23 matches found
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15
A flaw was discovered in the Linux kernel’s Traffic Control TC subsystem. Using a specific networking configuration—redirecting egress packets to ingress using the TC “mirred” action—a local unprivileged user could trigger a CPU soft lockup ABBA deadlock when the transport protocol in use TCP or...
PT-2024-35613
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc4-dirty Description A use-after-free issue has been identified in the Linux kernel's sunrpc module, specifically related to the kernel's TCP socket handling. This issue arises when the TCP socket in a...
kernel: mptcp: ensure snd_una is properly initialized on connect
A vulnerability was found in the Linux kernel's match component in the initialization of the snduna variable while establishing a connection. The issue arises when retransmission occurs after a fallback, leaving the snduna sequence number uninitialized, leading to unpredictable behavior and...
kernel: tcp: avoid too many retransmit packets
A vulnerability was found in the tcpretransmittimer function in the Linux kernel's TCP implementation. This issue occurs when a TCP socket uses TCPUSERTIMEOUT and the peer's window retracts to zero, leading to excessive retransmission of packets every two milliseconds for up to four minutes after...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to properly set a timeout during a large number of DATAFIN retransmissions, resulting in a...
tcp: avoid too many retransmit packets
...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from allowing multiple retransmissions of packets...
CVE-2021-47131 net/tls: Fix use-after-free after the TLS device goes down and up
In the Linux kernel, the following vulnerability has been resolved: net/tls: Fix use-after-free after the TLS device goes down and up When a netdev with active TLS offload goes down, tlsdevicedown is called to stop the offload and tear down the TLS context. However, the socket stays alive, and it...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible corruption of the skforwardmemory method of the mptcp module during retransmissions...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from validating UDP retransmissions to prevent shift out-of-bounds...
CVE-2023-44198
An Improper Check for Unusual or Exceptional Conditions vulnerability in the SIP ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated network-based attacker to cause an integrity impact in connected networks. If the SIP ALG is configured and a device receives a...
CVE-2023-44198 Junos OS: SRX Series and MX Series: SIP ALG doesn't drop specifically malformed retransmitted SIP packets
An Improper Check for Unusual or Exceptional Conditions vulnerability in the SIP ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated network-based attacker to cause an integrity impact in connected networks. If the SIP ALG is configured and a device receives a...
kernel: net: CPU soft lockup in TC mirred egress-to-ingress action
A flaw was found in the Linux kernel Traffic Control TC subsystem. Using a specific networking configuration redirecting egress packets to ingress using TC action "mirred" a local unprivileged user could trigger a CPU soft lockup ABBA deadlock when the transport protocol in use TCP or SCTP does a...
kernel: net: CPU soft lockup in TC mirred egress-to-ingress action
A flaw was found in the Linux kernel Traffic Control TC subsystem. Using a specific networking configuration redirecting egress packets to ingress using TC action "mirred" a local unprivileged user could trigger a CPU soft lockup ABBA deadlock when the transport protocol in use TCP or SCTP does a...
kernel: net: CPU soft lockup in TC mirred egress-to-ingress action
A flaw was found in the Linux kernel Traffic Control TC subsystem. Using a specific networking configuration redirecting egress packets to ingress using TC action "mirred" a local unprivileged user could trigger a CPU soft lockup ABBA deadlock when the transport protocol in use TCP or SCTP does a...
OracleVM 3.3 : ipmitool (OVMSA-2020-0012)
The remote OracleVM system is missing necessary patches to address critical security updates : - Backport fix for CVE-2020-5208 - Fix missing return in ipmikontronoemmain - CID1261317 - rebase to latest stable upstream version - resolves: rhbz1253416 - remove the redundant OpenIMPI dependency -...
Packet Pacing Benefits for Midgress Traffic
Akamai's Smooth Delivery Pacing SDP made an impression last year by increasing client network performance while simultaneously reducing retransmissions. If you missed the details and want to learn more about SDP, please check out our past discussion. In this article, we'll explore if SDP's benefi...
PT-2018-8803 · Cisco · Cisco Firesight System
Name of the Vulnerable Software and Affected Versions: Cisco FireSIGHT System Software affected versions not specified Description: A vulnerability in the detection engine could allow an unauthenticated, remote attacker to bypass a URL-based access control policy. The issue arises from the...
CVE-2014-0875
Active Cloud Engine ACE in IBM Storwize V7000 Unified 1.3.0.0 through 1.4.3.x allows remote attackers to bypass intended ACL restrictions in opportunistic circumstances by leveraging incorrect ACL synchronization over an unreliable NFS connection that requires retransmissions...
Ubuntu Update for openssl USN-2079-1
Check for the Version of openssl OpenVAS Vulnerability Test $Id: gbubuntuUSN20791.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for openssl USN-2079-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software...