CVE-2026-7164

Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affected systems to panic. This affects any system where pf is configured to process traffic, independent...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001139)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001139 advisory. In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102, an error in the sctpmakechunk function net/sctp/smmakechunk.c when handling...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003562)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003562 advisory. In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102, an error in the sctpmakechunk function net/sctp/smmakechunk.c when handling...

EUVD-2006-3082

Malware in sbrugna...

EUVD-2006-1531

Malware in sbrugna...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-386036)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-386036 advisory. In the Linux kernel, the following vulnerability has been resolved: sctp: properly validate chunk size in sctpsfootb A size validation fix similar to that in Commit...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-36898: gpiolib: cdev: fix uninitialised kfifo bsc1225736. CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088. CVE-2024-50142: xfrm: validate new...

CVE-2024-50299

In the Linux kernel, the following vulnerability has been resolved: sctp: properly validate chunk size in sctpsfootb A size validation fix similar to that in Commit 50619dbf8db7 "sctp: add size validation when walking chunks" is also required in sctpsfootb to address a crash reported by syzbot:...

AZL-53567 CVE-2024-50299 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: sctp: properly validate chunk size in sctpsfootb A size validation fix similar to that in Commit 50619dbf8db7 "sctp: add size validation when walking chunks" is also required in sctpsfootb to address a crash reported by syzbot:...

Updated thunderbird packages fix a security vulnerability

Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk. CVE-2020-16044 See upstream releasenotes for other changes...

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2021:0080-1)

This update for MozillaFirefox fixes the following issues : Firefox Extended Support Release 78.6.1 ESR - Fixed: Critical security issue MFSA 2021-01 bsc1180623 - CVE-2020-16044 Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk Note that Tenable Network Security has extracted...

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2021:0072-1)

This update for MozillaFirefox fixes the following issues : Firefox Extended Support Release 78.6.1 ESR - Fixed: Critical security issue MFSA 2021-01 bsc1180623 - CVE-2020-16044 Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk Note that Tenable Network Security has extracted...

Security fix for the ALT Linux 10 package thunderbird version 78.6.1-alt1

Jan. 12, 2021 Andrey Cherepanov 78.6.1-alt1 - New version 78.6.1. - Security fixes: + CVE-2020-16044 Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk...

Critical: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Critical: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Critical: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Scientific Linux Security Update : firefox on SL7.x i686/x86_64 (2021:0053)

The remote Scientific Linux 7 host has packages installed that are affected by a vulnerability as referenced in the SLSA-2021:0053-1 advisory. - Mozilla: Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk CVE-2020-16044 Note that Nessus has not tested for this issue but has...

Security fix for the ALT Linux 10 package firefox-esr version 78.6.1-alt1

Jan. 6, 2021 Andrey Cherepanov 78.6.1-alt1 - New version 78.6.1. - Security fixes: + CVE-2020-16044 Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk...

CentOS 6 : firefox (RHSA-2020:2036)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2036 advisory. - A race condition when running shutdown code for Web Worker led to a use-after-free vulnerability. This resulted in a potentially exploitable crash...

Scientific Linux Security Update : firefox on SL7.x x86_64 (20200506)

Security Fixes : - Mozilla: Use-after-free during worker shutdown CVE-2020-12387 - Mozilla: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8 CVE-2020-12395 - Mozilla: Buffer overflow in SCTP chunk input validation CVE-2020-6831 - Mozilla: Arbitrary local file access with 'Copy as cURL'...