Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43036

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: use skbheaderpointer for TCPv4 GSO fragoff check Syzbot reported a KMSAN uninit-value warning in gsofeaturescheck called from netifskbfeatures 1...

5.5CVSS6.2AI score0.00122EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003135)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003135 advisory. The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted applicati...

5.5CVSS6.5AI score0.00465EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992736)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992736 advisory. In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4...

8.8CVSS6.2AI score0.0084EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986596)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986596 advisory. In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4...

8.8CVSS6.2AI score0.0084EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/07/25 12:0 a.m.35 views

NewStart CGSL MAIN 7.02 : kernel Multiple Vulnerabilities (NS-SA-2025-0118)

"The remote NewStart CGSL host, running version MAIN 7.02, has kernel packages installed that are affected by multiple vulnerabilities: - In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming...

9.8CVSS6.7AI score0.03301EPSS
Exploits13References1319
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Smack: TCP/IPv4; fixed incorrect labeling. Currently, Smack follows the labeling scheme for incoming TCP/IPv4 connections. When a connection labeled “foo” connects to a connection labeled “bar” via TCP/IPv4, “foo” always appears ...

8.8CVSS6.5AI score0.0084EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/10/11 4:59 p.m.15 views

CVE-2024-47659

In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1...

8.8CVSS6.9AI score0.0084EPSS
Exploits0References4
CVE
CVE
added 2024/10/09 2:2 p.m.158 views

CVE-2024-47659

CVE-2024-47659 - Linux kernel Smack labeling flaw (tcp/ipv4) Unity/Ten able advisories summarize a kernel issue in Smack where the label of incoming tcp/ipv4 connections is mirrored from the initiator, causing return packets to be labeled with the initiator’s CIPSO label. This results in two conc...

8.8CVSS7.9AI score0.0084EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2024/10/09 2:2 p.m.16 views

CVE-2024-47659 smack: tcp: ipv4, fix incorrect labeling

In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1...

8.8CVSS6.1AI score0.0084EPSS
Exploits0References12
Debian
Debian
added 2023/11/18 9:45 p.m.22 views

[SECURITY] [DLA 3655-1] lwip security update

Debian LTS Advisory DLA-3655-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost November 18, 2023 https://wiki.debian.org/LTS Package : lwip Version : 2.0.3-3+deb10u2 CVE ID : CVE-2020-22283 Debian Bug : 991646 A buffer overflow vulnerability has been found in lwip, a...

7.5CVSS7.2AI score0.01366EPSS
Exploits0
Rows per page
Query Builder