Lucene search
+L

505 matches found

ubuntucve
ubuntucve
added 2024/08/29 11:15 a.m.31 views

CVE-2021-4442

In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity tests to TCPQUEUESEQ Qingyu Li reported a syzkaller bug where the repro changes RCV SEQ after restoring data in the receive queue. mprotect0x4aa000, 12288, PROTREAD = 0 mmap0x1ffff000, 4096, PROTNONE,...

5.5CVSS6.4AI score0.00393EPSS
Exploits1References7
vulnrichment
vulnrichment
added 2024/08/29 9:5 a.m.19 views

CVE-2021-4442 tcp: add sanity tests to TCP_QUEUE_SEQ

In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity tests to TCPQUEUESEQ Qingyu Li reported a syzkaller bug where the repro changes RCV SEQ after restoring data in the receive queue. mprotect0x4aa000, 12288, PROTREAD = 0 mmap0x1ffff000, 4096, PROTNONE,...

7AI score0.00393EPSS
Exploits1References5
cve
cve
added 2024/08/29 9:5 a.m.115 views

CVE-2021-4442

CVE-2021-4442 – The Linux kernel TCP stack vulnerability described as: a syzkaller repro could cause RCV_SEQ to be advanced after data restoration in the receive queue, enabling an out-of-order or invalid sequence handling when TCP_QUEUE_SEQ is used on non-empty queues. The connected documents (A...

5.5CVSS6.7AI score0.00393EPSS
Exploits1References5Affected Software1
redhat
redhat
added 2024/08/28 12:34 p.m.2 views

kernel: netfilter: validate user input for expected length

CVE-2024-35896 is a vulnerability in the Linux kernel's Netfilter component, where the setsockopt function fails to properly validate the length of user-supplied data before copying it into kernel space. This oversight can lead to out-of-bounds memory access, potentially causing system crashes or...

7.1CVSS7.5AI score0.00227EPSS
Exploits0References5
redhat
redhat
added 2024/08/08 4:53 a.m.4 views

kernel: netfilter: validate user input for expected length

CVE-2024-35896 is a vulnerability in the Linux kernel's Netfilter component, where the setsockopt function fails to properly validate the length of user-supplied data before copying it into kernel space. This oversight can lead to out-of-bounds memory access, potentially causing system crashes or...

7.1CVSS7.5AI score0.00227EPSS
Exploits0References5
redhat
redhat
added 2024/08/08 4:44 a.m.4 views

kernel: netfilter: validate user input for expected length

CVE-2024-35896 is a vulnerability in the Linux kernel's Netfilter component, where the setsockopt function fails to properly validate the length of user-supplied data before copying it into kernel space. This oversight can lead to out-of-bounds memory access, potentially causing system crashes or...

7.1CVSS7.5AI score0.00227EPSS
Exploits0References5
redhat
redhat
added 2024/08/07 9:43 a.m.2 views

kernel: netfilter: validate user input for expected length

CVE-2024-35896 is a vulnerability in the Linux kernel's Netfilter component, where the setsockopt function fails to properly validate the length of user-supplied data before copying it into kernel space. This oversight can lead to out-of-bounds memory access, potentially causing system crashes or...

7.1CVSS7.5AI score0.00227EPSS
Exploits0References5
redhat
redhat
added 2024/08/07 12:28 a.m.5 views

kernel: tls: fix missing memory barrier in tls_init

In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tlsinit In tlsinit, a write memory barrier is missing, and store-store reordering may cause NULL dereference in tlssetsockopt,getsockopt. CPU0 CPU1 ----- ----- // In tlsinit // In tlsctxcreate c...

5.5CVSS6.5AI score0.00253EPSS
Exploits0References5
redhat
redhat
added 2024/08/07 12:14 a.m.4 views

kernel: netfilter: validate user input for expected length

CVE-2024-35896 is a vulnerability in the Linux kernel's Netfilter component, where the setsockopt function fails to properly validate the length of user-supplied data before copying it into kernel space. This oversight can lead to out-of-bounds memory access, potentially causing system crashes or...

7.1CVSS7.5AI score0.00227EPSS
Exploits0References5
redhat
redhat
added 2024/07/24 2:3 p.m.7 views

kernel: tls: fix missing memory barrier in tls_init

In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tlsinit In tlsinit, a write memory barrier is missing, and store-store reordering may cause NULL dereference in tlssetsockopt,getsockopt. CPU0 CPU1 ----- ----- // In tlsinit // In tlsctxcreate c...

5.5CVSS6.5AI score0.00253EPSS
Exploits0References5
redhat
redhat
added 2024/07/24 1:20 p.m.10 views

kernel: tls: fix missing memory barrier in tls_init

In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tlsinit In tlsinit, a write memory barrier is missing, and store-store reordering may cause NULL dereference in tlssetsockopt,getsockopt. CPU0 CPU1 ----- ----- // In tlsinit // In tlsctxcreate c...

5.5CVSS6.5AI score0.00253EPSS
Exploits0References5
susecve
susecve
added 2024/06/21 3:52 a.m.3 views

SUSE CVE-2021-47591

In the Linux kernel, the following vulnerability has been resolved: mptcp: remove tcp ulp setsockopt support TCPULP setsockopt cannot be used for mptcp because its already used internally to plumb subflow tcp sockets to the mptcp layer. syzbot managed to trigger a crash for mptcp connections that...

5.5CVSS6.1AI score0.00205EPSS
Exploits0References6
attackerkb
attackerkb
added 2024/06/20 12:15 p.m.6 views

CVE-2022-48751

In the Linux kernel, the following vulnerability has been resolved: net/smc: Transitional solution for clcsock race issue We encountered a crash in smcsetsockopt and it is caused by accessing smc-clcsock after clcsock was released. BUG: kernel NULL pointer dereference, address: 0000000000000020 P...

4.7CVSS5.8AI score0.0021EPSS
Exploits0References4Affected Software1
osv
osv
added 2024/06/20 12:15 p.m.1 views

DEBIAN-CVE-2022-48751

In the Linux kernel, the following vulnerability has been resolved: net/smc: Transitional solution for clcsock race issue We encountered a crash in smcsetsockopt and it is caused by accessing smc-clcsock after clcsock was released. BUG: kernel NULL pointer dereference, address: 0000000000000020 P...

4.7CVSS5.3AI score0.0021EPSS
Exploits0References1
redhatcve
redhatcve
added 2024/06/20 10:53 a.m.19 views

CVE-2021-47591

In the Linux kernel, the following vulnerability has been resolved: mptcp: remove tcp ulp setsockopt support TCPULP setsockopt cannot be used for mptcp because its already used internally to plumb subflow tcp sockets to the mptcp layer. syzbot managed to trigger a crash for mptcp connections that...

5.5CVSS7.1AI score0.00205EPSS
Exploits0References4
nvd
nvd
added 2024/06/19 3:15 p.m.16 views

CVE-2021-47593

In the Linux kernel, the following vulnerability has been resolved: mptcp: clear 'kern' flag from fallback sockets The mptcp ULP extension relies on sk-sksockkern being set correctly: It prevents setsockoptfd, IPPROTOTCP, TCPULP, "mptcp", 6; from working for plain tcp sockets any userspace-expose...

5.5CVSS0.00246EPSS
Exploits0References3
osv
osv
added 2024/06/19 3:15 p.m.1 views

DEBIAN-CVE-2021-47593

In the Linux kernel, the following vulnerability has been resolved: mptcp: clear 'kern' flag from fallback sockets The mptcp ULP extension relies on sk-sksockkern being set correctly: It prevents setsockoptfd, IPPROTOTCP, TCPULP, "mptcp", 6; from working for plain tcp sockets any userspace-expose...

5.5CVSS5.3AI score0.00246EPSS
Exploits0References1
osv
osv
added 2024/06/19 3:15 p.m.3 views

DEBIAN-CVE-2021-47591

In the Linux kernel, the following vulnerability has been resolved: mptcp: remove tcp ulp setsockopt support TCPULP setsockopt cannot be used for mptcp because its already used internally to plumb subflow tcp sockets to the mptcp layer. syzbot managed to trigger a crash for mptcp connections that...

5.5CVSS5.4AI score0.00205EPSS
Exploits0References1
cvelist
cvelist
added 2024/06/19 2:53 p.m.38 views

CVE-2021-47591 mptcp: remove tcp ulp setsockopt support

In the Linux kernel, the following vulnerability has been resolved: mptcp: remove tcp ulp setsockopt support TCPULP setsockopt cannot be used for mptcp because its already used internally to plumb subflow tcp sockets to the mptcp layer. syzbot managed to trigger a crash for mptcp connections that...

0.00205EPSS
Exploits0References2
cve
cve
added 2024/06/19 2:53 p.m.80 views

CVE-2021-47591

CVE-2021-47591 affects the Linux kernel. The vulnerability arises from the TCP_ULP setsockopt mechanism, which is no longer supported for MPTCP as it is already used internally to connect subflow sockets to the MPTCP layer. In syzbot testing, a crash (KASAN null dereference) was observed on mptcp...

5.5CVSS6.8AI score0.00205EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder