EUVD-2021-6820

Malicious code in bioql PyPI...

The vulnerability of the tcp_metrics_nl_policy structure in the Linux operating system’s kernel-based IPv4 protocol allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the tcpmetricsnlpolicy structure in the net/ipv4/tcpmetrics.c file of the Linux operating system’s IPv4 protocol implementation is related to the lack of checks on the length of input data. Exploiting this vulnerability could allow an attacker to compromise the confidentialit...

ROS-20240909-03

Vulnerability of the opteeregisterdevice function in the drivers/tee/optee/device.c module of the Trusted Execution Environment TEE module of the Linux kernel is related to incorrect processing of the return code. return code. Exploitation of the vulnerability could allow an attacker to cause a...

CVE-2021-47238

In the Linux kernel, the following vulnerability has been resolved: net: ipv4: fix memory leak in ipmcadd1src BUG: memory leak unreferenced object 0xffff888101bc4c00 size 32: comm "syz-executor527", pid 360, jiffies 4294807421 age 19.329s hex dump first 32 bytes: 00 00 00 00 00 00 00 00 00 00 00 ...

kernel: use-after-free in IPv4 IGMP

A race condition has been discovered in the Linux kernel's Internet Group Management Protocol IGMP implementation. This vulnerability may enable an attacker to provoke an application crash or potentially escalate privileges locally. By exploiting the race condition, an adversary could disrupt the...

The vulnerability of the IPv4 protocol implementation in Linux operating systems allows a intruder to gain unauthorized access to protected information.

The vulnerability of the IPv4 protocol implementation in Linux operating systems is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...

CVE-2021-1353

A vulnerability in the IPv4 protocol handling of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to a memory leak that occurs during packet processing. An attacker could exploit this...

CVE-2020-7524

Out-of-bounds Write vulnerability exists in Modicon M218 Logic Controller V5.0.0.7 and prior which could cause Denial of Service when sending specific crafted IPV4 packet to the controller: Sending a specific IPv4 protocol package to Schneider Electric Modicon M218 Logic Controller can cause IPv4...

kernel: a BUG() statement can be hit in net/ipv4/tcp_input.c

It was discovered that the Linux kernel since 3.6-rc1 with 'net.ipv4.tcpfastopen' set to 1 can hit BUG statement in tcpcollapse function after making a number of certain syscalls leading to a possible system crash...

UBUNTU-CVE-2015-1465

The IPv4 implementation in the Linux kernel before 3.18.8 does not properly consider the length of the Read-Copy Update RCU grace period for redirecting lookups in the absence of caching, which allows remote attackers to cause a denial of service memory consumption or system crash via a flood of...

Debian DSA-1363-1 : linux-2.6 - several vulnerabilities

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-2172 Thomas Graf reported a typo in the IPv4...