kernel: ipv6: use RCU in ip6_xmit()

A use-after-free flaw was found in ip6autoflowlabel in the Linux kernel's net/ipv6/ip6output.c code. In this flaw an attacker can cause a denial of service DoS attack...

kernel: ipv6: use RCU in ip6_xmit()

A use-after-free flaw was found in ip6autoflowlabel in the Linux kernel's net/ipv6/ip6output.c code. In this flaw an attacker can cause a denial of service DoS attack...

CVE-2026-31680

A flaw was found in the Linux kernel. A local user can exploit a race condition in the IPv6 flow label handling, specifically during the teardown of exclusive flow label options. This can lead to a use-after-free vulnerability when a concurrent reader accesses freed option state, triggering a...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the premature release of exclusive options in the ip6flowlabel when the reference count reaches...

EUVD-2005-3801

Malware in sbrugna...

EUVD-2007-1586

Malware in sbrugna...

EUVD-2021-32255

Malicious code in bioql PyPI...

SUSE CVE-2005-3806

The IPv6 flow label handling code ip6flowlabel.c in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service crash by triggering a free of non-allocated memory...

SUSE CVE-2019-18282

The flowdissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashrnd value as a secret, and because jhash instead of siphash is used. The hashrn...

CVE-2021-45489

In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...

CVE-2021-45489

In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...

Code injection

In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...

CVE-2021-45489

In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG...

CVE-2021-45489

CVE-2021-45489 refers to NetBSD up to 9.2 where the IPv6 Flow Label generation uses a weak cryptographic PRNG. Affected: NetBSD 9.2 and earlier IP stack behavior related to Flow Label generation. Consequence: potential information leakage or traffic-related exposure described by multiple sources;...

kernel: The flow_dissector feature allows device tracking

A device tracking vulnerability was found in the flowdissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and jhash instead of siphash is used. The hashmd value remains the same starting from boot ti...

kernel: The flow_dissector feature allows device tracking

A device tracking vulnerability was found in the flowdissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and jhash instead of siphash is used. The hashmd value remains the same starting from boot ti...

The vulnerability of the TCP/IP protocol stack implementation in the Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the TCP/IP protocol stack implementation in the Windows operating system is related to errors in handling IPv6 flow labels. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using a specially created...

IPv6 toolkit

A security assessment and troubleshooting tool for the IPv6 protocols The SI6 Networks’ IPv6 toolkit is a set of IPv6 security/trouble-shoting tools, that can send arbitrary IPv6-based packets. IPv6 toolkit: List of Tools addr6: An IPv6 address analysis and manipulation tool. flow6: A tool to...

[IPv6 Toolkit v1.5.2] A security assessment and troubleshooting tool for the IPv6 protocols

A security assessment and troubleshooting tool for the IPv6 protocols. Changelog v1.5.2 Add support for GNU Debian/kfreebsd. The toolkit would not build on GNU Debian/kfreebsd before this release. Add support for TCP/IPv6 probes. tcp6 can now send TCP/IPv6 packets “–probe-mode” option, and read t...

[IPv6 Toolkit v1.3] Security Assessment and Troubleshooting Tool for the IPv6 Protocols

A security assessment and troubleshooting tool for the IPv6 protocols. The SI6 Networks’ IPv6 toolkit is a set of IPv6 security/trouble-shooting tools, that can send arbitrary IPv6-based packets. Supported platforms The following platforms are supported: FreeBSD, NetBSD, OpenBSD, Linux, and Mac O...