33 matches found
CVE-2026-31680
A flaw was found in the Linux kernel. A local user can exploit a race condition in the IPv6 flow label handling, specifically during the teardown of exclusive flow label options. This can lead to a use-after-free vulnerability when a concurrent reader accesses freed option state, triggering a...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the premature release of exclusive options in the ip6flowlabel when the reference count reaches...
EUVD-2007-1586
Malware in sbrugna...
EUVD-2005-3801
Malware in sbrugna...
EUVD-2021-32255
Malicious code in bioql PyPI...
SUSE CVE-2005-3806
The IPv6 flow label handling code ip6flowlabel.c in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service crash by triggering a free of non-allocated memory...
SUSE CVE-2019-18282
The flowdissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashrnd value as a secret, and because jhash instead of siphash is used. The hashrn...
CVE-2021-45489
In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...
CVE-2021-45489
In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...
Code injection
In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...
CVE-2021-45489
CVE-2021-45489 refers to NetBSD up to 9.2 where the IPv6 Flow Label generation uses a weak cryptographic PRNG. Affected: NetBSD 9.2 and earlier IP stack behavior related to Flow Label generation. Consequence: potential information leakage or traffic-related exposure described by multiple sources;...
CVE-2021-45489
In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...
kernel: The flow_dissector feature allows device tracking
A device tracking vulnerability was found in the flowdissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and jhash instead of siphash is used. The hashmd value remains the same starting from boot ti...
kernel: The flow_dissector feature allows device tracking
A device tracking vulnerability was found in the flowdissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and jhash instead of siphash is used. The hashmd value remains the same starting from boot ti...
IPv6 toolkit
A security assessment and troubleshooting tool for the IPv6 protocols The SI6 Networks’ IPv6 toolkit is a set of IPv6 security/trouble-shoting tools, that can send arbitrary IPv6-based packets. IPv6 toolkit: List of Tools addr6: An IPv6 address analysis and manipulation tool. flow6: A tool to...
[IPv6 Toolkit v1.5.2] A security assessment and troubleshooting tool for the IPv6 protocols
A security assessment and troubleshooting tool for the IPv6 protocols. Changelog v1.5.2 Add support for GNU Debian/kfreebsd. The toolkit would not build on GNU Debian/kfreebsd before this release. Add support for TCP/IPv6 probes. tcp6 can now send TCP/IPv6 packets “–probe-mode” option, and read t...
[IPv6 Toolkit v1.3] Security Assessment and Troubleshooting Tool for the IPv6 Protocols
A security assessment and troubleshooting tool for the IPv6 protocols. The SI6 Networks’ IPv6 toolkit is a set of IPv6 security/trouble-shooting tools, that can send arbitrary IPv6-based packets. Supported platforms The following platforms are supported: FreeBSD, NetBSD, OpenBSD, Linux, and Mac O...
Mandriva Update for kernel MDKSA-2007:078 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDKSA-2007:078 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
IPv6 oops triggerable by any user
net/ipv6/tcpipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6flsocklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service OOPS or double free by opening a listening IPv6 socket, attaching a flow label, and connecting to...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix a number of security issues are now available for Red Hat Enterprise Linux 2.1 64-bit architectures. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of th...