4 matches found
CVE-2022-50838 net: stream: purge sk_error_queue in sk_stream_kill_queues()
In the Linux kernel, the following vulnerability has been resolved: net: stream: purge skerrorqueue in skstreamkillqueues Changheon Lee reported TCP socket leaks, with a nice repro. It seems we leak TCP sockets with the following sequence: 1 SOFTIMESTAMPINGTXACK is enabled on the socket. Each ACK...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991279)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991279 advisory. In the Linux kernel, the following vulnerability has been resolved: net: If sock is dead don't access sock's skwq in skstreamwaitmemory Fixes the below NULL pointer...
PT-2023-33693 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue is related to the sk stream kill queues function, where the sk error queue is not properly purged. This could potentially lead to security vulnerabilities, although the actual impa...
PT-2022-36061 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.9 Description: The issue is related to a warning in sk stream kill queues. It was introduced in version v5.18 and fixed in version v6.0.9. The actual impact and attack plausibility have not yet been proven...