7471 matches found
kernel: tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp
In the Linux kernel, the following vulnerability has been resolved: tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp. syzkaller reported 0 memory leaks of an UDP socket and ZEROCOPY skbs. We can reproduce the problem with these sequences: sk = socketAFINET, SOCKDGRAM, 0...
kernel: Linux kernel: Denial of Service due to deadlock in Universal Flash Storage driver
A flaw was found in the Linux kernel. A local attacker with low privileges could exploit a deadlock vulnerability in the Universal Flash Storage UFS host controller driver ufshcd. This occurs when the error handler and a Command Queue CQ event interrupt attempt to acquire the same lock...
kernel: blk-cgroup: hold queue_lock when removing blkg->q_node
A locking flaw was found in the Linux kernel's block cgroup subsystem. When removing blkg-qnode from q-blkglist in blkgfreeworkfn, the code fails to hold queuelock. This missing lock allows concurrent access from blkgdestroyall, leading to list corruption and potential hard lockups...
PT-2025-8278 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue in the Linux kernel has been identified, specifically in the unix dgram peer wake me function. The unix dgram poll function calls unix dgram peer wake me without...
PT-2025-41079
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue was identified in the Linux kernel related to the netfilter conntrack functionality. The problem involves an incorrect timeout value for connection tracking entries ct-timeout...
Rocky Linux 8 : qt5-qtbase and qt5-qtwebsockets (RLSA-2020:4690)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4690 advisory. - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue t...
SUSE CVE-2023-39017
quartz-jobs 2.3.2 and below was discovered to contain a code injection vulnerability in the component org.quartz.jobs.ee.jms.SendQueueMessageJob.execute. This vulnerability is exploited via passing an unchecked argument. NOTE: this is disputed by multiple parties because it is not plausible that...
BIT-2023-39325
A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...
The vulnerability of the Arena Simulation software in modeling and automating discrete events lies in its ability to overflow a buffer based on a queue. This allows a hacker to execute arbitrary code.
The vulnerability of the Arena Simulation software for modeling and automating discrete events is related to the possibility of buffer overflow attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
DEBIAN-CVE-2023-46862
An issue was discovered in the Linux kernel through 6.5.9. During a race with SQ thread exit, an iouring/fdinfo.c iouringshowfdinfo NULL pointer dereference can occur...
Bosch ctrlX HMI Web Panel Trust Management Issue Vulnerability
Bosch ctrlX HMI Web Panel WR21 is an HMI panel from Bosch Germany. The ctrlX HMI Web Panel WR21 version suffers from a security vulnerability that originates from a security flaw in the Android Agent application, which allows an attacker to take control of the network of a malicious MQTT agent...
Juniper Junos OS Vulnerability (JSA73145)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA73145 advisory. - An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper Networks Junos OS QFX5k devices allows packets to be punted to ARP queue...
The vulnerability of Windows operating systems’ message queues allows a perpetrator to execute arbitrary code.
The vulnerability of Windows operating systems’ message queues is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
CVE-2023-44181
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper Networks Junos OS QFX5k devices allows packets to be punted to ARP queue causing a l2 loop resulting in a DDOS violations and DDOS syslog. This issue is triggered when Storm control is enabled and ICMP...
Design/Logic Flaw
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper Networks Junos OS QFX5k devices allows packets to be punted to ARP queue causing a l2 loop resulting in a DDOS violations and DDOS syslog. This issue is triggered when Storm control is enabled and ICMP...
CVE-2023-44181 Junos OS: QFX5k: l2 loop in the overlay impacts the stability in a EVPN/VXLAN environment
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper Networks Junos OS QFX5k devices allows packets to be punted to ARP queue causing a l2 loop resulting in a DDOS violations and DDOS syslog. This issue is triggered when Storm control is enabled and ICMP...
Juniper Networks Junos OS and Junos OS QFX Security Vulnerabilities
Juniper Networks Junos OS and Juniper Networks Junos OS QFX are products of Juniper Networks, Inc.Juniper Networks Junos OS is a network operating system that is specialized for use with the company's hardware devices. The operating system provides a secure programming interface and the Junos...
AZL-33330 CVE-2023-39325 affecting package packer for versions less than 1.8.7-2
A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...
AZL-42861 CVE-2023-39325 affecting package multus for versions less than 4.0.2-3
A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...
AZL-31857 CVE-2023-39325 affecting package kured for versions less than 1.9.1-14
A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...