Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003095)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003095 advisory. The ipv4pktinfoprepare function in net/ipv4/ipsockglue.c in the Linux kernel through 4.9.9 allows attackers to cause a denial of service system crash via 1 an...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003282)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003282 advisory. The ipv4pktinfoprepare function in net/ipv4/ipsockglue.c in the Linux kernel through 4.9.9 allows attackers to cause a denial of service system crash via 1 an...

CVE-2021-31344

A vulnerability has been identified in Capital Embedded AR Classic 431-422 All versions, Capital Embedded AR Classic R20-11 All versions V2303, PLUSCONTROL 1st Gen All versions, SIMOTICS CONNECT 400 All versions V0.5.0.0, SIMOTICS CONNECT 400 All versions V1.0.0.0. ICMP echo packets with fake IP...

Linux Distros Unpatched Vulnerability : CVE-2019-16411

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Suricata 4.1.4. By sending multiple IPv4 packets that have invalid IPv4Options, the function IPV4OptValidateTimestamp in decode-ipv4....

kernel: ipvlan: out-of-bounds write caused by unclear skb->cb

A flaw was found in the IPVLAN network driver in the Linux kernel. This issue is caused by missing skb-cb initialization in ipoptionsecho and can lead to an out-of-bounds write stack overflow. This may allow a local user to cause a denial of service or potentially achieve local privilege escalati...

Wind River Systems VxWorks Buffer Overflow Vulnerability

Wind River Systems VxWorks is an embedded real-time operating system RTOS from Wind River Systems. A buffer overflow vulnerability exists in the parsing of IP options on IPv4 packets in Wind River Systems VxWorks versions 7 and 6.9. An attacker could use this vulnerability to cause the tNet0 task...

kernel: ipv4: Invalid IP options could cause skb->dst drop

A vulnerability was found in the Linux kernel where having malicious IP options present would cause the ipv4pktinfoprepare function to drop/free the dst. This could result in a system crash or possible privilege escalation...

kernel: ipv4: Invalid IP options could cause skb->dst drop

A vulnerability was found in the Linux kernel where having malicious IP options present would cause the ipv4pktinfoprepare function to drop/free the dst. This could result in a system crash or possible privilege escalation...

virtio-win: netkvm: malformed packet can cause BSOD

It was found that the Windows Virtio NIC driver did not sufficiently sanitize the length of the incoming IP packets, as demonstrated by a packet with IP options present but the overall packet length not being adjusted to reflect the length of those options. A remote attacker able to send a...

PT-2017-6647 · Netkvm +1 · Netkvm Windows Virtio Driver +1

Name of the Vulnerable Software and Affected Versions: NetKVM Windows Virtio driver affected versions not specified Description: The issue allows remote attackers to cause a denial of service, resulting in a guest crash. This can be achieved by sending a crafted IP packet with a length value that...

[NHC20000504a.0: NetBSD Panics when sent unaligned IP options]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIII ,=wwmmm=, .,=""" "M ,gP" "& M & ,d" M, ,R "k ,P "k F W , Vk W '$ ,W M ,F M $ M J$ ,,,====,,, ,mM""""""MM@ W MP',,===="""""""",aP""""Mww M gF '& ,,0" -^ -"""""""F ' 'M& $ ,W $...

Subject: [SECURITY] New version of kernel-image for sparc fixes DoS attack

As is widely known by now the Linux 2.2.x kernels had a problem with parsing IP options, which made them susceptible to a DoS attack. The Debian GNU/Linux 2.1 release for the Sun sparc architecture uses such a kernel. If you are using such a system and havent upgraded the kernel yourself, we...

PT-2004-3740 · Debian +1 · Debian +1

Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux kernel-image-2.4.18-powerpc-xfs version Debian GNU/Linux kernel-image-2.4.18-sun4u version Debian GNU/Linux kernel-image-2.4.18-sun4u-smp version Debian GNU/Linux kernel-image-2.4.19-sparc version Debian GNU/Linux...