join message validation

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.8AI score0.00994EPSS
Exploits1References5
redhat
redhat
added 2026/05/05 9:31 a.m.9 views

corosync: Corosync: Denial of Service via integer overflow in join message validation

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.8AI score0.00994EPSS
Exploits1References5
osv
osv
added 2026/05/05 12:0 a.m.8 views

ALSA-2026:13644 Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Corosync: Denial of Service and information disclosure via crafted UDP packet CVE-2026-35091 corosync: Corosync: Denial of Service via integer overflow in join message...

8.2CVSS5.9AI score0.00994EPSS
Exploits2References6
fedora
fedora
added 2026/05/02 1:57 a.m.12 views

[SECURITY] Fedora 42 Update: openvpn-2.6.20-1.fc42

OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library for...

6.9CVSS5.8AI score0.00317EPSS
Exploits0
fedora
fedora
added 2026/04/25 1:58 a.m.17 views

[SECURITY] Fedora 44 Update: coturn-4.10.0-1.fc44

The Coturn TURN Server is a VoIP media traffic NAT traversal server and gatew ay. It can be used as a general-purpose network traffic TURN server/gateway, too. This implementation also includes some extra features. Supported RFCs: TURN specs: - RFC 5766 - base TURN specs - RFC 6062 - TCP relaying...

7.5CVSS5.4AI score0.01123EPSS
Exploits1
ptsecurity
ptsecurity
added 2026/04/24 12:0 a.m.9 views

PT-2026-34985

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix integer overflow in rxgk verify response In rxgk verify response, there's a potential integer overflow due to rounding up token len before checking it, thereby allowing the length check to be bypassed. Fix this by...

5.3AI score0.00469EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/04/22 7:39 p.m.7 views

CVE-2026-31503

A flaw was found in the Linux kernel's User Datagram Protocol UDP implementation. When a significant number of UDP sockets are bound to specific local addresses on the same port, the kernel's conflict detection mechanism can fail. This allows a local attacker to bind to a wildcard address on a po...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
osv
osv
added 2026/04/22 2:16 p.m.5 views

UBUNTU-CVE-2026-33602

A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum configured value, triggering an out-of-bounds write leading to a denial of service...

8.2CVSS5.8AI score0.00731EPSS
Exploits0References3
cve
cve
added 2026/04/22 1:54 p.m.31 views

CVE-2026-31503

CVE-2026-31503 concerns a Linux kernel UDP hash2-based wildcard-bind conflict check that can miss an in-use port when many sockets bind to the same port. The issue arises because UDP uses two hashes (hash and hash2) for collision detection and switches to hash2 only when hslot->count > 10, ...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/04/22 1:45 p.m.32 views

CVE-2026-33602 Off-by-one access when processing crafted UDP responses

A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum configured value, triggering an out-of-bounds write leading to a denial of service...

6.5CVSS0.00731EPSS
Exploits0References1
debiancve
debiancve
added 2026/04/22 1:45 p.m.7 views

CVE-2026-33602

A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum configured value, triggering an out-of-bounds write leading to a denial of service...

8.2CVSS5.3AI score0.00731EPSS
Exploits0
Rows per page
Query Builder