10 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-43036
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: use skbheaderpointer for TCPv4 GSO fragoff check Syzbot reported a KMSAN uninit-value warning in gsofeaturescheck called from netifskbfeatures 1...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003135)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003135 advisory. The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted applicati...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992736)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992736 advisory. In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986596)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986596 advisory. In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4...
NewStart CGSL MAIN 7.02 : kernel Multiple Vulnerabilities (NS-SA-2025-0118)
"The remote NewStart CGSL host, running version MAIN 7.02, has kernel packages installed that are affected by multiple vulnerabilities: - In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Smack: TCP/IPv4; fixed incorrect labeling. Currently, Smack follows the labeling scheme for incoming TCP/IPv4 connections. When a connection labeled “foo” connects to a connection labeled “bar” via TCP/IPv4, “foo” always appears ...
CVE-2024-47659
In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1...
CVE-2024-47659
CVE-2024-47659 - Linux kernel Smack labeling flaw (tcp/ipv4) Unity/Ten able advisories summarize a kernel issue in Smack where the label of incoming tcp/ipv4 connections is mirrored from the initiator, causing return packets to be labeled with the initiator’s CIPSO label. This results in two conc...
CVE-2024-47659 smack: tcp: ipv4, fix incorrect labeling
In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1...
[SECURITY] [DLA 3655-1] lwip security update
Debian LTS Advisory DLA-3655-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost November 18, 2023 https://wiki.debian.org/LTS Package : lwip Version : 2.0.3-3+deb10u2 CVE ID : CVE-2020-22283 Debian Bug : 991646 A buffer overflow vulnerability has been found in lwip, a...