8 matches found
CVE-2025-21710 tcp: correct handling of extreme memory squeeze
In the Linux kernel, the following vulnerability has been resolved: tcp: correct handling of extreme memory squeeze Testing with iperf3 using the "pasta" protocol splicer has revealed a problem in the way tcp handles window advertising in extreme memory squeeze situations. Under memory pressure, ...
CVE-2022-49142
In the Linux kernel, the following vulnerability has been resolved: net: preserve skbendoffset in skbunclonekeeptruesize syzbot found another way to trigger the infamous WARNONONCEdelta truesize value, we also need to make sure TCP wont fill new tailroom that pskbexpandhead was able to get from a...
CVE-2024-53206
A use-after-free vulnerability was found in the reqsktimerhandler function in the Linux kernel's TCP component. This issue occurs when an incorrect request object is passed during cleanup after a retry attempt fails, where a timeout leads to denial of service...
CVE-2024-53206 tcp: Fix use-after-free of nreq in reqsk_timer_handler().
In the Linux kernel, the following vulnerability has been resolved: tcp: Fix use-after-free of nreq in reqsktimerhandler. The cited commit replaced inetcskreqskqueuedropandput with inetcskreqskqueuedrop and reqskput in reqsktimerhandler. Then, oreq should be passed to reqskput instead of req;...
kernel: tcp: excessive resource consumption for TCP connections with low MSS allows remote denial of service
An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...
CVE-2017-6641
A vulnerability in the TCP connection handling functionality of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote attacker to disable TCP ports and cause a denial of service DoS condition on an affected system. The vulnerability is due to a lack of rate-limiting...
MIT Kerberos V5 KDC TCP Handling Denial of Service (CVE-2005-1174)
There exists a heap corruption vulnerability in the MIT Kerberos V5 Key Distribution Center KDC implementation...
GLSA-200407-12 : Linux Kernel: Remote DoS vulnerability with IPTables TCP Handling
The remote host is affected by the vulnerability described in GLSA-200407-12 Linux Kernel: Remote DoS vulnerability with IPTables TCP Handling An attacker can utilize an erroneous data type in the IPTables TCP option handling code, which lies in an iterator. By making a TCP packet with a header...