Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: TCP: cdg: allows tcpcdgrelease to be called multiple times. It seems that MPTCP can call tcpdisconnect on a already disconnected flow. This is generally fine, unless the current congestion control mechanism is CDG, as it might...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: dccp: Fixed a memory leak in dccpfeatchangerecv. If dccpfeatpushconfirm fails after accepting a new value for the SP feature without reconciliation the “entry == NULL” branch, the memory allocated for that value is never freed...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix tcpinittransfer so that icskcainitialized is not reset. This commit fixes a bug discovered by syzkaller. The bug could cause spurious double-initulations for congestion control modules. This could lead to memory leaks or...

PT-2026-39113

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw in the netfilter x tables component allows for 1-byte tail reads. This occurs when the last byte of options is a non-single-byte option kind, causing walkers that advance using th...

Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerability has been resolved: In the net subsystem, only the init netns should be allowed to set the default tcpcongestioncontrol to a restricted algorithm. The tcpsetdefaultcongestioncontrol function is netns-safe because it writes to...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: dccp: Fixed a race condition around the dp-dccpsmsscache variable. The dccpsendmsg function reads the dp-dccpsmsscache before locking the socket. The same issue occurs in dodccpgetsockopt. Added READONCE/WRITEONCE annotations,...

CVE-2026-31662

In the Linux kernel, the following vulnerability has been resolved: tipc: fix bcackers underflow on duplicate GRPACKMSG The GRPACKMSG handler in tipcgroupprotorcv currently decrements bcackers on every inbound group ACK, even when the same member has already acknowledged the current broadcast...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011298)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011298 advisory. In the Linux kernel, the following vulnerability has been resolved: dccp: Fix out of bounds access in DCCP error handler There was a previous attempt to fix an...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000763)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000763 advisory. The tcpillinoisinfo function in net/ipv4/tcpillinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcpcongestioncontrol illinois setting is enabled, allows...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001932)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001932 advisory. The tcpillinoisinfo function in net/ipv4/tcpillinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcpcongestioncontrol illinois setting is enabled, allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003192)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003192 advisory. The dccpdisconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service use-after-free...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002333)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002333 advisory. net/netfilter/nfconntrackprotodccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992934)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992934 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one Eric Dumazet...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991193)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991193 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: cdg: allow tcpcdgrelease to be called multiple times Apparently, mptcp is able to call...

SUSE CVE-2023-53782

In the Linux kernel, the following vulnerability has been resolved: dccp: Fix out of bounds access in DCCP error handler There was a previous attempt to fix an out-of-bounds access in the DCCP error handlers, but that fix assumed that the error handlers only want to access the first 8 bytes of th...

CVE-2023-53839

In the Linux kernel, the following vulnerability has been resolved: dccp: fix data-race around dp-dccpsmsscache dccpsendmsg reads dp-dccpsmsscache before locking the socket. Same thing in dodccpgetsockopt. Add READONCE/WRITEONCE annotations, and change dccpsendmsg to check again dccpsmsscache aft...

DEBIAN-CVE-2023-53782

In the Linux kernel, the following vulnerability has been resolved: dccp: Fix out of bounds access in DCCP error handler There was a previous attempt to fix an out-of-bounds access in the DCCP error handlers, but that fix assumed that the error handlers only want to access the first 8 bytes of th...

CVE-2023-53782

In the Linux kernel, the following vulnerability has been resolved: dccp: Fix out of bounds access in DCCP error handler There was a previous attempt to fix an out-of-bounds access in the DCCP error handlers, but that fix assumed that the error handlers only want to access the first 8 bytes of th...

CVE-2023-53782 dccp: Fix out of bounds access in DCCP error handler

In the Linux kernel, the following vulnerability has been resolved: dccp: Fix out of bounds access in DCCP error handler There was a previous attempt to fix an out-of-bounds access in the DCCP error handlers, but that fix assumed that the error handlers only want to access the first 8 bytes of th...

PT-2025-49730

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A data race condition exists around dp-dccps mss cache in the Data Communication Channel Protocol DCCP implementation. The dccp sendmsg function and do dccp getsockopt read dp-dccps mss...