301 matches found
CVE-2025-20151
A vulnerability in the implementation of the Simple Network Management Protocol Version 3 SNMPv3 feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to poll an affected device using SNMP, even if the device is configured to deny SNMP traffic from ...
CVE-2025-22063 netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets
In the Linux kernel, the following vulnerability has been resolved: netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets When calling netlblconnsetattr, addr-safamily is used to determine the function behavior. If sk is an IPv4 socket, but the connect function is called with an...
CVE-2025-21891 ipvlan: ensure network headers are in skb linear part
In the Linux kernel, the following vulnerability has been resolved: ipvlan: ensure network headers are in skb linear part syzbot found that ipvlanprocessv6outbound was assuming the IPv6 network header isis present in skb-head 1 Add the needed pskbnetworkmaypull calls for both IPv4 and IPv6...
SUSE SLES15 Security Update : rsync (SUSE-SU-2025:0991-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:0991-1 advisory. - CVE-2024-12747: Fixed race condition in handling symbolic links bsc1235475 - Broken rsyncd after protocol bump, regression reported...
SUSE-SU-2025:0991-1 Security update for rsync
This update for rsync fixes the following issues: - CVE-2024-12747: Fixed race condition in handling symbolic links bsc1235475 - Broken rsyncd after protocol bump, regression reported bsc1237187. - Bump protocol version to 32 - make it easier to show server is patched...
UBUNTU-CVE-2025-21768
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels Some lwtunnels have a dst cache for post-transformation dst. If the packet destination did not change we may end up recording a reference to the lwtunnel in its own...
CVE-2022-49704 9p: fix fid refcount leak in v9fs_vfs_get_link
In the Linux kernel, the following vulnerability has been resolved: 9p: fix fid refcount leak in v9fsvfsgetlink we check for protocol version later than required, after a fid has been obtained. Just move the version check earlier...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not releasing skb when IPv6 is disabled...
nodejs: GOAWAY HTTP/2 frames cause memory leak outside heap
A vulnerability was found in NodeJS when handling HTTP/2 connections, where the remote peer abruptly closes the socket without sending the proper HTTP/2 notification to the server, leading to a memory leak. This flaw allows an attacker to force the targeted process in the targeted host to an...
Security update for rsync
This update for rsync fixes the following issues: Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...
SUSE-SU-2025:0404-1 Security update for rsync
This update for rsync fixes the following issues: - Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities...
Security update for rsync
This update for rsync fixes the following issues: Bump protocol version to 32 - make it easier to show server is patched. Fix FLAGGOTDIRFLIST collission with FLAGHLINKED Security update,CVE-2024-12747, bsc1235475 race condition in handling symbolic links Security update, fix multiple...
SUSE-SU-2025:20223-1 Security update for rsync
This update for rsync fixes the following issues: - Bump protocol version to 32 - make it easier to show server is patched. - Fix FLAGGOTDIRFLIST collission with FLAGHLINKED - Security update,CVE-2024-12747, bsc1235475 race condition in handling symbolic links - Security update, fix multiple...
Security update for rsync
This update for rsync fixes the following issues: Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...
SUSE-SU-2025:0340-1 Security update for rsync
This update for rsync fixes the following issues: - Bump rsync protocol version to 32 to show server is patched against recent vulnerabilities...
PT-2025-5680 · Rsync · Rsync
Name of the Vulnerable Software and Affected Versions: rsync affected versions not specified Description: The issue concerns recent vulnerabilities in rsync. An update bumps the rsync protocol version to 32, indicating that the server is patched against these vulnerabilities. Recommendations: At...
The vulnerability of the Juniper Tunnel Driver (JTD) driver for Juniper Networks’ Junos OS Evolved operating systems allows a hacker to induce a service failure.
The vulnerability of the Juniper Tunnel Driver JTD driver for Juniper Networks’ Junos OS Evolved operating systems is related to the lack of memory release after the effective lifespan of the driver. Exploiting this vulnerability can allow a malicious actor to trigger a service failure by sending...
CVE-2025-21598
An Out-of-bounds Read vulnerability in Juniper Networks Junos OS and Junos OS Evolved's routing protocol daemon rpd allows an unauthenticated, network-based attacker to send malformed BGP packets to a device configured with packet receive trace options enabled to crash rpd. This issue affects:...
PT-2025-4310
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description The issue concerns the Linux kernel's handling of IPv6 packets with extension headers. Specifically, it affects devices that advertise NETIF F IPV6 CSUM, which is a feature for checksumming pla...
The vulnerability of the Linux operating system’s kernel’s ipv6 component, which allows a hacker to trigger a service failure
The vulnerability of the ipv6 component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...