Lucene search
K

17 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: s390/iucv: The MSGPEEK flag causes a memory leak in iucvsockdestruct. Passing the MSGPEEK flag to skbrecvdatagram increments the skb-users refcount. However, iucvsockrecvmsg does not decrement the skb-users refcount at exit time...

5.5CVSS6.2AI score0.00217EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/01 5:31 p.m.4 views

CVE-2026-43029

A flaw was found in the Linux kernel's Multipath TCP mptcp implementation. When an attacker sends data with MSGPEEK | MSGWAITALL flags, the system can enter a soft lockup state. This occurs because the skreceivequeue is not properly cleared, causing the system to continuously find available data...

7.5CVSS5.8AI score0.00329EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/25 4:54 p.m.4 views

SUSE CVE-2026-23394

In the Linux kernel, the following vulnerability has been resolved: afunix: Give up GC if MSGPEEK intervened. Igor Ushakov reported that GC purged the receive queue of an alive socket due to a race with MSGPEEK with a nice repro. This is the exact same issue previously fixed by commit cbcf01128d0...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/04 4:7 p.m.5 views

EUVD-2026-5478

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recvmsg unconditional requeue If rxrpcrecvmsg fails because MSGDONTWAIT was specified but the call at the front of the recvmsg queue already has its mutex locked, it requeues the call - whether or not the call is alrea...

5.2AI score0.00129EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000653)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000653 advisory. udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during...

10CVSS8.7AI score0.12791EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001996)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001996 advisory. udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during...

10CVSS8.7AI score0.12791EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002477)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002477 advisory. udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during...

10CVSS8.7AI score0.12791EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.5 views

PT-2026-6136

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the rxrpc subsystem related to the handling of recvmsg calls. Specifically, an unconditional requeue of calls can occur if MSG DONTWAIT is specifi...

7.8CVSS6.5AI score0.00129EPSS
Exploits0References408
Microsoft CVE
Microsoft CVE
added 2025/03/08 8:0 a.m.3 views

af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK

...

5.5CVSS7.4AI score0.00257EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/12/28 3:50 a.m.2 views

SUSE CVE-2024-53210

In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSGPEEK causes memory leak in iucvsockdestruct Passing MSGPEEK flag to skbrecvdatagram increments skb refcount skb-users and iucvsockrecvmsg does not decrement skb refcount at exit. This results in skb memory leak in...

5.5CVSS7.5AI score0.00217EPSS
Exploits0References17
OSV
OSV
added 2024/12/27 2:15 p.m.1 views

DEBIAN-CVE-2024-53210

In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSGPEEK causes memory leak in iucvsockdestruct Passing MSGPEEK flag to skbrecvdatagram increments skb refcount skb-users and iucvsockrecvmsg does not decrement skb refcount at exit. This results in skb memory leak in...

5.5CVSS5.6AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 2:15 p.m.11 views

AZL-55533 CVE-2024-53210 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSGPEEK causes memory leak in iucvsockdestruct Passing MSGPEEK flag to skbrecvdatagram increments skb refcount skb-users and iucvsockrecvmsg does not decrement skb refcount at exit. This results in skb memory leak in...

5.5CVSS6.3AI score0.00217EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/27 1:49 p.m.2 views

CVE-2024-53210 s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()

In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSGPEEK causes memory leak in iucvsockdestruct Passing MSGPEEK flag to skbrecvdatagram increments skb refcount skb-users and iucvsockrecvmsg does not decrement skb refcount at exit. This results in skb memory leak in...

7.4AI score0.00217EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/11/19 12:0 a.m.4 views

PT-2024-35657

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.0-rc7 Description The issue is related to a memory leak in the Linux kernel, specifically in the s390/iucv component. When the MSG PEEK flag is passed to skb recv datagram, it increments the skb-users...

6.8CVSS5.5AI score0.00217EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:42 a.m.3 views

SUSE CVE-2013-0290

The skbrecvdatagram function in net/core/datagram.c in the Linux kernel before 3.8 does not properly handle the MSGPEEK flag with zero-length data, which allows local users to cause a denial of service infinite loop and system hang via a crafted application...

4.9CVSS5.9AI score0.00402EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2017/04/17 12:0 a.m.6 views

The vulnerability of the udp.c component in the Linux operating system’s kernel allows a hacker to execute arbitrary code.

The vulnerability of the udp.c component in the Linux operating system’s kernel is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending UDP packets that trigger insecure calculations of...

10CVSS7.8AI score0.12791EPSS
Exploits1References11Affected Software2
Positive Technologies
Positive Technologies
added 2013/02/19 12:0 a.m.5 views

PT-2013-2218 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.8 Description: The issue is related to the skb recv datagram function in the Linux kernel, which does not properly handle the MSG PEEK flag with zero-length data. This allows local users to cause a denial of...

8.4CVSS6.6AI score0.47709EPSS
Exploits16References57
Rows per page
Query Builder