14 matches found
CVE-2026-46037
A flaw was found in the Linux kernel, specifically within its IPv4 Internet Control Message Protocol ICMP component. This vulnerability occurs because the system does not properly check the type of ICMP replies before attempting to process them. An attacker could potentially exploit this by sendi...
Linux Distros Unpatched Vulnerability : CVE-2026-46037
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv4: icmp: validate reply type before using icmppointers Extended echo replies use ICMPEXTECHOREPLY as the outbound reply type. That value is outside the range...
CVE-2026-43038
In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach Sashiko AI-review observed: In ip6errgenicmpv6unreach, the skb is an outer IPv4 ICMP error packet where its cb contains an IPv4 inetskbparm. When skb is cloned into skb2 and...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990458)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990458 advisory. In the Linux kernel, the following vulnerability has been resolved: dccp: fix dccpv4err/dccpv6err again dh-dccphx is the 9th byte offset 8 in struct dccphdr, not in...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-413652)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-413652 advisory. In the Linux kernel, the following vulnerability has been resolved: dccp: fix dccpv4err/dccpv6err again dh-dccphx is the 9th byte offset 8 in struct dccphdr, not in...
CVE-2023-53343
In the Linux kernel, the following vulnerability has been resolved: icmp6: Fix null-ptr-deref of ip6nullentry-rt6iidev in icmp6dev. With some IPv6 Ext Hdr RPL, SRv6, etc., we can send a packet that has the link-local address as src and dst IP and will be forwarded to an external IP in the IPv6 Ex...
SUSE CVE-2023-52577
In the Linux kernel, the following vulnerability has been resolved: dccp: fix dccpv4err/dccpv6err again dh-dccphx is the 9th byte offset 8 in "struct dccphdr", not in the "byte 7" as Jann claimed. We need to make sure the ICMP messages are big enough, using more standard ways no more assumptions...
SUSE CVE-2009-0778
The icmpsend function in net/ipv4/icmp.c in the Linux kernel before 2.6.25, when configured as a router with a REJECT route, does not properly manage the Protocol Independent Destination Cache aka DST in some situations involving transmission of an ICMP Host Unreachable message, which allows remo...
SUSE CVE-2011-4604
The batsocketread function in net/batman-adv/icmpsocket.c in the Linux kernel before 3.3 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted batman-adv ICMP packet...
CVE-2022-25667
Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking...
ARP Firewall: SCUTUM
SCUTUM is an ARP firewall that prevents your computer from being arp spoofed. Scutum controls “arptables” in your computer so it accepts ARP packets only from the gateway. This way, people with malicious intentions cannot spoof your arp table. Scutum also prevents other people from detecting your...
Microsoft Windows NAT Driver Denial of Service Vulnerability (2849568)
This host is missing a important security update according to Microsoft Bulletin MS13-064. OpenVAS Vulnerability Test $Id: secpodms13-064.nasl 31155 2013-08-14 14:18:13Z aug$ Microsoft Windows NAT Driver Denial of Service Vulnerability 2849568 Authors: Antu Sanadi Copyright: Copyright c 2013...
Linux kernel ICMP DoS
Crash on ICMP handling may be blindly remotely exploited from spoofed addresses...
[SA15761] Nortel Networks Products ICMP Handling Vulnerabilities
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...