CVE-2019-16650

On Supermicro X10 and X11 products, a client's access privileges may be transferred to a different client that later has the same socket file descriptor number. In opportunistic circumstances, an attacker can simply connect to the virtual media service, and then connect virtual USB devices to the...

SUSE CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

EUVD-2025-176307

Malicious code in socket-file-analyze-encode-monitor npm...

EUVD-2025-180100

Malicious code in beta-key-promise-socket-file npm...

EUVD-2013-1465

Malware in sbrugna...

EUVD-2013-6296

Malware in sbrugna...

EUVD-2016-1551

Malware in sbrugna...

EUVD-2013-4296

Malware in sbrugna...

EUVD-2013-0001

Malware in sbrugna...

EUVD-2017-17873

Malware in sbrugna...

EUVD-2017-17874

Malware in sbrugna...

cups security update

1:2.3.3op2-27 - Revert the cups-libs license identifier to the 'legacy' format 1:2.3.3op2-26 - RHEL-40388 cups: Cupsd Listen arbitrary chmod 0140777 - Delete the domain socket file after stopping the cups.socket service - Fix cupsd Listener checks 1:2.3.3op2-25 - CVE-2024-35235 cups: Cupsd Listen...

PT-2024-21132 · Nanomq · Nanomq

Name of the Vulnerable Software and Affected Versions: nanomq version 0.21.2 Description: The issue is a Use-After-Free vulnerability located in /nanomq/nng/src/core/socket.c. Recommendations: For nanomq version 0.21.2, at the moment, there is no information about a newer version that contains a...

Race Condition

libredis.so is vulnerable to Race Condition. The vulnerability allows an attacker to gain unauthorized access to a Redis server by exploiting a race condition that occurs when the server is starting up. The attacker could exploit this vulnerability by sending a specially crafted request to a...

OESA-2023-1263 screen security update

Screen is a full-screen window manager that multiplexes a physical terminal between several processes,typically interactive shells. Security Fixes: socket.c in GNU Screen through 4.9.0, when installed setuid or setgid the default on platforms such as Arch Linux and FreeBSD, allows local users to...

CVE-2023-30612

Cloud hypervisor is a Virtual Machine Monitor for Cloud workloads. This vulnerability allows users to close arbitrary open file descriptors in the Cloud Hypervisor process via sending malicious HTTP request through the HTTP API socket. As a result, the Cloud Hypervisor process can be easily...

SUSE CVE-2005-1725

launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory...

SUSE CVE-2012-3378

The registerapplication function in atk-adaptor/bridge.c in GNOME at-spi2-atk 2.5.2 does not seed the random number generator and generates predictable temporary file names, which makes it easier for local users to create or truncate files via a symlink attack on a temporary socket file in...

SUSE CVE-2013-6493

The LiveConnect implementation in plugin/icedteanp/IcedTeaNPPlugin.cc in IcedTea-Web before 1.4.2 allows local users to read the messages between a Java applet and a web browser by pre-creating a temporary socket file with a predictable name in /tmp...