Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: net/9p: A potential socket leak has been fixed in p9socketopen. Both p9fdcreatetcp and p9fdcreateunix will call p9socketopen. If the creation of p9transfd fails, both p9fdcreatetcp and p9fdcreateunix will return an error...

The vulnerability of the p9_socket_open() function in the net/9p/trans_fd.c module of the 9P protocol implementation in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the p9socketopen function in the net/9p/transfd.c module of the 9P protocol implementation in the Linux operating system is related to the failure to release resources after their useful period has ended. Exploiting this vulnerability could allow an attacker to cause service...

PT-2023-33255 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.82 Description: A potential socket leak was identified in the p9 socket open function of the net/9p protocol. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

CVE-2015-9241

Certain input passed into the If-Modified-Since or Last-Modified headers will cause an 'illegal access' exception to be raised. Instead of sending a HTTP 500 error back to the sender, hapi node module before 11.1.3 will continue to hold the socket open until timed out default node timeout is 2...

CVE-2018-8779

In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the UNIXServer.open and UNIXSocket.open methods are not checked for null characters. It may be connected to an unintended socket...