CVE-2025-66646

CVE-2025-66646 affects RIOT OS, specifically in the IPv6 fragmentation reassembly (gnrc_ipv6_ext_frag). When a fragmented IPv6 packet with fragment offset 0 and an empty payload is processed, the payload pointer is set to NULL but the code still copies into the reassembly buffer, causing a NULL p...

EUVD-2003-0841

Malware in sbrugna...

Important: Red Hat Security Advisory: kpatch-patch-4_18_0-372_91_1 security update

An update for kpatch-patch-4180-372911 is now available for Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

CVE-2020-26146

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented...

QEMU: slirp: heap buffer overflow during packet reassembly

A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ipreass routine while reassembling incoming packets if the first fragment is bigger than the m-mdat buffer. An attacker could use this flaw to crash the QEMU process on the...

PT-2019-15954 · Cisco · Cisco Firepower Services Software For Asa +2

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense Software affected versions not specified Cisco FirePOWER Services Software for ASA affected versions not specified Cisco Firepower Management Center Software affected versions not specified Description: A...

BSA-2018-690

Security Advisory ID : BSA-2018-690 Component : Kernel Revision : 1.0: Final The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending...

CVE-2018-0369

A vulnerability in the reassembly logic for fragmented IPv4 packets of Cisco StarOS running on virtual platforms could allow an unauthenticated, remote attacker to trigger a reload of the npusim process, resulting in a denial of service DoS condition. There are four instances of the npusim proces...

PT-2017-16156 · Cisco · Cisco Firepower System

Name of the Vulnerable Software and Affected Versions: Cisco Firepower System Software versions 6.0.0 through 6.2.1 Description: A vulnerability in the detection engine reassembly of Secure Sockets Layer SSL packets could allow an unauthenticated, remote attacker to cause a denial of service DoS...

UBUNTU-CVE-2013-2488

The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service application crash via a large offset value that triggers write access to an...

MS00-029: NT IP Fragment Reassembly Patch Not Applied (jolt2) (259728)

The hotfix for the 'IP Fragment Reassembly' vulnerability has not been applied on the remote Windows host. This vulnerability allows an attacker to send malformed packets, which will utilize 100% of the computer CPU, making it nearly unusable for the legitimate users. C Tenable Network Security,...