Lucene search
K

87 matches found

RedHat Linux
RedHat Linux
added 3 days ago7 views

kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. A race condition exists in the SCTPSENDALL path where a cached list entry is not properly revalidated after the socket lock is temporarily released. This allows a local attacker or a remote attacker v...

7.8CVSS6.2AI score0.00104EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/07/01 12:20 a.m.6 views

kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. A race condition exists in the SCTPSENDALL path where a cached list entry is not properly revalidated after the socket lock is temporarily released. This allows a local attacker or a remote attacker v...

7.8CVSS6.2AI score0.00104EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.12 views

PT-2026-52341

In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk length in COOKIE ECHO processing When a listening SCTP server processes a COOKIE ECHO chunk, the cached peer INIT chunk embedded after the cookie is parsed and its parameters are later walked...

9.8CVSS6AI score0.00481EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.3 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: SCTP: The instruction “move SCTPCMDASSOCSHKEY right after SCTPCMDPEERINIT” has been fixed. A null-ptr-deref issue was reported in the SCTP transmission path when the SCTP-AUTH key initialization fails:...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.10 views

FlexRIC 安全漏洞

FlexRIC is an open-source RAN intelligent controller developed by Mosaic5G. Version FlexRIC v2.0.0 contains a security vulnerability. This vulnerability arises from the use of the assert function to enforce mapping relationships before sending the E2SETUPREQUEST message. This could allow remote...

7.5CVSS5.4AI score0.00347EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.14 views

Ella Core 安全漏洞

Ella Core is an open-source solution developed by Ella Networks for use in private networks as a 5G core network solution. Versions of Ella Core prior to 1.10.0 contained security vulnerabilities. These vulnerabilities stemmed from the lack of verification of whether the...

7.1CVSS5.8AI score0.00166EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/11 11:58 a.m.7 views

kernel: sctp: avoid NULL dereference when chunk data buffer is missing

In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...

5.8AI score0.00184EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/28 12:38 a.m.9 views

kernel: Linux kernel: SCTP use-after-free due to race condition in sendmsg

A flaw was found in the Linux kernel's SCTP implementation. This vulnerability allows a use-after-free read via a race condition during SCTP message sending...

7.8CVSS5.8AI score0.00187EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2026/01/26 11:37 a.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-38321: smb: Log an error when closeallcacheddirs fails bsc1246328. CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd bsc1249256. CVE-2025-39890:...

8.7CVSS7.1AI score0.00319EPSS
Exploits0References1434
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

MiracleLinux 9 : kernel-5.14.0-611.20.1.el9_7 (AXSA:2026-069:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-069:03 advisory. kernel: HID: multitouch: fix slab out-of-bounds access in mtreportfixup CVE-2025-39806 kernel: audit: fix out-of-bounds read in auditcomparednamepath...

7.1CVSS5.9AI score0.00184EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/09 12:20 p.m.2 views

kernel: sctp: linearize cloned gso packets in sctp_rcv

A flaw use of uninitialized memory uncontrolled and invisible by attacker in the Linux kernel SCTP transport protocol was found in the way user triggers malicious SCTP packets. A remote user could use this flaw to crash the system. The bug actual only for systems where SCTP protocol being enabled...

7.8CVSS5.8AI score0.00151EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/11/12 9:56 p.m.5 views

CVE-2025-40204 sctp: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

0.00175EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/10/29 12:45 a.m.1 views

kernel: sctp: linearize cloned gso packets in sctp_rcv

A flaw use of uninitialized memory uncontrolled and invisible by attacker in the Linux kernel SCTP transport protocol was found in the way user triggers malicious SCTP packets. A remote user could use this flaw to crash the system. The bug actual only for systems where SCTP protocol being enabled...

7.8CVSS5.8AI score0.00151EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-8449

Malware in sbrugna...

4.6CVSS6.1AI score0.00896EPSS
Exploits5References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-10131

Malware in sbrugna...

7.5CVSS7.4AI score0.00861EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2009-0074

Malware in sbrugna...

10CVSS6AI score0.1673EPSS
Exploits5References47
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-2819

Malware in sbrugna...

4.9CVSS6AI score0.00429EPSS
Exploits1References27
OSV
OSV
added 2025/10/04 4:15 p.m.9 views

UBUNTU-CVE-2023-53590

In the Linux kernel, the following vulnerability has been resolved: sctp: add a refcnt in sctpstreampriorities to avoid a nested loop With this refcnt added in sctpstreampriorities, we don't need to traverse all streams to check if the prio is used by other streams when freeing one stream's prio ...

5.5CVSS5.8AI score0.00111EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2025-13946

Malicious code in bioql PyPI...

8.7CVSS7.8AI score0.00352EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-23362

Malicious code in bioql PyPI...

5.5CVSS6.8AI score0.00238EPSS
Exploits0References8
Rows per page
Query Builder