Lucene search
+L

1097 matches found

UbuntuCve
UbuntuCve
added 2026/06/25 9:16 a.m.3 views

CVE-2026-53151

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the SACK table for parsing Fix modification of the received skbuff in rxrpcinputsoftacks and a potential incorrect access of the buffer in a fragmented UDP packet the packet would probably hav...

9.8CVSS6AI score0.00497EPSS
Exploits0References5
OSV
OSV
added 2026/06/25 8:38 a.m.3 views

CVE-2026-53151 rxrpc: Fix the ACK parser to extract the SACK table for parsing

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the SACK table for parsing Fix modification of the received skbuff in rxrpcinputsoftacks and a potential incorrect access of the buffer in a fragmented UDP packet the packet would probably hav...

9.8CVSS6AI score0.00497EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/24 6:10 p.m.34 views

CVE-2026-12760 Denial-of-Service Vulnerability via Malformed IPv4 Fragmentation Handling in TP-Link Tapo C200

A denial-of-service DoS vulnerability has been identified in Tapo C200 v3 in the network packet handling logic due to improper handling of IPv4 fragmented packets. An unauthenticated adjacent attacker can send crafted packets to cause excessive resource consumption, leading to instability of the...

7.1CVSS0.00222EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/24 6:10 p.m.6 views

CVE-2026-12760

A denial-of-service DoS vulnerability has been identified in Tapo C200 v3 in the network packet handling logic due to improper handling of IPv4 fragmented packets. An unauthenticated adjacent attacker can send crafted packets to cause excessive resource consumption, leading to instability of the...

7.1CVSS5.8AI score0.00222EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 6:10 p.m.14 views

CVE-2026-12760

The CVE-2026-12760 vulnerability affects TP-Link Tapo C200 (v3) in the network packet handling path. It arises from improper handling of IPv4 fragmented packets, allowing an unauthenticated adjacent attacker to send crafted fragments to cause excessive resource usage, leading to a temporary DoS c...

7.1CVSS5.8AI score0.00222EPSS
Exploits0References3Affected Software1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: Fixed a memory leak in skbSegmentList for GRO packets When skbSegmentList is called during packet forwarding, it handles packets that were aggregated by the GRO engine. Historically, the segmentation logic in skbSegmentList...

5.5CVSS6.1AI score0.00121EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 9:39 a.m.3 views

SUSE-SU-2026:22479-1 Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-33.1 fixes various security issues The following security issues were fixed: - CVE-2026-23278: netfilter: nftables: always walk all pending catchall elements bsc1260907. - CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache...

9.8CVSS6.2AI score0.0049EPSS
Exploits8References14
Debian CVE
Debian CVE
added 2026/06/24 7:14 a.m.7 views

CVE-2026-52916

In the Linux kernel, the following vulnerability has been resolved: batman-adv: frag: disallow unicast fragment in fragment batadvfragskbbuffer is called by batadvbatmanskbrecv when a BATADVUNICASTFRAG packet is received. Once all fragments are collected and the packet is reassembled,...

5.5CVSS5.6AI score0.00123EPSS
Exploits0
CVE
CVE
added 2026/06/24 7:14 a.m.25 views

CVE-2026-52916

CVE-2026-52916 affects the Linux kernel’s BATMAN-adv frag handling. A crafted BATADV_UNICAST_FRAG packet can defragment into another BATADV_UNICAST_FRAG, causing unbounded recursion in batadv_batman_skb_recv() and leading to kernel stack exhaustion. The published description specifies that refrag...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.15 views

Node.js Module Undici 8.1.x < 8.5.0 DoS (CVE-2026-9675)

The nodejs module Undici detected on the host is version 8.1.x prior to 8.5.0. It is, therefore, affected by a denial of service vulnerability: - The undici WebSocket client enforces maxPayloadSize per-frame but does not enforce the cumulative size of fragmented uncompressed messages. A malicious...

7.5CVSS6.4AI score0.00426EPSS
Exploits0References2
OSV
OSV
added 2026/06/22 11:1 p.m.6 views

USN-8388-2 linux-intel-iotg-5.15, linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities

It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the RxRPC networking subsystem when processing paged fragments. A local attacker...

8.8CVSS6.4AI score0.93235EPSS
Exploits57References7
EUVD
EUVD
added 2026/06/18 2:28 p.m.16 views

EUVD-2026-37752

undici WebSocket client vulnerable to denial of service via cumulative fragment bypass...

7.5CVSS5.8AI score0.00426EPSS
Exploits0References3
Snyk
Snyk
added 2026/06/17 6:22 p.m.9 views

Allocation of Resources Without Limits or Throttling

Overview undici is an An HTTP/1.1 client, written from scratch for Node.js Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the handling of WebSocket message fragments. An attacker can cause unbounded memory growth and exhaust system...

8.7CVSS5.9AI score0.00789EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/17 6:21 p.m.10 views

Allocation of Resources Without Limits or Throttling

Overview undici is an An HTTP/1.1 client, written from scratch for Node.js Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the handling of fragmented WebSocket messages. An attacker can cause unbounded memory growth and exhaust system...

8.7CVSS5.9AI score0.00426EPSS
Exploits0References2
OSV
OSV
added 2026/06/17 8:36 a.m.2 views

SUSE-SU-2026:22152-1 Security update for openvswitch

This update for openvswitch fixes the following issues - CVE-2026-5265: heap over-read in ICMP error response generation bsc1262498. - CVE-2026-5367: heap over-read in OVN DHCPv6 client ID processing bsc1262499. - CVE-2026-34956: Invalid memory access in conntrack FTP alg bsc1261273. Changes for...

8.6CVSS6.1AI score0.00868EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/06/16 2:20 a.m.11 views

SUSE CVE-2026-46340

Netty is a network application framework for development of protocol servers and clients. In versions of netty-transport-sctp prior to 4.1.135.Final and 4.2.15.Final, for each non-complete SctpMessage fragment the handler does fragments.putstreamId, Unpooled.wrappedBufferfrag, byteBuf, wrapping t...

7.5CVSS5.5AI score0.0038EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/13 1:24 a.m.2 views

undici: undici WebSocket client vulnerable to denial of service via cumulative fragment bypass

A flaw was found in undici. A malicious WebSocket server could exploit this vulnerability by sending fragmented messages that individually meet size limits but collectively exceed them. This can lead to unbounded memory growth in the client process, resulting in memory exhaustion and a denial of...

7.5CVSS6.6AI score0.00426EPSS
Exploits0References6
NVD
NVD
added 2026/06/12 3:16 p.m.15 views

CVE-2026-46340

Netty is a network application framework for development of protocol servers and clients. In versions of netty-transport-sctp prior to 4.1.135.Final and 4.2.15.Final, for each non-complete SctpMessage fragment the handler does fragments.putstreamId, Unpooled.wrappedBufferfrag, byteBuf, wrapping t...

7.5CVSS0.0038EPSS
Exploits0References7
NVD
NVD
added 2026/06/09 1:16 p.m.22 views

CVE-2026-46323

In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skbgroreceive can currently copy frags between the source and GRO skb, without checking the zerocopy status, and in particular the SKBFLMANAGEDFRAGREFS flag. When SKBFLMANAGEDFRAGREFS is set, the...

7.8CVSS0.00137EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-46321

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tun: free page on short-frame rejection in tunxdpone tunxdpone returns -EINVAL on a frame shorter than ETHHLEN without freeing the page that vhostnetbuildxdp...

7.1CVSS6AI score0.00129EPSS
Exploits0References3
Rows per page
Query Builder