Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001731)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001731 advisory. A race condition was found in the Linux kernel's IP framework for transforming packets XFRM subsystem when multiple calls to xfrmprobealgs occurred simultaneously...

EUVD-2024-28326

Malicious code in bioql PyPI...

CLSA-2024-1728935304 kernel: Fix of 12 CVEs

xfs: don't walk off the end of a directory data block CVE-2024-41013 - net/sched: clsu32: fix netns refcount changes in u32change CVE-2022-29581 - net/packet: fix slab-out-of-bounds access in packetrecvmsg CVE-2022-20368 - openvswitch: fix OOB access in reservesfasize CVE-2022-2639 - net: sched:...

CVE-2024-30405

An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000 Series devices using SPC2 line cards while ALGs are enabled allows an attacker sending specific crafted packets to cause a transit traffic Denial of Service DoS. Continued receipt and processing of these...

CVE-2024-30405

CVE-2024-30405 is an input but not a generic vulnerability; the connected docs confirm an issue in Juniper Networks Junos OS SRX 5000 Series with SPC2 line cards when ALGs are enabled. The root cause is an incorrect calculation of the buffer size in the ALG module, which lets an attacker send spe...

CVE-2024-30405 Junos OS: SRX 5000 Series with SPC2: Processing of specific crafted packets when ALG is enabled causes a transit traffic Denial of Service

An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000 Series devices using SPC2 line cards while ALGs are enabled allows an attacker sending specific crafted packets to cause a transit traffic Denial of Service DoS. Continued receipt and processing of these...

AsyncSSH Rogue Extension Negotiation

Summary An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the extension info message RFC 8308 via a man-in-the-middle attack. Details The rogue extension negotiation attack targets an AsyncSSH client connecting to any SSH server sending an extension info message. The attack...

kernel: race condition in xfrm_probe_algs can lead to OOB read/write

A race condition was found in the Linux kernel's IP framework for transforming packets XFRM subsystem when multiple calls to xfrmprobealgs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an...

AZL-10822 CVE-2022-3028 affecting package kernel for versions less than 5.15.67.1-4

A race condition was found in the Linux kernel's IP framework for transforming packets XFRM subsystem when multiple calls to xfrmprobealgs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an...

Juniper Junos SRX Flowd Crash Vulnerability (JSA10811)

According to its self-reported version number, the remote Junos device is affected by a vulnerability where one or more ALGs enabled may cause a flowd crash when traffic is processed by the Sun/MS-RPC ALGs. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid104033;...

Design/Logic Flaw

Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D23, 12.3X48 before 12.3X48-D25, and 15.1X49 before 15.1X49-D40 on a High-End SRX-Series chassis system with one or more Application Layer Gateways ALGs enabled allow remote attackers to cause a denial of service CPU consumption, fab lin...

CVE-2016-1276

Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D23, 12.3X48 before 12.3X48-D25, and 15.1X49 before 15.1X49-D40 on a High-End SRX-Series chassis system with one or more Application Layer Gateways ALGs enabled allow remote attackers to cause a denial of service CPU consumption, fab lin...

Juniper Networks Junos OS SRX Series ALGs DoS Vulnerability (JSA10751)

Junos OS on SRX Series is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Juniper Networks Junos OS Flowd DoS Vulnerability (JSA10650)

Juniper Networks Junos OS is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Juniper Networks Junos OS TCP Packet Handling Denial of Service Vulnerability

A vulnerability in the Flow Daemon can cause a crash when handling certain TCP packets. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...