CVE-2026-43099

A flaw was found in the Linux kernel, specifically within the IPv4 Internet Protocol version 4 and ICMP Internet Control Message Protocol components. When the IPv6 Internet Protocol version 6 stack is not active, a specific function ipv6devfind can return an error. If this error is then passed to...

CVE-2026-43099

In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: fix null-ptr-deref in icmpbuildprobe ipv6stub-ipv6devfind may return ERRPTR-EAFNOSUPPORT when the IPv6 stack is not active CONFIGIPV6=m and not loaded, and passing this error pointer to devhold will cause a kernel cra...

OESA-2026-2173 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: icmp: fix NULL pointer dereference in icmptagvalidation icmptagvalidation unconditionally dereferences the result of rcudereferenceinetprotosproto without checki...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001639)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001639 advisory. The pingunhash function in net/ipv4/ping.c in the Linux kernel through 4.10.8 is too late in obtaining a certain lock and consequently cannot ensure that disconnect...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002320)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002320 advisory. The pingunhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allow...

EUVD-2024-52241

Malicious code in bioql PyPI...

CVE-2024-54010

A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches exists. It could allow an unauthenticated adjacent attacker to conduct a packet forwarding attack against the ICMP and UDP protocol. For this attack to be successful an attacker requires a switch...

[SECURITY] Fedora 42 Update: iputils-20240905-4.fc42

The iputils package contains basic utilities for monitoring a network, including ping. The ping command sends a series of ICMP protocol ECHOREQUEST packets to a specified network host to discover whether the target machine is alive and receiving network traffic...

kernel: net: restrict SO_REUSEPORT to inet sockets

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

SUSE CVE-2025-47268

ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...

DEBIAN-CVE-2025-47268

ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication...

CVE-2024-54010

CVE-2024-54010 describes a vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches. An unauthenticated adjacent attacker could perform a packet forwarding attack against ICMP and UDP if the switch is configured to allow Layer 3 routing. The attack relies on routin...

CVE-2024-54010 Unauthenticated Traffic Handling Flaw Allows Packet Leakage on HPE Aruba Networking CX 10000 series switches

A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches exists. It could allow an unauthenticated adjacent attacker to conduct a packet forwarding attack against the ICMP and UDP protocol. For this attack to be successful an attacker requires a switch...

UBUNTU-CVE-2024-56647

In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering iprtbug arp link failure may trigger iprtbug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 iprtbug+0x14/0x20 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm...

icmp: prevent possible NULL dereferences from icmp_build_probe()

...

kernel: icmp: Fix a data-race around sysctl_icmp_errors_use_inbound_ifaddr.

A flaw was found in the Linux kernel's ICMP protocol. A race condition can occur when reading the sysctlicmperrorsuseinboundifaddr resource due to a missing lock, potentially impacting system stability and resulting in a denial of service...

kernel: icmp: Fix data-races around sysctl.

A flaw was found in the Linux kernel's ICMP protocol. A race condition can occur when reading the ICMP sysctl variables due to a missing lock, potentially impacting system stability and resulting in a denial of service...

SUSE CVE-2017-2671

The pingunhash function in net/ipv4/ping.c in the Linux kernel through 4.10.8 is too late in obtaining a certain lock and consequently cannot ensure that disconnect function calls are safe, which allows local users to cause a denial of service panic by leveraging access to the protocol value of...

ASB-A-207646334

In Modem ICMP protocol integrated from Nucleus NET TCP/IP software, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure or denial of service with no additional execution privileges needed. User interaction is not needed for...

QueenSono - Golang Binary For Data Exfiltration With ICMP Protocol

QueenSono tool only relies on the fact that ICMP protocol isn't monitored. It is quite common. It could also been used within a system with basic ICMP inspection ie. frequency and content length watcher. Try to imitate PyExfil and others with the idea that the target machine does not necessary ha...