240 matches found
kernel: SUNRPC: lock against ->sock changing during sysfs read
A vulnerability was found in the Linux kernel's SUNRPC component, where a race condition exists during sysfs read operations due to improper handling of the -sock pointer. If the mutex -recvmutex is not held, -sock may change asynchronously, leading to a potential kernel oops. This vulnerability...
CVE-2024-41062
In the Linux kernel, the following vulnerability has been resolved: bluetooth/l2cap: sync sock recv cb and release The problem occurs between the system call to close the sock and hcirxwork, where the former releases the sock and the latter accesses it without lock protection. CPU0 CPU1 ---- ----...
AZL-68211 CVE-2022-48816 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: SUNRPC: lock against -sock changing during sysfs read -sock can be set to NULL asynchronously unless -recvmutex is held. So it is important to hold that mutex. Otherwise a sysfs read can trigger an oops. Commit 17f09d3f619a...
DEBIAN-CVE-2022-48816
In the Linux kernel, the following vulnerability has been resolved: SUNRPC: lock against -sock changing during sysfs read -sock can be set to NULL asynchronously unless -recvmutex is held. So it is important to hold that mutex. Otherwise a sysfs read can trigger an oops. Commit 17f09d3f619a...
UBUNTU-CVE-2022-48715
In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Make bnx2fcrecvframe mp safe Running tests with a debug kernel shows that bnx2fcrecvframe is modifying the percpu lport stats counters in a non-mpsafe way. Just boot a debug kernel and run the bnx2fc driver with the...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a flaw in the bnx2fcrecvframe method of the scsi:bnx2fc module...
CVE-2024-6143
Actiontec WCB6200Q uhtcprecvheader Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specifi...
DEBIAN-CVE-2024-36905
In the Linux kernel, the following vulnerability has been resolved: tcp: defer shutdownSENDSHUTDOWN for TCPSYNRECV sockets TCPSYNRECV state is really special, it is only used by cross-syn connections, mostly used by fuzzers. In the following crash 1, syzbot managed to trigger a divide by zero in...
DEBIAN-CVE-2024-35970
In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...
CVE-2024-35970
In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...
CVE-2024-35970 af_unix: Clear stale u->oob_skb.
In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...
CVE-2024-35970 af_unix: Clear stale u->oob_skb.
In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...
Buffer overflow
In MicroHttpServer aka Micro HTTP Server through a8ab029, ParseHeader in lib/server.c allows a one-byte recv buffer overflow via a long URI...
CVE-2023-51771
In MicroHttpServer aka Micro HTTP Server through a8ab029, ParseHeader in lib/server.c allows a one-byte recv buffer overflow via a long URI...
github.com/nghttp2/nghttp2 has HTTP/2 Rapid Reset
Impact Rapidly creating and cancelling streams HEADERS frame immediately followed by RSTSTREAM without bound cause denial of service. See https://vulners.com/cve/CVE-2023-44487 for details. Patches nghttp2 v1.57.0 mitigates this vulnerability by default. Workarounds If upgrading to nghttp2 v1.57....
K51025656: Linux kernel vulnerability CVE-2016-10229
Security Advisory Description udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag. CVE-2016-10229 Impact There is no impact; F5...
SUSE CVE-2007-1841
The isakmpinforecv function in src/racoon/isakmpinf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service tunnel crash via crafted 1 DELETE ISAKMPNPTYPED and 2 NOTIFY ISAKMPNPTYPEN messages...
PT-2024-14698
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.0-rc7-syzkaller-17907-g2d3827b3f393 Description The vulnerability is related to a kernel memory exposure attempt detected from the SLUB object 'skbuff head cache' in the Linux kernel. The issue occurs when th...
Galaxy Technologies GNS3 安全漏洞
Galaxy Technologies GNS3 is a suite of network software emulators from Galaxy Technologies, USA. A security vulnerability exists in Galaxy Technologies GNS3 dynamips version 0.2.21, which originates from the use of uninitialized variables in the function genethrecv...
PT-2022-34336 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.257 Description: The issue concerns a NULL pointer dereference in the steam recv report and steam send report functions. This problem was introduced in version v4.18 and is fixed in Linux Kernel version...