kernel: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach()

A flaw was found in the Linux kernel's IPv6 ICMP error generation. A remote attacker could send a specially crafted IPv4 ICMP error packet with a Common Internet Protocol Security Option CIPSO IP option. This could lead to incorrect handling of packet control block data when generating an IPv6 IC...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000998)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000998 advisory. The cipsov4validate function in net/ipv4/cipsoipv4.c in the Linux kernel before 3.4.8 allows local users to cause a denial of service NULL pointer dereference and...

EUVD-2004-1107

Malware in sbrugna...

EUVD-2001-0425

Malware in sbrugna...

EUVD-2005-2578

Malware in sbrugna...

CVE-2023-52628

CVE-2023-52628 : Linux kernel netfilter nftables exthdr fix for a 4-byte stack OOB write. If priv->len is a multiple of 4, dst[len/4] can overflow the destination array, causing stack corruption. The bug affected the kernel since the 4.1 cycle and was carried forward with tcp/sctp and IP optio...

PT-2022-18171 · Arris · Arris Tr3300

Name of the Vulnerable Software and Affected Versions: Arris TR3300 version 1.0.13 Description: A command injection issue was found in the pptp function, accessible through the wan pptp.html endpoint, via the pptp fix ip, pptp fix mask, pptp fix gw, and wan dns1 stat parameters. This allows...

Siemens Nucleus ReadyStart Type Obfuscation Vulnerability

Siemens Nucleus ReadyStart is a bundled solution from Siemens, Germany. It is used to accelerate the fast startup of complete systems and provides a rich set of board support packages Bsp. A security vulnerability exists in Siemens Nucleus ReadyStart, which originates from an ICMP echo packet wit...

CVE-2021-33033

A flaw use-after-free in the Linux kernel CIPSO network packet labeling protocol functionality was found in the way user open local network connection with the usage of the security labeling that is IP option number 134. A local user could use this flaw to crash the system or possibly escalate...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A flaw was found in the way CIPSO Common IP Security Option IP options were validated when set from user mode. A local user able to set CIPSO IP options on the socket could use this flaw to crash the system...

SOL01471335 - BIND vulnerability CVE-2016-2848

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

Security Advisory - IP Option Improper Handling Vulnerability in Multiple Huawei Products

Multiple Huawei Products have an improper IP option handling vulnerability. The IP stack implementation in multiple Huawei products mishandles IP options when a crafted ICMP request message is received, leading to the board reboot Vulnerability ID: HWPSIRT-2015-02003. This Vulnerability has been...

FreeBSD 3.4/4.0/5.0,NetBSD 1.4 Unaligned IP Option Denial of Service

No description provided by source. source: http://www.securityfocus.com/bid/1173/info A vulnerability exists in the 1.4.x NetBSD kernel that may allow remote attackers to cause the machine to kernel panic on certain architectures. By sending a packet to a machine running the Alpha or SPARC versio...

Crafted IP Option Vulnerability (cisco-sa-20070124-crafted-ip-option)

Cisco routers and switches running Cisco IOS XR software may be vulnerable to a remotely exploitable crafted IP option Denial of Service DoS attack. Exploitation of the vulnerability may potentially allow for arbitrary code execution. The vulnerability may be exploited after processing an Interne...

Crafted IP Option Vulnerability

Cisco routers and switches running Cisco IOS or Cisco IOS XR software may be vulnerable to a remotely exploitable crafted IP option Denial of Service DoS attack. Exploitation of the vulnerability may potentially allow for arbitrary code execution. The vulnerability may be exploited after processi...

CVE-2007-2796

Arris Cadant C3 CMTS allows remote attackers to cause a denial of service service termination via a malformed IP packet with an invalid IP option...

Code injection

Arris Cadant C3 CMTS allows remote attackers to cause a denial of service service termination via a malformed IP packet with an invalid IP option...

Cisco Multiple Devices Crafted IP Option Remote Code Execution (CSCeh52410)

The remote version of IOS contains a flaw that could cause the remote router to crash when processing specially malformed IP packets. An attacker might use these flaws to execute arbitrary code on the remote routers. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid2474...

Code injection

Cisco IOS 9.x, 10.x, 11.x, and 12.x and IOS XR 2.0.x, 3.0.x, and 3.2.x allows remote attackers to cause a denial of service or execute arbitrary code via a crafted IP option in the IP header in a 1 ICMP, 2 PIMv2, 3 PGM, or 4 URD packet...

Crafted IP Option Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...