8 matches found
CVE-2026-29007 U-Boot 2026.04-rc3 Out-of-Bounds Read in tcp_rx_state_machine via tcp.c
U-Boot through 2026.04-rc3 contains an out-of-bounds read vulnerability in tcprxstatemachine net/tcp.c when CONFIGPROTTCP is enabled, allowing remote attackers to read beyond TCP segment boundaries by crafting a malicious packet with a mismatched IP total length and TCP data offset field. Attacke...
SUSE CVE-2023-52775
In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid data corruption caused by decline We found a data corruption issue during testing of SMC-R on Redis applications. The benchmark has a low probability of reporting a strange error as shown below. "Error: Protocol...
SUSE CVE-2023-52513
In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix connection failure handling In case immediate MPA request processing fails, the newly created endpoint unlinks the listening endpoint and is ready to be dropped. This special case was not handled correctly by the co...
The vulnerability of the zmq::tcp_read() function in the libzmq library, a library for asynchronous messaging in ZeroMQ, allows a attacker to cause a service failure.
The vulnerability of the zmq::tcpread function in the libzmq library, a library for asynchronous messaging, is related to the failure of write operations outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...
Out-of-bounds Write
Overview Affected versions of this package are vulnerable to Out-of-bounds Write. ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcpread, a different vulnerability than CVE-2021-20235. Remediation Upgrade zeromq to version 4.3.3 or higher. References - Github.com - GitHub Commit...
OSV-2020-1395 Heap-buffer-overflow in zmq::tcp_read
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23281 Crash type: Heap-buffer-overflow WRITE Crash state: zmq::tcpread zmq::streamenginebaset::read zmq::streamenginebaset::ineventinternal...
Kernel: net: oops from tcp_collapse() when using splice(2)
The tcpreadsock function in net/ipv4/tcp.c in the Linux kernel before 2.6.34 does not properly manage skb consumption, which allows local users to cause a denial of service system crash via a crafted splice system call for a TCP socket...
DEBIAN-CVE-2013-2128
The tcpreadsock function in net/ipv4/tcp.c in the Linux kernel before 2.6.34 does not properly manage skb consumption, which allows local users to cause a denial of service system crash via a crafted splice system call for a TCP socket...