16 matches found
Astra Linux - уязвимость в linux, linux-5.10
A use-after-free read flaw was discovered in the sockgetsockopt function in net/core/sock.c, due to race conditions involving SOPEERCRED and SOPEERGROUPS functions when used with listen and connect in the Linux kernel. In this flaw, an attacker with user privileges could potentially crash the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001473)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001473 advisory. A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In thi...
EUVD-2012-4662
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414529)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414529 advisory. A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In thi...
kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses
A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information...
kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses
A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information...
kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses
A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information...
kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses
A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information...
A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw an attacker with a user privileges may crash the system or leak internal kernel information.
...
DEBIAN-CVE-2021-4203
A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information...
PT-2021-7117 · Linux +8 · Linux Kernel +8
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use-after-free read flaw was found in the sock getsockopt function in net/core/sock.c due to a race condition with listen and connect when using SO PEERCRED and SO PEERGROUPS. This...
CVE-2012-4737
channels/chaniax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 does not enforce ACL rules during certa...
CVE-2012-4737
channels/chaniax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 does not enforce ACL rules during certa...
DEBIAN-CVE-2012-4737
channels/chaniax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 does not enforce ACL rules during certa...
Design/Logic Flaw
channels/chaniax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 does not enforce ACL rules during certa...
CVE-2012-4737
CVE-2012-4737 affects Asterisk Open Source 1.8.x prior to 1.8.15.1 and 10.x prior to 10.7.1 (also affected Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x, and Asterisk Business Edition C.3.x before C.3.7.6). The vulnerability arises because ACL rules are not enforced du...