5 matches found
kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()
A flaw was found in the Linux kernel's IPv6 tunnel implementation. A remote attacker could exploit this flaw by sending malicious ICMPv6 error messages to cause a stack-based buffer overflow in the kernel's IPv4-over-IPv6 tunnel error handling code. This could result in a kernel crash denial of...
kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()
A flaw was found in the Linux kernel's IPv6 tunnel implementation. A remote attacker could exploit this flaw by sending malicious ICMPv6 error messages to cause a stack-based buffer overflow in the kernel's IPv4-over-IPv6 tunnel error handling code. This could result in a kernel crash denial of...
UBUNTU-CVE-2021-47515
In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the iprcvcore... sets the receiving interface index into the IPv4 socket control block v5.16-rc4, net/ipv4/ipinput.c line 510: IPCBskb-iif =...
kernel: seg6: fix the iif in the IPv6 socket control block
A vulnerability was found in the Linux kernel's seg6 implementation in the seg6dosrhencap function, where the issue arises when an IPv4 packet is encapsulated within an IPv6 segment routing header, causing the receiving interface index to be cleared, leading to potential NULL pointer dereferences...
Mozilla Firefox 安全漏洞
Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. The FireFox product suffers from a resource management error vulnerability that...