CVE-2026-31415

CVE-2026-31415 affects Linux kernels where ipv6: ip6_datagram_send_ctl() accepts repeated IPV6_DSTOPTS, accumulating into a 16-bit opt_flen without deduplicating. This can cause opt_flen to wrap while dst1opt points to the last 2048-byte destination-options header, leading to under-headroom pushe...

EUVD-2014-3582

Malware in sbrugna...

kernel: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

UBUNTU-CVE-2024-26633

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

SUSE CVE-2014-3619

The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a "00000000" fragment header...

CVE-2021-3321

Integer Underflow in Zephyr in IEEE 802154 Fragment Reassembly Header Removal. Zephyr versions = =2.4.0 contain Integer Overflow to Buffer Overflow CWE-680. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-w44j-66g7-xw99...

Cisco Aggregation Services Router 9000 Series IPv6 Fragment Header DoS (cisco-sa-20180131-ipv6)

According to its self-reported version, Cisco IOS XR Software is affected by a denial of service DoS vulnerability in the IPv6 subsystem due to incorrect handling of IPv6 packets with a fragment header extension. An unauthenticated, remote attacker can exploit this, by sending IPv6 packets design...

Race condition

A vulnerability in the IPv6 subsystem of Cisco IOS XR Software Release 5.3.4 for the Cisco Aggregation Services Router ASR 9000 Series could allow an unauthenticated, remote attacker to trigger a reload of one or more Trident-based line cards, resulting in a denial of service DoS condition. The...

Cisco Aggregation Services Router 9000 Series IPv6 Fragment Header Denial of Service Vulnerability

A vulnerability in the IPv6 subsystem of Cisco IOS XR Software Release 5.3.4 for the Cisco Aggregation Services Router ASR 9000 Series could allow an unauthenticated, remote attacker to trigger a reload of one or more Trident-based line cards, resulting in a denial of service DoS condition. The...

Red Hat GlusterFS Denial of Service Vulnerability

Red Hat GlusterFS is the United States Red Hat Red Hat company's set of open source distributed file system. A denial of service vulnerability exists in GlusterFS 3.5, which allows remote attackers to cause a denial of service via the "00000000" fragment header...

CVE-2014-3619

The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a "00000000" fragment header...

DEBIAN-CVE-2014-3619

The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a "00000000" fragment header...

UBUNTU-CVE-2014-3619

The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a "00000000" fragment header...

CVE-2014-3619

The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a "00000000" fragment header...

CVE-2014-3619

The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a "00000000" fragment header...

CVE-2014-3619

The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a "00000000" fragment header...

PT-2015-3728 · Red Hat +1 · Glusterfs +1

Name of the Vulnerable Software and Affected Versions: GlusterFS version 3.5 Description: The issue allows remote attackers to cause a denial of service, resulting in an infinite loop. This is achieved by sending a specific fragment header, "00000000", to the socket proto state machine function...

glusterfs: fragment header infinite loop DoS

A denial of service flaw was found in the way the socketprotostatemachine function of glusterfs processed certain fragment headers. A remote attacker could send a specially crafted fragment header that, when processed, would cause the glusterfs process to enter an infinite loop...

DEBIAN-CVE-2010-2519

Heap-based buffer overflow in the MacReadPOSTResource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted length value in a POST fragment header in a font file...

PT-2006-5360 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.16.31 Description: The issue allows remote attackers to bypass rules in ip6 tables in netfilter. This can be achieved in two ways: 1 by sending a packet with the protocol header not located immediately after...