31 matches found
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: net/ieee802154: don't warn zero-sized rawsendmsg syzbot is hitting skbassertlen warning at devqueuexmit 1, for PFIEEE802154 socket's zero-sized rawsendmsg request is hitting devqueuexmit with skb-len == 0. Since PFIEEE802154...
CLSA-2026-1771078945 kernel: Fix of 131 CVEs
net/ieee802154: don't warn zero-sized rawsendmsg CVE-2022-50706 - scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow CVE-2023-53676 - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer CVE-2025-40269 - ipv6: reject malicious packets in ipv6gsosegment CVE-2025-38572 -...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001563)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001563 advisory. The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; th...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002950)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002950 advisory. The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; th...
SUSE CVE-2022-50706
In the Linux kernel, the following vulnerability has been resolved: net/ieee802154: don't warn zero-sized rawsendmsg syzbot is hitting skbassertlen warning at devqueuexmit 1, for PFIEEE802154 socket's zero-sized rawsendmsg request is hitting devqueuexmit with skb-len == 0. Since PFIEEE802154...
EUVD-2017-8869
Malware in sbrugna...
CVE-2022-50397
In the Linux kernel, the following vulnerability has been resolved: net/ieee802154: reject zero-sized rawsendmsg syzbot is hitting skbassertlen warning at rawsendmsg for ieee802154 socket. What commit dc633700f00f726e "net/afpacket: check len when minheaderlen equals to 0" does also applies to...
CVE-2022-50397
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2022-50397
The CVE-2022-50397 entry is tied to the Linux kernel net/ieee802154 path: raw_sendmsg() with a zero-sized header leading to a skb_assert_len() scenario in the ieee802154 socket. Connected sources indicate this vulnerability has been resolved via a patch/code fix (e.g., the commit referenced by Re...
CVE-2024-36927
In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix uninit-value access in ipmakeskb KMSAN reported uninit-value access in ipmakeskb 1. ipmakeskb tests HDRINCL to know if the skb has icmphdr. However, HDRINCL can cause a race condition. If calling setsockopt2 with...
CVE-2024-36927
In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix uninit-value access in ipmakeskb KMSAN reported uninit-value access in ipmakeskb 1. ipmakeskb tests HDRINCL to know if the skb has icmphdr. However, HDRINCL can cause a race condition. If calling setsockopt2 with...
CVE-2024-36927
In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix uninit-value access in ipmakeskb KMSAN reported uninit-value access in ipmakeskb 1. ipmakeskb tests HDRINCL to know if the skb has icmphdr. However, HDRINCL can cause a race condition. If calling setsockopt2 with...
SUSE CVE-2017-17712
The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...
GSD-2022-1007423 net/ieee802154: reject zero-sized raw_sendmsg()
net/ieee802154: reject zero-sized rawsendmsg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.220 by commit...
GSD-2022-1007287 net/ieee802154: reject zero-sized raw_sendmsg()
net/ieee802154: reject zero-sized rawsendmsg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...
GSD-2022-1007210 net/ieee802154: don't warn zero-sized raw_sendmsg()
net/ieee802154: don't warn zero-sized rawsendmsg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...
kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak
A flaw was found in the Linux kernel's implementation of rawsendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets, can abuse a possible race condition when setting the socket option to allow the kernel...
CVE-2017-17712
A flaw was found in the Linux kernel's implementation of rawsendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets, can abuse a possible race condition when setting the socket option to allow the kernel...
DEBIAN-CVE-2017-17712
The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...
Race condition
The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...