PT-2026-43687

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Smack access control module where writing a previously used value to the '/smack/doi' endpoint disables networking for non-ambient labels. This occurs because the...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992736)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992736 advisory. In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-47659)

smack: tcp: vulnerability in Smack's TCP/IPv4 labeling allows packets to be incorrectly labeled, enabling unauthorized data writing from one label to another. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990822)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990822 advisory. In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986596)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986596 advisory. In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4...

NewStart CGSL MAIN 7.02 : kernel Multiple Vulnerabilities (NS-SA-2025-0118)

"The remote NewStart CGSL host, running version MAIN 7.02, has kernel packages installed that are affected by multiple vulnerabilities: - In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Smack: TCP/IPv4; fixed incorrect labeling. Currently, Smack follows the labeling scheme for incoming TCP/IPv4 connections. When a connection labeled “foo” connects to a connection labeled “bar” via TCP/IPv4, “foo” always appears ...

SUSE CVE-2024-47659

In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1...

DEBIAN-CVE-2024-47659

In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1...

UBUNTU-CVE-2024-47659

In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1...

PT-2024-7578

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.29.4 Description The issue is related to the smack inet conn request function in the Linux kernel's Smack implementation, which incorrectly labels packets in IPv4 connections. This can allow an unauthorized...