5 matches found
kernel: netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: sanitize layer 3 and 4 protocol number in custom expectations The Linux kernel CVE team has assigned CVE-2024-26673 to this issue. Upstream advisory:...
SUSE CVE-2020-27617
ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...
QEMU: net: an assert failure via eth_get_gso_type
An assert3 failure flaw was found in the networking helper functions of QEMU. This vulnerability can occur in the ethgetgsotype routine if a packet does not have a valid networking L3 protocol ex. IPv4, IPv6 value. This flaw allows a guest user to crash the QEMU process on the host, resulting in ...
DEBIAN-CVE-2020-27617
ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...
UBUNTU-CVE-2020-27617
ethgetgsotype in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol...