CVE-2026-43036

Summary (CVE-2026-43036) : The issue resides in the Linux kernel networking path, where gso_features_check() read IPv4 header offsets (iph->frag_off) in a way that could dereference uninitialized data when packets are injected via PF_PACKET paths. The root cause is unsafe header dereferencing ...

PT-2026-36453

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the gso features check function, which is called from netif skb features. The issue occurs when the system reads iph-frag off to determine if mangleid features should be...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000393)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000393 advisory. Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more th...

SUSE SLES12 Security Update : kernel (SUSE-SU-2019:1668-1) (SACK Panic) (SACK Slowness)

This update for the Linux Kernel 3.12.74-6064107 fixes several issues. The following security issues were fixed : CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless netwo...

SUSE-SU-2019:1674-1 Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP4)

This update for the Linux Kernel 4.12.14-956 fixes several issues. The following security issues were fixed: - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network...

SUSE-SU-2019:1588-1 Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-195 fixes several issues. The following security issues were fixed: - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network...

DEBIAN-CVE-2019-11478

Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment SACK sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel...

DEBIAN-CVE-2019-11479

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:1550-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) (SACK Panic) (SACK Slowness) (Spectre)

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-12819: The function mdiobusregister called putdevice, which triggered a fixedmdiobusinit use-after-free. This would cause a denial of service. bsc1138291...

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2019:1530-1) (SACK Panic) (SACK Slowness)

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-11477: A sequence of SACKs may have been crafted such that one can trigger an integer overflow, leading to a kernel panic. CVE-2019-11478: It was possibl...

TCP SACK Panic - Linux Kernel Vulnerability

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...

SUSE-SU-2019:1529-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-11477: A sequence of SACKs may have been crafted such that one can trigger an integer overflow, leading to a kernel panic. - CVE-2019-11478: It was possible...

Unbreakable Enterprise kernel security update

4.1.12-103.9.2 - Revert 'drivers/char/mem.c: deny access in open operation when securelevel is set' Brian Maly Orabug: 27037811 4.1.12-103.9.1 - xfs: use dedicated log worker wq to avoid deadlock with cil wq Brian Foster Orabug: 27013241 - scsi: scsitransportiscsi: fix the issue that iscsiifrx...

BeOS 5.0 TCP Fragmentation Remote DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1222/info BeOS is vulnerable to a remote TCP fragmentation attack that will crash the target system, requiring a reboot. root@localhost isic-0.05 ./tcpsic -s 1.1.1.1 -d 10.0.1.46 -r 31337 -F100 -V0 -I0 -T0 -u0 -t0 Compile...

ROSE Attack - NewDawn3

Exploit for unknown platform in category dos / poc ====================== ROSE Attack - NewDawn3 ====================== /-------------------------------------------------------------/ / Implementation of Rose Attack described by Gandalf gandalf at digital.net Reference: Bugtraq, 30 mars 2004, "IP...

Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (3)

Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service 3 // source: https://www.securityfocus.com/bid/11258/info Multiple vendor implementations of the TCP stack are reported prone to a remote denial-of-service vulnerability. The issue is reported to present itself due to...

beos5-dos.txt

AUX Technologies. Security Advisory. Advisory: Remote Denial of Service against Be/OS. Release Date: May 15, 2000. Status: No fix yet. Vulnerable version: Be/OS Personal 5.0 build feb 212000 4:43:00. Vendor: Contacted and no answer. Shoutz: AUX PPLbraSil rulez, dethl0k, cryonic, drk, grafspee and...

BeOS 5.0 - TCP Fragmentation Remote Denial of Service

BeOS 5.0 - TCP Fragmentation Remote Denial of Service source: https://www.securityfocus.com/bid/1222/info BeOS is vulnerable to a remote TCP fragmentation attack that will crash the target system, requiring a reboot. root@localhost isic-0.05 ./tcpsic -s 1.1.1.1 -d 10.0.1.46 -r 31337 -F100 -V0 -I0...

BeOS 5.0 - TCP Fragmentation Remote Denial of Service

source: https://www.securityfocus.com/bid/1222/info BeOS is vulnerable to a remote TCP fragmentation attack that will crash the target system, requiring a reboot. root@localhost isic-0.05 ./tcpsic -s 1.1.1.1 -d 10.0.1.46 -r 31337 -F100 -V0 -I0 -T0 -u0 -t0 Compiled against Libnet 1.0.1b Installing...