Lucene search
+L

137 matches found

mscve
mscve
added 2026/05/29 8:4 a.m.8 views

mptcp: pm: ADD_ADDR rtx: always decrease sk refcount

...

5.5CVSS5.8AI score0.00127EPSS
Exploits0
mscve
mscve
added 2026/05/29 8:2 a.m.10 views

mptcp: pm: ADD_ADDR rtx: fix potential data-race

...

9.8CVSS5.4AI score0.00426EPSS
Exploits0
susecve
susecve
added 2026/05/29 1:16 a.m.18 views

SUSE CVE-2026-46158

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: always decrease sk refcount When an ADDADDR is retransmitted, the sk is held in skresettimer. It should then be released in all cases at the end. Some unlikely checks were returning directly instead of...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References3
susecve
susecve
added 2026/05/29 1:15 a.m.18 views

SUSE CVE-2026-46170

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: free sk if last When an ADDADDR is retransmitted, the sk is held in skresettimer, and released at the end. If at that moment, it was the last reference being held, the sk would not be freed. sockput should...

4.7CVSS5.7AI score0.00127EPSS
Exploits0References3
nessus
nessus
added 2026/05/29 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-46170

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mptcp: pm: ADDADDR rtx: free sk if last When an ADDADDR is retransmitted, the sk is held in skresettimer, and released at the end. If at that moment, it was the...

5.5CVSS6.1AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 6:11 p.m.13 views

CVE-2026-46158

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. When an ADDADDR message is retransmitted, a socket reference count may not be properly decreased, leading to a potential resource leak. Over time, this resource exhaustion could allow a remote attacker to cause a Denial of...

7CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 5:29 p.m.10 views

CVE-2026-46170

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. When an ADDADDR message is retransmitted, an issue in socket sk reference counting can prevent the socket from being properly freed. This improper resource management may lead to a Denial of Service DoS condition, where th...

7CVSS5.8AI score0.00127EPSS
Exploits0References4
osv
osv
added 2026/05/28 10:16 a.m.17 views

UBUNTU-CVE-2026-46170

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: free sk if last When an ADDADDR is retransmitted, the sk is held in skresettimer, and released at the end. If at that moment, it was the last reference being held, the sk would not be freed. sockput should...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References6
euvd
euvd
added 2026/05/28 9:36 a.m.12 views

EUVD-2026-32797

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: free sk if last When an ADDADDR is retransmitted, the sk is held in skresettimer, and released at the end. If at that moment, it was the last reference being held, the sk would not be freed. sockput should...

5.7AI score0.00127EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/05/28 9:36 a.m.11 views

CVE-2026-46170

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: free sk if last When an ADDADDR is retransmitted, the sk is held in skresettimer, and released at the end. If at that moment, it was the last reference being held, the sk would not be freed. sockput should...

5.7AI score0.00127EPSS
Exploits0References6Affected Software1
osv
osv
added 2026/05/28 9:36 a.m.1 views

CVE-2026-46158 mptcp: pm: ADD_ADDR rtx: always decrease sk refcount

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: always decrease sk refcount When an ADDADDR is retransmitted, the sk is held in skresettimer. It should then be released in all cases at the end. Some unlikely checks were returning directly instead of...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References8
euvd
euvd
added 2026/05/28 9:36 a.m.10 views

EUVD-2026-32785

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: always decrease sk refcount When an ADDADDR is retransmitted, the sk is held in skresettimer. It should then be released in all cases at the end. Some unlikely checks were returning directly instead of...

5.8AI score0.00127EPSS
Exploits0References3
cve
cve
added 2026/05/28 9:36 a.m.25 views

CVE-2026-46158

The CVE-2026-46158 issue is in the Linux kernel MPTCP implementation: when ADD_ADDR is retransmitted, the socket reference count may not be released reliably, creating a potential resource leak. The fix adds a proper exit path to call sock_put (__sock_put) at the end of the handling and removes a...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References5Affected Software1
cnnvd
cnnvd
added 2026/05/28 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from data competition within the ADDADDR retransmission timer in mptcp pm, potentially leading to...

9.8CVSS5.8AI score0.00426EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/05/28 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the issue where sk is released during the ADDADDR retransmission in mptcp pm. This can lead to sk...

5.8AI score0.00127EPSS
Exploits0References3
cnnvd
cnnvd
added 2026/05/28 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of consistent reduction of socket reference counts during the retransmission of ADDADDR ...

5.8AI score0.00127EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/05/28 12:0 a.m.18 views

PT-2026-44293

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description An issue exists in the Multipath TCP mptcp path manager during the retransmission of an ADD ADDR message. When the sk socket...

9.8CVSS6AI score0.00675EPSS
Exploits5References290
ptsecurity
ptsecurity
added 2026/05/28 12:0 a.m.22 views

PT-2026-44281

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference leak exists in the Multipath TCP mptcp path manager. When an ADD ADDR message is retransmitted, the socket sk is held in the sk reset timer function. Certain execution paths...

9.8CVSS5.9AI score0.00457EPSS
Exploits3References291
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: tcp: tcprtxsynack can be called from process context. Laurent reported the attached report 1. This bug occurs under the following conditions: 0 The kernel is built with CONFIGDEBUGPREEMPT=y. 1 A new passive FastOpen TCP socket is...

5.5CVSS6.2AI score0.00283EPSS
Exploits0References2
euvd
euvd
added 2026/05/06 12:30 p.m.7 views

EUVD-2026-27755

In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udpgrofrglist.sh and udpgrobench.sh are the flakiest tests currently in NIPA. They fail in the same exact way, TCP GRO test stalls occasionally and the test gets killed after 10min. These...

5.8AI score0.00533EPSS
Exploits0References9
Rows per page
Query Builder