27 matches found
netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP
...
SUSE CVE-2026-31424
In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict xtcheckmatch/xtchecktarget extensions for NFPROTOARP Weiming Shi says: xtmatch and xttarget structs registered with NFPROTOUNSPEC can be loaded by any protocol family through nftcompat. When such a...
UBUNTU-CVE-2026-31424
In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict xtcheckmatch/xtchecktarget extensions for NFPROTOARP Weiming Shi says: xtmatch and xttarget structs registered with NFPROTOUNSPEC can be loaded by any protocol family through nftcompat. When such a...
CVE-2026-31424
In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict xtcheckmatch/xtchecktarget extensions for NFPROTOARP Weiming Shi says: xtmatch and xttarget structs registered with NFPROTOUNSPEC can be loaded by any protocol family through nftcompat. When such a...
CVE-2026-31424 netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP
In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict xtcheckmatch/xtchecktarget extensions for NFPROTOARP Weiming Shi says: xtmatch and xttarget structs registered with NFPROTOUNSPEC can be loaded by any protocol family through nftcompat. When such a...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the improper restrictions imposed by the xtcheckmatch/xtchecktarget extensions on NFPROTOARP. Thi...
OSEC-2026-02 ARP unbounded memory usage
Background Mirage's implementation of the ARP protocol RFC826 caches ARP replies to construct an IPv4 address - MAC address cache. This cache is long-lived effectively global, and also contains pending ARP requests, which are replaced by the reply, or deleted after a timeout. ARP replies that do...
CVE-2026-22988 arp: do not assume dev_hard_header() does not change skb->head
In the Linux kernel, the following vulnerability has been resolved: arp: do not assume devhardheader does not change skb-head arpcreate is the only devhardheader caller making assumption about skb-head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after...
EUVD-2021-12558
Malware in sbrugna...
CVE-2021-25666
A vulnerability has been identified in SCALANCE W780 and W740 IEEE 802.11n family All versions V6.3. Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to operate normally for a short period of time...
CVE-1999-0667
The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service...
arp: use RCU protection in arp_xmit()
...
UBUNTU-CVE-2024-26733
In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arpreqget. syzkaller reported an overflown write in arpreqget. 0 When ioctlSIOCGARP is issued, arpreqget looks up an neighbour entry and copies neigh-ha to struct arpreq.arpha.sadata. The arpha here is...
Siemens SCALANCE W780 and W740 Allocation of Resources Without Limits or Throttling (CVE-2021-25666)
A vulnerability has been identified in SCALANCE W780 and W740 IEEE 802.11n family All versions V6.3. Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to operate normally for a short period of time. This...
Siemens SCALANCE W780 and W740 ARP Protocol Denial of Service Vulnerability
SCALANCE W700 products are wireless communication devices for connecting industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. A denial of service vulnerability exists in the Siemens SCALANCE W780 and W740 ARP protocol. An attacker can send constructe...
CVE-2021-25666
A vulnerability has been identified in SCALANCE W780 and W740 IEEE 802.11n family All versions V6.3. Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to operate normally for a short period of time...
Design/Logic Flaw
A vulnerability has been identified in SCALANCE W780 and W740 IEEE 802.11n family All versions V6.3. Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to operate normally for a short period of time...
CVE-2021-25666
CVE-2021-25666 affects Siemens SCALANCE W780 and W740 (IEEE 802.11n) family: all versions before v6.3. The issue arises from sending specially crafted ARP packets that can cause a partial denial-of-service, making the device unavailable for a short period. Mitigation is to update to v6.3 or later...
CVE-2021-25666
A vulnerability has been identified in SCALANCE W780 and W740 IEEE 802.11n family All versions V6.3. Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to operate normally for a short period of time...
Denial of Service Vulnerability in ARP Protocol in MITSUBISHI Electric FX5U-32MT/ES
The Mitsubishi Electric FX5U-32MT/ES is a programmable logic controller PLC product of the MELSEC FX series. A denial of service vulnerability exists in the ARP protocol of the MITSUBISHI Electric FX5U-32MT/ES, which can be exploited by attackers to cause the device to fail to function properly...