Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/08 7:21 a.m.32 views

CVE-2026-43284

In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSGSPLICEPAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFLSHAREDFRAG after skbsplicefromiter, so later paths that may modify packet data ca...

8.8CVSS5.7AI score0.93235EPSS
Exploits31References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001619)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001619 advisory. The tcpspliceread function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service infinite loop and soft lockup via...

7.5CVSS6.9AI score0.04666EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2017/06/28 4:57 p.m.4 views

kernel: ipv4/tcp: Infinite loop in tcp_splice_read()

A flaw was found in the Linux kernel's handling of packets with the URG flag. Applications using the splice and tcpspliceread functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely...

7.5CVSS7.2AI score0.04666EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/06/28 4:57 p.m.4 views

kernel: ipv4/tcp: Infinite loop in tcp_splice_read()

A flaw was found in the Linux kernel's handling of packets with the URG flag. Applications using the splice and tcpspliceread functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely...

7.5CVSS7.2AI score0.04666EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/05/30 5:2 p.m.5 views

kernel: ipv4/tcp: Infinite loop in tcp_splice_read()

A flaw was found in the Linux kernel's handling of packets with the URG flag. Applications using the splice and tcpspliceread functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely...

7.5CVSS7.2AI score0.04666EPSS
Exploits0References4
CNVD
CNVD
added 2017/02/24 12:0 a.m.3 views

Linux kernel denial of service vulnerability (CNVD-2017-02483)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability in the tcpspliceread function in the net/ipv4/tcp.c file in versions of Linux kernel prior to 4.9.11 allows remote attackers to cause a denia...

7.5CVSS8AI score0.04666EPSS
Exploits0References1
OSV
OSV
added 2017/02/23 5:59 p.m.2 views

DEBIAN-CVE-2017-6214

The tcpspliceread function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service infinite loop and soft lockup via vectors involving a TCP packet with the URG flag...

7.5CVSS7.6AI score0.04666EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/07/16 6:21 p.m.4 views

Kernel: net: oops from tcp_collapse() when using splice(2)

The tcpreadsock function in net/ipv4/tcp.c in the Linux kernel before 2.6.34 does not properly manage skb consumption, which allows local users to cause a denial of service system crash via a crafted splice system call for a TCP socket...

5.5CVSS6.1AI score0.00368EPSS
Exploits1References4
Rows per page
Query Builder