406 matches found
Telesquare TLR-2005KSH - Remote Command Execution
Telesquare Tlr-2005Ksh is a Sk Telecom Lte router from South Korea's Telesquare company.Telesquare TLR-2005Ksh versions 1.0.0 and 1.1.4 have an unauthorized remote command execution vulnerability. An attacker can exploit this vulnerability to execute system commands without authorization through...
kernel: net: use dst_dev_rcu() in sk_setup_caps()
In the Linux kernel, the following vulnerability has been resolved: net: use dstdevrcu in sksetupcaps Use RCU to protect accesses to dst-dev from sksetupcaps and skdstgsomaxsize. Also use dstdevrcu in ip6dstmtumaybeforward, and ipdstmtumaybeforward. ip4dsthoplimit can use dstdevnetrcu...
CVE-2025-71261
creationtimestamp| type| source ---|---|--- 2026-06-16 17:23:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mogctq4vek2m 2026-06-16 19:00:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mogibualxh25...
CVE-2026-11304
creationtimestamp| type| source ---|---|--- 2026-06-05 03:11:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnj5ybwh2m2o 2026-06-05 13:24:44+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918 2026-06-06 07:00:26+00:00| seen|...
CVE-2026-46158
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: always decrease sk refcount When an ADDADDR is retransmitted, the sk is held in skresettimer. It should then be released in all cases at the end. Some unlikely checks were returning directly instead of...
PT-2026-44227
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In stacked Linux Security Module LSM configurations, the sock has perm and nlmsg sock has extended perms functions incorrectly dereference sk-sk security directly. This assumes the SELin...
CVE-2026-46015
tcp: call skdataready after listener migration...
UBUNTU-CVE-2026-45966
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix NULL pointer dereference in unixneedsrevalidation When receiving file descriptors via SCMRIGHTS, both the socket pointer and the socket's sk pointer can be NULL during socket setup or teardown, causing NULL pointer...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021636)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021636 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsocket: fix sk refcount leaks We must put 'sk' reference before returning. Tenable...
CVE-2026-44966
creationtimestamp| type| source ---|---|--- 2026-05-09 00:40:16+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-j658-c2gf-x6pq 2026-05-26 23:00:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mms3vppgf52q 2026-05-27 01:07:12+00:00| seen|...
PT-2026-39072
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A divide-by-zero exception occurs in the tipc sk filter connect function. A user can set the conn timeout variable to a value between 0 and 3 using setsockoptTIPC CONN TIMEOUT. When a SY...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the conntimeout value being less than 4 in the tipcskfilterconnect function, leading to a zero...
Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: afunix: Fixed data races related to sk-skshutdown. KCSAN identified a data race involving sk-skshutdown, where functions like unixreleasesock and unixshutdown update the variable under unixstatelock; additionally, unixpoll and...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: TCP: Fixed handling of refcnt in inethashconnect. syzbot reported a warning in sknullsdelnodeinitrcu. The commit 66b60b0c8c4a “dccp/tcp: Unhash sk from ehash for tb2 allocation failure after checkestablished” attempted to fix ...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: bpf, sockmap: Fixed the warning related to sk-skforwardalloc in skstreamkillqueues. When running testsockmap in selftests, the following warning appears: WARNING: CPU: 2 PID: 197 at net/core/stream.c:205...
Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: Net: Fixed the issue where load values were being altered in sk-skstamp during sockrecvcmsgs. KCSAN identified a data race in sockrecvcmsgs, where the read access to sk-skstamp requires a READONCE operation. Bug: KCSAN: Data...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: net: fixed a refcount bug in skpsockget2. Syzkaller reported the refcount bug as follows: ------------ cut here ------------ refcountt: saturated; memory was leaking. WARNING: CPU: 1 PID: 3605 at lib/refcount.c:19...
CVE-2026-43016 bpf: sockmap: Fix use-after-free of sk->sk_socket in sk_psock_verdict_data_ready().
In the Linux kernel, the following vulnerability has been resolved: bpf: sockmap: Fix use-after-free of sk-sksocket in skpsockverdictdataready. syzbot reported use-after-free of AFUNIX socket's sk-sksocket in skpsockverdictdataready. 0 In unixstreamsendmsg, the peer socket's -skdataready is calle...
Exploit for CVE-2026-42208
LiteLLM Proxy SQL Injection GHSA-r75f-5x8p-qvmc A reproduct...
CVE-2026-31474 can: isotp: fix tx.buf use-after-free in isotp_sendmsg()
In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in isotpsendmsg isotpsendmsg uses only cmpxchg on so-tx.state to serialize access to so-tx.buf. isotprelease waits for ISOTPIDLE via waiteventinterruptible and then calls kfreeso-tx.buf. If a...