CVE-2026-43042 mpls: add seqcount to protect the platform_label{,s} pair

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001890)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001890 advisory. The ip6routeadd function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to caus...

EUVD-2019-5304

Malware in sbrugna...

SUSE CVE-2014-2309

The ip6routeadd function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to cause a denial of service memory consumption via a flood of ICMPv6 Router Advertisement packets...

SKYWORTH Digital Technology RN510 跨站脚本漏洞

The RN510 is a dual-band wireless AC2100 access point from Skyworth Digital Technology. A cross-site request forgery vulnerability exists in /cgi-bin/net-routeadd.asp and /cgi-bin/sec-urlfilter.asp in the Skyworth Digital Technology RN510 version V.3.1.0.4. No detailed vulnerability details are...

CVE-2019-14047

While IPA driver processes route add rule IOCTL, there is no input validation of the rule ID prior to adding the rule to the IPA HW commit list in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

CVE-2019-14047

While IPA driver processes route add rule IOCTL, there is no input validation of the rule ID prior to adding the rule to the IPA HW commit list in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

Command injection

An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of adding new routes to the device. It seems that the POST parameters passed in this request to set up routes on the device can be set in such a way...

UBUNTU-CVE-2014-2309

The ip6routeadd function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to cause a denial of service memory consumption via a flood of ICMPv6 Router Advertisement packets...

Windows Vista iphlpapi.dll本地内核栈溢出漏洞

BUGTRAQ ID: 32357 Windows Vista是微软发布的最新版本的操作系统。 在使用CreateIpForwardEntry2方式向IPv4路由表添加路由项时，如果对MIBIPFORWARDROW2结构所包含的DestinationPrefix结构中的目标PrefixLength成员传送了大于32的非法值的话，就会破坏内核空间内存，导致随机的蓝屏崩溃。传送的非法值越大，所触发的崩溃就会越快出现。 此外如果使用系统自带的route add命令并在子网掩码中使用了非法值的话，该命令也可以触发相同的缓冲区溢出。 Microsoft Windows Vista Microsof...

Microsoft VISTA TCP/IP stack buffer overflow

phion Security Advisory 21/10/2008 Microsoft VISTA TCP/IP stack buffer overflow Summary ----------------------------- Microsoft Device IO Control wrapped by the iphlpapi.dll API shipping with Windows Vista 32 bit and 64 bit contains a possibly exploitable, buffer overflow corrupting kernel memory...