110 matches found
CVE-2026-52999
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix out-of-bounds read on option matching In nfosfmatch, the nfosfhdrctx structure is initialized once and passed by reference to nfosfmatchone for each fingerprint checked. During TCP option parsing,...
kernel: netfilter: xt_tcpmss: check remaining length before reading optlen
A flaw was found in the Linux kernel, specifically within the netfilter: xttcpmss module. A remote attacker could exploit this vulnerability by sending a specially crafted TCP packet. The TCP option parser does not properly validate the remaining option length, which results in an out-of-bounds...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: mptcp: fixed TCP options overflow. Syzbot reported the following errors: Oops: general protection fault, likely due to a non-canonical address 0xdffffc0000000001: 0000 1 PREEMPT SMP KASAN PTI KASAN: null-ptr-deref in range...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: schcake: A out-of-bounds access issue was fixed during the parsing of TCP options and headers. The TCP option parser in cake qdisc cakegettcpopt and caketcphmaydrop could read one byte out of bounds. When the length of the data...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: Fixed an out-of-bounds condition during the parsing of TCP options. The TCP option parser in synproxy(synproxyparseoptions)could read one byte out of bounds. When the length is 1, the execution flow enters a...
SUSE CVE-2026-23397
In the Linux kernel, the following vulnerability has been resolved: nfnetlinkosf: validate individual option lengths in fingerprints nfnlosfaddcallback validates optnum bounds and string NUL-termination but does not check individual option length fields. A zero-length option causes nfosfmatchone ...
DEBIAN-CVE-2026-23397
In the Linux kernel, the following vulnerability has been resolved: nfnetlinkosf: validate individual option lengths in fingerprints nfnlosfaddcallback validates optnum bounds and string NUL-termination but does not check individual option length fields. A zero-length option causes nfosfmatchone ...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989100)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989100 advisory. In the Linux kernel, the following vulnerability has been resolved: mptcp: Fix out of bounds when parsing TCP options The TCP option parser in mptcp mptcpgetoptions...
EUVD-2015-8128
Malware in sbrugna...
EUVD-2018-8333
Malware in sbrugna...
EUVD-2020-17071
Malware in sbrugna...
EUVD-2005-2070
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986717)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986717 advisory. In the Linux kernel, the following vulnerability has been resolved: mptcp: Fix out of bounds when parsing TCP options The TCP option parser in mptcp mptcpgetoptions...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987082)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987082 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: Fix out of bounds when parsing TCP options The TCP option parser in synproxy...
EUVD-2024-53785
Malicious code in bioql PyPI...
The vulnerability of the mptcp_get_options() function in the net/mptcp/options.c module, which is part of the Linux kernel’s networking functions, allows a hacker to cause a service failure.
The vulnerability of the mptcpgetoptions function in the net/mptcp/options.c module, which implements networking functions in the Linux kernel, relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...
Security update for kernel-livepatch-MICRO-6-0_Update_5
This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: CVE-2024-57882: mptcp: fix TCP options overflow. bsc1235916 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...
SUSE-SU-2025:20370-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_5
This update for kernel-livepatch-MICRO-6-0-RTUpdate5 fixes the following issues: - CVE-2024-57882: mptcp: fix TCP options overflow. bsc1235916...
Security update for kernel-livepatch-MICRO-6-0-RT_Update_5
This update for kernel-livepatch-MICRO-6-0-RTUpdate5 fixes the following issues: CVE-2024-57882: mptcp: fix TCP options overflow. bsc1235916 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...
SUSE-SU-2025:20369-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_4
This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: - CVE-2024-53237: Bluetooth: fix use-after-free in deviceforeachchild bsc1235008 - CVE-2024-56650: netfilter: xtables: fix LED ID check in ledtgcheck bsc1235431 - CVE-2024-56600: net: inet6: do not leave a dangling s...