EUVD-2000-0487

Malware in sbrugna...

CVE-2025-38236 af_unix: Don't leave consecutive consumed OOB skbs.

In the Linux kernel, the following vulnerability has been resolved: afunix: Don't leave consecutive consumed OOB skbs. Jann Horn reported a use-after-free in unixstreamreadgeneric. The following sequences reproduce the issue: $ python3 from socket import s1, s2 = socketpairAFUNIX, SOCKSTREAM...

CVE-2024-3219

The “socket” module provides a pure-Python fallback to the socket.socketpair function for platforms that don’t support AFUNIX, such as Windows. This pure-Python implementation uses AFINET or AFINET6 to create a local connected pair of sockets. The connection between the two sockets was not verifi...

PT-2024-24457 · Python +1 · Cpython +1

Name of the Vulnerable Software and Affected Versions: CPython versions 3.5 through latest Description: The issue arises from the "socket" module's pure-Python fallback for the socket.socketpair function on platforms that don't support AF UNIX, such as Windows. This implementation uses AF INET or...

CVE-2012-2192

Summary: CVE-2012-2192 affects IBM AIX 5.3, 6.1, 7.1 and VIOS 2.2.1.4-FP-25 SP-02. Vulnerability: socketpair() usage can cause a local denial-of-service (system crash) when a socket remains on the free list, triggering a crash in the socket code path. Root cause: crash tied to how sockets are man...

CVE-2000-0489

FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers...