Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

There is a use-after-free vulnerability in the Linux Kernel that can be exploited to achieve local privilege escalation. To exploit this vulnerability, the CONFIGTLS or CONFIGXFRMESPINTCP kernel configuration flags must be set; however, the operation does not require any special privileges. There...

7.8CVSS6.7AI score0.00652EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001218)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001218 advisory. The inetcskclonelock function in net/ipv4/inetconnectionsock.c in the Linux kernel through 4.10.15 allows attackers to cause a denial of service double free or...

7.8CVSS6.6AI score0.01372EPSS
Exploits5References12
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002659)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002659 advisory. The inetcskclonelock function in net/ipv4/inetconnectionsock.c in the Linux kernel through 4.10.15 allows attackers to cause a denial of service double free or...

7.8CVSS6.6AI score0.01372EPSS
Exploits5References12
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.6 views

The vulnerability in the `net/ipv4/inet_connection_sock.c` module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability in the net/ipv4/inetconnectionsock.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

7.8CVSS7.2AI score0.0022EPSS
Exploits0References24Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.7 views

The vulnerability of the `reqsk_queue_unlink()` function in the `net/ipv4/inet_connection_sock.c` module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the reqskqueueunlink function in the net/ipv4/inetconnectionsock.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7CVSS7.2AI score0.00241EPSS
Exploits0References19Affected Software5
RedHat Linux
RedHat Linux
added 2024/08/08 4:44 a.m.4 views

kernel: tcp: make sure init the accept_queue's spinlocks once

In the Linux kernel, the following vulnerability has been resolved: tcp: make sure init the acceptqueue's spinlocks once When I run syz's reproduction C program locally, it causes the following issue: pvqspinlock: lock 0xffff9d181cd5c660 has corrupted value 0x0! WARNING: CPU: 19 PID: 21160 at...

5.5CVSS6.8AI score0.00173EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/03/15 12:0 a.m.6 views

The vulnerability of the implementation of the Upper Level Protocol (ULP) in the Linux operating system allows a hacker to enhance their privileges, execute arbitrary code, or cause a service failure.

The vulnerability in the implementation of the Upper Level Protocol ULP in the Linux kernel’s inetconnectionsock.c file is related to improper handling of sockets that are in the LISTEN state in certain protocols. This leads to the reallocation of previously freed memory. Exploiting this...

7.8CVSS6.9AI score0.00652EPSS
Exploits0References40Affected Software9
Rows per page
Query Builder