Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: can: kvaserpciefd: refined error-prone handling of echoskbmax The value of echoskbmax should define the supported upper limit for echoskb, which is allocated within the private space of the netdevice. The corresponding size value...

EUVD-2015-7662

Malware in sbrugna...

EUVD-2008-2052

Malware in sbrugna...

EUVD-2019-8497

Malware in sbrugna...

SUSE CVE-2025-38224

In the Linux kernel, the following vulnerability has been resolved: can: kvaserpciefd: refine error prone echoskbmax handling logic echoskbmax should define the supported upper limit of echoskb allocated inside the netdevice's priv. The corresponding size value provided by this driver to...

UBUNTU-CVE-2025-38224

In the Linux kernel, the following vulnerability has been resolved: can: kvaserpciefd: refine error prone echoskbmax handling logic echoskbmax should define the supported upper limit of echoskb allocated inside the netdevice's priv. The corresponding size value provided by this driver to...

CVE-2022-49372 tcp: tcp_rtx_synack() can be called from process context

In the Linux kernel, the following vulnerability has been resolved: tcp: tcprtxsynack can be called from process context Laurent reported the enclosed report 1 This bug triggers with following coditions: 0 Kernel built with CONFIGDEBUGPREEMPT=y 1 A new passive FastOpen TCP socket is created. This...

IBM OpenAFS Information Disclosure Vulnerability (CNVD-2015-07372)

IBM OpenAFS is a distributed file system that allows sharing of archives and resources between systems over LANs and WANs. An information disclosure vulnerability exists in IBM OpenAFS, which allows a remote attacker to perform a replay attack on the original recipient and view the ACK response...

CVE-2015-7763

rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and 1.7.x before 1.7.33 does not properly initialize padding at the end of an Rx acknowledgement ACK packet, which allows remote attackers to obtain sensitive information by 1 conducting a replay attack or 2 sniffing the network...

openafs -- information disclosure

The OpenAFS development team reports: When constructing an Rx acknowledgment ACK packet, Andrew-derived Rx implementations do not initialize three octets of data that are padding in the C language structure and were inadvertently included in the wire protocol CVE-2015-7762. Additionally, OpenAFS ...

dhcpd buffer overrun

The specific flaw exists within the parsing of the DHCP options in a DHCP ACK packet. The vulnerability is triggered when the LENGTH of an option, when added to the current read position, exceeds the actual length of the DHCP options buffer. An attacker can leverage this vulnerability to execute...

Check Point Software Firewall-1 3.0/1 4.0 Table Saturation Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/549/info A denial of service condition exists in some implementations of Firewall-1 by Checkpoint Software. This denial of service attack is possible due to the way Firewall-1 handles TCP connections. Typically to initiat...

CVE-2009-4026

The mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service panic via a crafted Delete Block ACK aka DELBA packet, related to an erroneous "code shuffling patch."...

AST-2008-010: Asterisk IAX 'POKE' resource exhaustion

Asterisk Project Security Advisory - AST-2008-010 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | Asterisk IAX 'POKE' resource exhaustion |...

Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA Document ID: 105444 Advisory ID: cisco-sa-20080604-asa http://www.cisco.com/warp/public/707/cisco-sa-20080604-asa.shtml Revision 1.0 For Public Release 2008 June 04 1600 UTC...

CVE-2008-2055

Cisco Adaptive Security Appliance ASA and Cisco PIX security appliance 7.1.x before 7.1270, 7.2.x before 7.24, and 8.0.x before 8.0310 allows remote attackers to cause a denial of service via a crafted TCP ACK packet to the device interface...

ipfilter denial of service problem

Below is an ipfilter security issue, and my previous mail to author Darren was bounced back, so I think maybe I should mail it to this mailing list. Overview -- Anytime ipfilter see a packet with ACK bit set without the previous SYN, it will marked it as TCPSESTABLISHED in it's state table, and f...

ZYXEL Prestige 642R Router - Malformed Packet Denial of Service

ZYXEL Prestige 642R Router - Malformed Packet Denial of Service source: https://www.securityfocus.com/bid/5034/info ZyXEL 642R routers have difficulties handling certain types of malformed packets. In particular, it is possible to deny services by sending a vulnerable router a SYN-ACK packet. To ...

Check Point Software Firewall-1 3.01 4.0 - Table Saturation Denial of Service

Check Point Software Firewall-1 3.01 4.0 - Table Saturation Denial of Service source: https://www.securityfocus.com/bid/549/info A denial of service condition exists in some implementations of Firewall-1 by Checkpoint Software. This denial of service attack is possible due to the way Firewall-1...