16 matches found
EUVD-2003-0687
Malware in sbrugna...
EUVD-2013-2802
Malware in sbrugna...
CVE-2025-38079 crypto: algif_hash - fix double free in hash_accept
In the Linux kernel, the following vulnerability has been resolved: crypto: algifhash - fix double free in hashaccept If accept2 is called on socket type algifhash with MSGMORE flag set and cryptoahashimport fails, sk2 is freed. However, it is also freed in afalgrelease, leading to...
EulerOS 2.0 SP11 : kernel (EulerOS-SA-2025-1359)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : net: fix data-races around sk-skforwardallocCVE-2024-53124 nvme-multipath: defer partition scanningCVE-2024-53093 bpf: synclinkedregs must preserv...
CVE-2023-52986 bpf, sockmap: Check for any of tcp_bpf_prots when cloning a listener
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Check for any of tcpbpfprots when cloning a listener A listening socket linked to a sockmap has its skprot overridden. It points to one of the struct proto variants in tcpbpfprots. The variant depends on the socket'...
SUSE SLES15 Security Update : kernel (Live Patch 1 for SLE 15 SP6) (SUSE-SU-2025:0187-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0187-1 advisory. This update for the Linux Kernel 6.4.0-150600237 fixes several issues. The following security issues were fixed: - CVE-2024-50264: vsock/virtio...
CVE-2025-23016
FastCGI fcgi2 aka fcgi 2.x through 2.4.4 has an integer overflow and resultant heap-based buffer overflow via crafted nameLen or valueLen values in data to the IPC socket. This occurs in ReadParams in fcgiapp.c...
SUSE-SU-2024:4346-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-26782: mptcp: fix double-free on socket dismantle bsc1222590. - CVE-2024-44932: idpf: fix UAFs when destroying the queues bsc1229808. - CVE-2024-44964: idpf...
SUSE-SU-2024:1757-1 Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP5)
This update for the Linux Kernel 5.14.21-1505005528 fixes several issues. The following security issues were fixed: - CVE-2023-6931: Fixed a heap out-of-bounds write vulnerability in perfreadgroup bsc1216644. - CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi bsc1221302. - CVE-2022-48651:...
SUSE-SU-2023:0237-1 Security update for the Linux Kernel (Live Patch 31 for SLE 15 SP2)
This update for the Linux Kernel 5.3.18-15020024134 fixes several issues. The following security issues were fixed: - CVE-2022-3424: Fixed use-after-free in grusetcontextoption, grufault and gruhandleusercallos that could lead to kernel panic bsc1204167. - CVE-2022-2602: Fixed a local privilege...
MGASA-2021-0559 Updated pjproject packages fix security vulnerability
Updated pjproject packages fix security vulnerability: In PJSIP before version 2.11.1, there are a couple of issues found in the SSL socket. First, a race condition between callback and destroy, due to the accepted socket having no group lock. Second, the SSL socket parent/ listener may get...
[Full-Disclosure] Crashes and socket unreacheable in Armagetron Advanced 0.2.7.0
Luigi Auriemma Application: Armagetron http://armagetron.sourceforge.net Armagetron Advanced http://armagetronad.sourceforge.net Versions: Armagetron = 0.2.6.0 Armagetron Advanced = 0.2.7.0 Platforms: multiplatform Windows, Linux and others Bugs: A crash caused by big descriptor ID B crash caused...
Xpand Rally 1.0.0.0 (Server/Clients) - Crash
/ by Luigi Auriemma / include include include ifdef WIN32 include / inserted winerr.h /str0ke / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError case 1000...
Debian DSA-332-1 : linux-kernel-2.4.17 - several vulnerabilities
A number of vulnerabilities have been discovered in the Linux kernel. - CVE-2002-0429: The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a binary compatibility interface lcall - CAN-2003-0001: Multip...
Debian 2.12.2 Mandrake 6.06.17.0 RedHat 6.x - rpc.lockd Remote Denial of Service
Debian 2.12.2 Mandrake 6.06.17.0 RedHat 6.x - rpc.lockd Remote Denial of Service source: https://www.securityfocus.com/bid/1372/info A denial of service attack exists in the NFS lock daemon supplied with Linux. By connecting to the port rpc.lockd is running on, and supplying random input, it will...
ISC BIND 8.2.2 / IRIX 6.5.17 / Solaris 7.0 - NXT Overflow / Denial of Service
// source: https://www.securityfocus.com/bid/788/info There are several vulnerabilities in recent BIND packages pre 8.2.2. The first is a buffer overflow condition which is a result of BIND improperly validating NXT records. The consequence of this being exploited is a remote root compromise...