9 matches found
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices NULL Pointer Dereference (CVE-2024-49944)
sctp: set skstate back to CLOSED if autobind fails in sctplistenstart. In sctplistenstart invoked by sctpinetlisten, it should set the skstate back to CLOSED if sctpautobind fails due to whatever reason. Otherwise, next time when calling sctpinetlisten, if sctpsksk-reuse is already set via...
Ubuntu: Security Advisory (USN-7496-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2024-49944
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sctp: set skstate back to CLOSED if autobind fails in sctplistenstart In sctplistenstart invoked by sctpinetlisten, it should set the skstate back to CLOSED if...
SUSE SLES15 Security Update : kernel (SUSE-SU-2025:0201-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0201-1 advisory. The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver bsc1203332. CVE-2022-48742: rtnetlink: make sure to refresh masterdev/mops in...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-49944)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49944 advisory. - In the Linux kernel, the following vulnerability has been resolved: sctp: set skstate back to CLOSED if...
CVE-2024-49944 affecting package kernel for versions less than 5.15.173.1-1
CVE-2024-49944 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-49944
In the Linux kernel, the following vulnerability has been resolved: sctp: set skstate back to CLOSED if autobind fails in sctplistenstart In sctplistenstart invoked by sctpinetlisten, it should set the skstate back to CLOSED if sctpautobind fails due to whatever reason. Otherwise, next time when...
CVE-2024-49944
CVE-2024-49944: In the Linux kernel SCTP path, sctp_listen_start() did not reset sk_state when sctp_autobind() failed, so after a failed autobind, a subsequent sctp_inet_listen() could observe sctp_sk(sk)->reuse with sk_state LISTENING and dereference bind_hash (NULL), causing a NULL dereferen...