CVE-2026-10636 Use-after-free in Zephyr IPv4 IGMP send path (igmp_send)

In Zephyr's IPv4 IGMP implementation, igmpsend in subsys/net/ip/igmp.c read the network interface back out of the packet via netpktifacepkt after the packet had been handed to netsenddata. On the successful-send path the packet's last reference may already have been released by the L2 driver or b...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: IGMP: Fixed data races related to sysctligmpllmreports. When reading sysctligmpllmreports, it can be changed concurrently. Therefore, we need to add READONCE to its readers. This test can be incorporated into a helper function...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

A use-after-free vulnerability in the Linux kernel’s ipv4:igmp component can be exploited to achieve local privilege escalation. A race condition can be exploited, causing a timer to be mistakenly registered on a RCU read-locked object that is then freed by another thread. We recommend upgrading ...

CVE-2020-10664

The IGMP component in VxWorks 6.8.3 IPNET CVE patches created in 2019 has a NULL Pointer Dereference...

CVE-1999-0918

Denial of service in various Windows systems via malformed, fragmented IGMP packets...

UBUNTU-CVE-2025-50681

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recvigmp function in src/igmpproxy.c, an invalid group record type can...

igmpproxy 安全漏洞

igmpproxy is a routing daemon for pali personal developers. A security vulnerability exists in igmpproxy, which stems from insufficient validation of the recvigmp function in src/igmpproxy.c, which could lead to null pointer dereferencing and denial of service...

PT-2025-52453

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recv igmp function in src/igmpproxy.c, an invalid group record type can...

CVE-2025-50681

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recvigmp function in src/igmpproxy.c, an invalid group record type can...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989200)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989200 advisory. In the Linux kernel, the following vulnerability has been resolved: igmp: Fix data-races around sysctligmpqrv. While reading sysctligmpqrv, it can be changed...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988760)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988760 advisory. In the Linux kernel, the following vulnerability has been resolved: igmp: Fix data-races around sysctligmpllmreports. While reading sysctligmpllmreports, it can be...

EUVD-2019-4771

Malware in sbrugna...

EUVD-2016-8841

Malware in sbrugna...

EUVD-2013-1069

Malware in sbrugna...

EUVD-2021-17164

Malware in sbrugna...

EUVD-2019-4774

Malware in sbrugna...

EUVD-2002-2243

Malware in sbrugna...

EUVD-2019-4777

Malware in sbrugna...

EUVD-2009-1548

Malware in sbrugna...

EUVD-2019-3901

Malware in sbrugna...