10 matches found
kernel: mptcp: fix slab-use-after-free in __inet_lookup_established
A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. Due to incorrect memory allocation for IPv6 subflow child sockets, a use-after-free vulnerability exists. A remote attacker could exploit this by triggering concurrent lookups in the kernel's hash table, potentially leadin...
EUVD-2025-28122
Malicious code in bioql PyPI...
USN-6081-1 linux, linux-aws, linux-aws-hwe, linux-kvm vulnerabilities
Jordy Zomer and Alexandra Sandulescu discovered that the Linux kernel did not properly implement speculative execution barriers in usercopy functions in certain situations. A local attacker could use this to expose sensitive information kernel memory. CVE-2023-0459 Xingyuan Mo discovered that the...
Design/Logic Flaw
Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take advantage of an improper implementation of the 3 way handshake during a TCP connection affecting the communications with commission and service tools. Specially crafted packets may also be sent to Port...
Ubuntu 12.04 LTS : linux vulnerabilities (USN-3072-1)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets RDS implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-5244 Yue Cao et al discovered a flaw in the TCP implementation's handling of...
Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-3071-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3071-1 advisory. Kangjie Lu discovered an information leak in the Reliable Datagram Sockets RDS implementation in the Linux kernel. A local attacker could use this to...
USN-3072-1: Linux kernel vulnerabilities
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets RDS implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-5244 Yue Cao et al discovered a flaw in the TCP implementation's handling of...
Linux TCP Flaw allows Hackers to Hijack Internet Traffic and Inject Malware Remotely
If you are using the Internet, there are the possibilities that you are open to attack. The Transmission Control Protocol TCP implementation in all Linux systems deployed since 2012 version 3.6 and above of the Linux kernel poses a serious threat to Internet users, whether or not they use Linux...
Juniper's Junos Could Open Routers to TCP Attacks
UPDATE Some systems running older versions of Juniper Networks’ Junos OS software could be vulnerable to a transmission control protocol TCP flaw that can enable a hacker to crash and reboot certain routers. According to Australia’s IT News, an attacker could send a specially crafted TCP packet t...
Microsoft, Cisco Issue Patches for TCP DoS Flaw
Vendors are finally releasing patches today for the TCP vulnerabilities first publicized nearly a year ago that affect a huge range of networking products, including any device running a version of Cisco’s IOS software, and a number of Microsoft server and desktop operating systems. Both Microsof...