Lucene search
K

140 matches found

OSV
OSV
added 2026/04/25 5:49 a.m.6 views

OESA-2026-2076 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. syzbot reported the splat below where a socket had tcpsksk-fastopenrsk in the TCPESTABLISHED state. 0 syzbot...

9.8CVSS5.6AI score0.00488EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011081)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011081 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: Don't call reqskfastopenremove in tcpconnrequest. syzbot reported the splat below in...

5.6AI score0.00207EPSS
Exploits0References4
CVE
CVE
added 2026/04/14 12:8 a.m.19 views

CVE-2026-39418

CVE-2026-39418 MaxKB is affected in versions ≤ 2.7.1 where the sandbox’s network protection can be bypassed. An authenticated user with tool-editing permissions can reach internal services blocked by the sandbox by using socket.sendto() with the MSG_FASTOPEN flag. MaxKB’s sandbox relies on LD_PRE...

7.4CVSS5.7AI score0.00198EPSS
Exploits0References3Affected Software1
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.7 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. syzbot reported the splat below where a socket had tcpsksk-fastopenrsk in the TCPESTABLISHED state. 0 syzbot reused the server-side TCP Fast Open socket as a new client before the...

7.8CVSS6.6AI score0.00144EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: tcp: Don't call reqskfastopenremove in tcpconnrequest. syzbot reported the splat below in tcpconnrequest. 0 If a listener is closed while a TFO socket is being processed in tcpconnrequest, inetcskreqskqueueadd does not set reqsk-...

6.6AI score0.00207EPSS
Exploits0References3
OSV
OSV
added 2026/03/02 10:1 a.m.4 views

SUSE-SU-2026:20558-1 Security update for the Linux Kernel RT (Live Patch 1 for SUSE Linux Enterprise 16)

This update for the SUSE Linux Enterprise kernel 6.12.0-160000.6.1 fixes one security issue The following security issue was fixed: - CVE-2025-40186: tcp: Don't call reqskfastopenremove in tcpconnrequest bsc1253439...

5.8AI score0.00207EPSS
Exploits0References3
OSV
OSV
added 2026/02/15 5:33 p.m.4 views

SUSE-SU-2026:0543-1 Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.33 fixes various security issues The following security issues were fixed: - CVE-2025-38111: net/mdiobus: Fix potential out-of-bounds read/write access bsc1249455. - CVE-2025-38352: posix-cpu-timers: fix race between...

7.4CVSS7.9AI score0.01345EPSS
Exploits8References11
BDU FSTEC
BDU FSTEC
added 2026/02/06 12:0 a.m.6 views

The vulnerability of the function tcp_fastopen_active_disable_ofo_check() in the net/ipv4/tcp_fastopen.c module, as part of the IPv4 protocol implementation in Linux kernel, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the function tcpfastopenactivedisableofocheck in the net/ipv4/tcpfastopen.c module, which is part of the IPv4 protocol implementation in Linux kernel, relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise...

7CVSS5.9AI score0.00166EPSS
Exploits0References11Affected Software5
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.3 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: TCP: Use dstdevrcu in tcpfastopenactivedisableofocheck. Use RCU to avoid a pair of atomic operations and a potential UAF on dstdev-flags...

5.6AI score0.00166EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the presence of a null pointer dereference during fast open early fallback, which could lead to a null pointer...

6AI score0.00162EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/12/22 5:42 p.m.5 views

kernel: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect()

A flaw was found in the TCP subsystem in tcpdisconnect of the Linux kernel.The server-side TCP Fast Open socket was reused as a new client before the TFO socket completes, leading to an information leak...

7.8CVSS5.8AI score0.00144EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/22 5:4 p.m.2 views

kernel: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect()

A flaw was found in the TCP subsystem in tcpdisconnect of the Linux kernel.The server-side TCP Fast Open socket was reused as a new client before the TFO socket completes, leading to an information leak...

7.8CVSS5.8AI score0.00144EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 5:44 p.m.5 views

kernel: Linux kernel: Privilege escalation or Denial of Service via TCP Fast Open vulnerability

A flaw was found in the Linux kernel. A local attacker with low privileges could exploit a memory corruption vulnerability, specifically a use-after-free and double-free, within the TCP Fast Open TFO socket processing. This occurs when a listener is closed while a TFO socket is being processed in...

6.1AI score0.00207EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 5:44 p.m.3 views

kernel: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect()

A flaw was found in the TCP subsystem in tcpdisconnect of the Linux kernel.The server-side TCP Fast Open socket was reused as a new client before the TFO socket completes, leading to an information leak...

7.8CVSS5.8AI score0.00144EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 3:4 p.m.4 views

kernel: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect()

A flaw was found in the TCP subsystem in tcpdisconnect of the Linux kernel.The server-side TCP Fast Open socket was reused as a new client before the TFO socket completes, leading to an information leak...

7.8CVSS5.8AI score0.00144EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 7:48 a.m.9 views

kernel: Linux kernel: Privilege escalation or Denial of Service via TCP Fast Open vulnerability

A flaw was found in the Linux kernel. A local attacker with low privileges could exploit a memory corruption vulnerability, specifically a use-after-free and double-free, within the TCP Fast Open TFO socket processing. This occurs when a listener is closed while a TFO socket is being processed in...

6.1AI score0.00207EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 7:48 a.m.3 views

kernel: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect()

A flaw was found in the TCP subsystem in tcpdisconnect of the Linux kernel.The server-side TCP Fast Open socket was reused as a new client before the TFO socket completes, leading to an information leak...

7.8CVSS5.8AI score0.00144EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 3:51 a.m.4 views

kernel: Linux kernel: Privilege escalation or Denial of Service via TCP Fast Open vulnerability

A flaw was found in the Linux kernel. A local attacker with low privileges could exploit a memory corruption vulnerability, specifically a use-after-free and double-free, within the TCP Fast Open TFO socket processing. This occurs when a listener is closed while a TFO socket is being processed in...

6.1AI score0.00207EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 3:51 a.m.3 views

kernel: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect()

A flaw was found in the TCP subsystem in tcpdisconnect of the Linux kernel.The server-side TCP Fast Open socket was reused as a new client before the TFO socket completes, leading to an information leak...

7.8CVSS5.8AI score0.00144EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 3:45 a.m.3 views

kernel: Linux kernel: Privilege escalation or Denial of Service via TCP Fast Open vulnerability

A flaw was found in the Linux kernel. A local attacker with low privileges could exploit a memory corruption vulnerability, specifically a use-after-free and double-free, within the TCP Fast Open TFO socket processing. This occurs when a listener is closed while a TFO socket is being processed in...

6.1AI score0.00207EPSS
Exploits0References5
Rows per page
Query Builder