Lucene search
K

14 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/27 8:8 a.m.7 views

sctp: purge outqueue on stale COOKIE-ECHO handling

...

9.8CVSS5.8AI score0.00335EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/25 2:20 a.m.9 views

SUSE CVE-2026-52924

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association setup/reconfiguration. In this path, the outbound stream scheduler state...

7CVSS5.8AI score0.00335EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/24 8:21 p.m.10 views

CVE-2026-52924

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. This vulnerability, a use-after-free, occurs when the system processes a Stale Cookie ERROR during the setup or reconfiguration of an SCTP association. A remote attacker could exploit this by sending...

9.8CVSS5.9AI score0.00335EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 8:16 a.m.8 views

CVE-2026-52924

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association setup/reconfiguration. In this path, the outbound stream scheduler state...

9.8CVSS0.00335EPSS
Exploits0References11
OSV
OSV
added 2026/06/24 8:16 a.m.4 views

UBUNTU-CVE-2026-52924

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association setup/reconfiguration. In this path, the outbound stream scheduler state...

9.8CVSS5.6AI score0.00335EPSS
Exploits0References11
OSV
OSV
added 2026/06/24 7:14 a.m.2 views

CVE-2026-52924 sctp: purge outqueue on stale COOKIE-ECHO handling

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association setup/reconfiguration. In this path, the outbound stream scheduler state...

9.8CVSS5.8AI score0.00335EPSS
Exploits0References14
CVE
CVE
added 2026/06/24 7:14 a.m.35 views

CVE-2026-52924

The CVE-2026-52924 entry describes a Linux kernel SCTP use-after-free vulnerability triggered during Stale COOKIE-ECHO handling. In COOKIE_WAIT transitions, sctp_stream_update() can leave a stale out_curr pointer after rolling back from COOKIE_ECHOED to COOKIE_WAIT, so scheduler paths (FCFS/RR/PR...

9.8CVSS5.8AI score0.00335EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2026/06/24 7:14 a.m.32 views

CVE-2026-52924 sctp: purge outqueue on stale COOKIE-ECHO handling

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association setup/reconfiguration. In this path, the outbound stream scheduler state...

9.8CVSS0.00335EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/24 7:14 a.m.6 views

CVE-2026-52924

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association setup/reconfiguration. In this path, the outbound stream scheduler state...

9.8CVSS5.7AI score0.00335EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/06/24 7:14 a.m.9 views

EUVD-2026-38727

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association setup/reconfiguration. In this path, the outbound stream scheduler state...

5.8AI score0.00335EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.10 views

PT-2026-51717

Name of the Vulnerable Software and Affected Versions Linux kernel version 7.1.0-rc1-00305-gbd3a4795d574 Description A use-after-free issue exists in the SCTP implementation of the Linux kernel. When a Stale Cookie ERROR is received, the association is rolled back from COOKIE ECHOED to COOKIE WAI...

9.8CVSS5.8AI score0.00335EPSS
Exploits0References91
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-52924

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sctp: purge outqueue on stale COOKIE-ECHO handling sctpstreamupdate is only invoked when the association is moved into COOKIEWAIT during association...

9.8CVSS6.1AI score0.00335EPSS
Exploits0References3
OSV
OSV
added 2026/06/17 8:57 a.m.2 views

SUSE-SU-2026:22156-1 Security update for curl

This update for curl fixes the following issues: - CVE-2026-4873: connection reuse ignores TLS requirement bsc1262631. - CVE-2026-5545: wrong reuse of HTTP Negotiate connection bsc1262632. - CVE-2026-6253: proxy credentials leak over redirect-to proxy bsc1262635. - CVE-2026-6276: stale custom...

7.5CVSS5.8AI score0.00639EPSS
Exploits5References11
Microsoft CVE
Microsoft CVE
added 2026/05/14 8:1 a.m.11 views

stale custom cookie host causes cookie leak

...

7.5CVSS5.8AI score0.00291EPSS
Exploits1
Rows per page
Query Builder