13 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003677)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003677 advisory. Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selectiv...
EUVD-2006-0440
Malware in sbrugna...
Security Bulletin: IBM Cloud Pak System addressed vulnerabilities (CVE-2019-11479, CVE-2019-11478, CVE-2019-11477)
Summary IBM Cloud Pak System identified vulnerabilities in SAN VC supporting products. IBM announced a new release for IBM Cloud Pak System in response to vulnerabilities. Vulnerability Details CVEID: CVE-2019-11477 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by an...
Security Bulletin: IBM API Connect V5 is impacted by a denial of service vulnerability in Linux kernel (CVE-2019-11477)
Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2019-11477 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by an integer overflow when processing TCP Selective Acknowledgement SACK capabilities. By sending specially-crafte...
Kernel: tcp: excessive resource consumption while processing SACK blocks allows remote denial of service
An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented, which leads to increased resource...
Kernel: tcp: excessive resource consumption while processing SACK blocks allows remote denial of service
An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented, which leads to increased resource...
Microsoft TCP IP Selective Acknowledgement Denial of Service (MS10-009; CVE-2010-0242)
TCP/IP SACK is used for connections with large TCP window sizes. When SACK is enabled, if a packet or series of packets is dropped the receiver can inform the sender of exactly which data has been received and where the holes in the data are. The sender can then selectively retransmit the missing...
Security feature bypass
The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows remote attackers to cause a denial of service system hang via crafted packets with malformed TCP selective acknowledgement SACK values, aka "TCP/IP Selective Acknowledgement Vulnerability."...
Microsoft Windows TCP/IP Selective Acknowledgement Remote Denial of Service Vulnerability
Description Microsoft Windows TCP/IP protocol implementation is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to render the affected system unresponsive and cause it to automatically restart. Repeated attacks will cause denial-of-service conditions...
FreeBSD Security Advisory (FreeBSD-SA-06:08.sack.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:08.sack.asc ADV FreeBSD-SA-06:08.sack.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft In...
FreeBSD Security Advisory (FreeBSD-SA-06:08.sack.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:08.sack.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2006-0433
Selective Acknowledgement SACK in FreeBSD 5.3 and 5.4 does not properly handle an incoming selective acknowledgement when there is insufficient memory, which might allow remote attackers to cause a denial of service infinite loop...
Memory corruption
Selective Acknowledgement SACK in FreeBSD 5.3 and 5.4 does not properly handle an incoming selective acknowledgement when there is insufficient memory, which might allow remote attackers to cause a denial of service infinite loop...