14 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003677)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003677 advisory. Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selectiv...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989234)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989234 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: fix page frag corruption on page fault Steffen reported a TCP stream corruption for HTTP...
Linux Distros Unpatched Vulnerability : CVE-2019-11478
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP...
SUSE CVE-2019-11478
Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment SACK sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel...
kernel: tcp: fix page frag corruption on page fault
A vulnerability was found in the Linux kernel's TCP subsystem in the tcpsendmsglocked function, which can lead to page fragment corruption during a page fault, which occurs when a TCP stream experiences nested access to the task page fragment due to a page fault while handling memory-mapped...
kernel security and bug fix update
2.6.32-754.21.1.OL6 - Update genkey bug 25599697 2.6.32-754.21.1 - scsi scsi: megaraidsas: return error when create DMA pool failed Tomas Henzl 1712858 CVE-2019-11810 - net net: Set skprotcreator when copying sockets to the right proto Andrea Claudi 1657117 CVE-2018-9568 2.6.32-754.20.1 - x86...
SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2223-1)
The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: CVE-2018-5390 aka SegmentSmack: A remote attacker even with relatively low bandwidth could have caused lots of CPU usage by triggering the worst case scenario during I...
Security update for the Linux Kernel (important)
The openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-5390 aka "SegmentSmack": A remote attacker even with relatively low bandwidth could have caused lots of CPU usage by triggering the worst case scenario during IP...
Cisco IOS Software Wide Area Application Services Express Denial of Service Vulnerability
Cisco IOS is the operating system developed by Cisco for its network devices.Cisco Wide Area Application Services Express is a Cisco WAAS product that is based on IOS and is integrated into routers to provide application acceleration capabilities as well as to reduce the cost of WAN bandwidth...
Check Point Software Firewall-1 4.1 SP2 Fast Mode TCP Fragment Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2143/info Check Point Software's VPN-1 and Firewall-1 products contain a vulnerability in their Fast Mode option that may allow an attacker to bypass access control restrictions and access certain blocked services. Fast...
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (4)
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service 4 // source: https://www.securityfocus.com/bid/11258/info Multiple vendor implementations of the TCP stack are reported prone to a remote denial-of-service vulnerability. The issue is reported to present itself due to...
Check Point FireWall-1 allows fragmented packets through firewall if Fast Mode is enabled
Overview If any rules include the "Fast Mode" option, Check Point Firewall-1 and VPN-1 will incorrectly allow unauthorized connection attempts to hosts that should be restricted. Description A feature called "Fast Mode" or "FASTPATH", included in Check Point FireWall-1 and VPN-1 is designed to...
Check Point Software Firewall-1 4.1 SP2 - Fast Mode TCP Fragment
Check Point Software Firewall-1 4.1 SP2 - Fast Mode TCP Fragment // source: https://www.securityfocus.com/bid/2143/info Check Point Software's VPN-1 and Firewall-1 products contain a vulnerability in their "Fast Mode" option that may allow an attacker to bypass access control restrictions and...
Check Point Software Firewall-1 4.1 SP2 - Fast Mode TCP Fragment
// source: https://www.securityfocus.com/bid/2143/info Check Point Software's VPN-1 and Firewall-1 products contain a vulnerability in their "Fast Mode" option that may allow an attacker to bypass access control restrictions and access certain blocked services. Fast Mode is a setting that turns o...