Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000713)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000713 advisory. The virtnetprobe function in drivers/net/virtionet.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which...

EUVD-2022-49189

Malicious code in bioql PyPI...

CVE-2020-35683

An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an unchecked value of the IP payload size extracted from the IP header to compute the ICMP checksum. When the IP payload size is set to be smaller than the size of the IP header, the ICMP checksum computati...

CVE-2022-32505

An issue was discovered on certain Nuki Home Solutions devices. It is possible to send multiple BLE malformed packets to block some of the functionality and reboot the device. This affects Nuki Smart Lock 3.0 before 3.3.5 and Nuki Smart Lock 2.0 before 2.12.4...

CVE-2024-2182 Ovn: insufficient validation of bfd packets may lead to denial of service

A flaw was found in the Open Virtual Network OVN. In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service...

CVE-2022-41985

An authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. A specially crafted set of network packets can lead to authentication bypass and denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...

CVE-2022-36440

A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peekforas4capability function. Attackers can maliciously construct BGP open packets and send them to BGP peers running frr-bgpd, resulting in DoS...

SUSE CVE-2010-0751

The ipevictor function in ipfragment.c in libnids before 1.24, as used in dsniff and possibly other products, allows remote attackers to cause a denial of service NULL pointer dereference and crash via crafted fragmented packets...

The vulnerability of the Simatic programmable logic controller’s software, related to resource exhaustion, allows a intruder to restrict access to network connections or cause service failures.

The vulnerability of the Simatic programmable logic controller’s software is related to the exhaustion of resources during the processing of a large number of specially prepared packages. Exploiting this vulnerability can allow an intruder to restrict access to network connections or cause servic...

tcpdump contains vulnerability in RADIUS decoding function print_attr_string() in print-radius.c

Overview tcpdump contains a vulnerability in the way it parses Remote Authentication Dial In User Service RADIUS packets. Description tcpdump is a widely used network sniffer that is capable of decoding RADIUS packets. A vulnerability exists in the way the tcpdump printattrstring function in...

CVE-1999-0128

Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death...