Astra Linux - уязвимость в linux-5.10, linux

The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. This occurs because of use of Algorithm 4 "Double-Hash Port Selection Algorithm" of RFC 6056...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013305)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013305 advisory. The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. This occurs because of use of Algorithm 4 Double-Hash...

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the secureseq function does not randomize the timestamp offset when ports are involved,...

EulerOS Virtualization 2.10.0 : avahi (EulerOS-SA-2026-1549)

According to the versions of the avahi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them...

EulerOS 2.0 SP10 : avahi (EulerOS-SA-2026-1301)

According to the versions of the avahi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them sequentially after...

SUSE-SU-2026:20491-1 Security update for avahi

This update for avahi fixes the following issues: - CVE-2024-52615: Fixed possible DNS response injection via the use of fixed source ports for wide-area DNS queries bsc1233421...

EulerOS 2.0 SP12 : avahi (EulerOS-SA-2026-1081)

According to the versions of the avahi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS...

EulerOS 2.0 SP12 : bind (EulerOS-SA-2026-1082)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the...

EulerOS 2.0 SP11 : avahi (EulerOS-SA-2025-2454)

According to the versions of the avahi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS...

bind: Cache poisoning due to weak PRNG

A vulnerability was found in BIND resolvers caused by a weakness in the Pseudo Random Number Generator PRNG. This weakness allows an attacker to potentially predict the source port and query ID used by BIND, enabling cache poisoning attacks. If successful, the attacker can inject malicious DNS...

Unspecified Vulnerability in ISC BIND 9

ISC BIND 9 is a domain name system software from the ISC organization. A security vulnerability exists in ISC BIND 9 that stems from a weakness in the pseudo-random number generator, which can be exploited by an attacker to cause prediction of source ports and query IDs...

EUVD-2008-3616

Malware in sbrugna...

EUVD-2008-3891

Malware in sbrugna...

EUVD-2008-4083

Malware in sbrugna...

EUVD-2024-32906

Malicious code in bioql PyPI...

EUVD-2022-53489

Malicious code in bioql PyPI...

CLSA-2025-1755886204 avahi: Fix of CVE-2024-52615

CVE-2024-52615: fix issue with Avahi-daemon relying on fixed source ports for wide-area DNS queries to prevent attacks with injected malicious DNS responses...

TencentOS Server 4: avahi (TSSA-2025:0544)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0544 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

avahi: Avahi Wide-Area DNS Uses Constant Source Port

A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Linux Kernel Observable Discrepancy (CVE-2022-32296)

The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. This occurs because of use of Algorithm 4 Double-Hash Port Selection Algorithm of RFC 6056. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-...