Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of atomic context scheduling in mptcp timestamp sockopt. This could lead to an atomic pan...

CVE-2026-23247

In the Linux kernel, the following vulnerability has been resolved: tcp: secureseq: add back ports to TS offset This reverts 28ee1b746f49 "secureseq: downgrade to per-host timestamp offsets" tcptwrecycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie...

CVE-2026-23247 tcp: secure_seq: add back ports to TS offset

In the Linux kernel, the following vulnerability has been resolved: tcp: secureseq: add back ports to TS offset This reverts 28ee1b746f49 "secureseq: downgrade to per-host timestamp offsets" tcptwrecycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie...

EUVD-2005-0741

Malware in sbrugna...

EUVD-2019-8349

Malware in sbrugna...

EUVD-2003-0872

Malware in sbrugna...

EUVD-2024-32906

Malicious code in bioql PyPI...

CVE-2024-10604

Vulnerabilities in the algorithms used by Fuchsia to populate network protocol header fields, specifically the TCP ISN, TCP timestamp, TCP and UDP source ports, and IPv4/IPv6 fragment ID allow for these values to be guessed under circumstances...

PT-2025-1599 · Google · Fuchsia

Name of the Vulnerable Software and Affected Versions: Fuchsia affected versions not specified Description: The issue concerns vulnerabilities in the algorithms used by Fuchsia to populate network protocol header fields. Specifically, the vulnerabilities affect the TCP Initial Sequence Number ISN...

CVE-2019-18625

An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed TCP session using an evil server. After the TCP SYN packet, it is possible to inject a RST ACK and a FIN ACK packet with a bad TCP Timestamp option. The client will ignore the RST...

CVE-2019-18625

An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed TCP session using an evil server. After the TCP SYN packet, it is possible to inject a RST ACK and a FIN ACK packet with a bad TCP Timestamp option. The client will ignore the RST...

CVE-2019-18625

An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed TCP session using an evil server. After the TCP SYN packet, it is possible to inject a RST ACK and a FIN ACK packet with a bad TCP Timestamp option. The client will ignore the RST...

CVE-2019-18625

An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed TCP session using an evil server. After the TCP SYN packet, it is possible to inject a RST ACK and a FIN ACK packet with a bad TCP Timestamp option. The client will ignore the RST...

FortiOS TCP timestamp response

FortiOS by default enables TCP timestamp response, which may lead to information disclosure...

OpenSSHD user enumeration vulnerability-vulnerability warning-the black bar safety net

! Summary: By sending a long password,a remote user can enumerate on the system running the SSHD user. This problem exists in most of the modern configuration,as compared to the calculation of BLOWFISH hashes,takes longer time to calculate the SHA256 / SHA512 to. CVE-ID:CVE-2 0 1 6-6 2 1 0 Test...

OpenSSHd 7.2p2 - Username Enumeration (1)

Exploit for linux platform in category remote exploits Source: http://seclists.org/fulldisclosure/2016/Jul/51 -------------------------------------------------------------------- User Enumeration using Open SSHD =Latest version. -------------------------------------------------------------------...

OpenSSHd 7.2p2 - Username Enumeration

Source: http://seclists.org/fulldisclosure/2016/Jul/51 -------------------------------------------------------------------- User Enumeration using Open SSHD =Latest version. ------------------------------------------------------------------- Abstract: ----------- By sending large passwords, a...

OpenSSHD 7.2p2 User Enumeration

-------------------------------------------------------------------- User Enumeration using Open SSHD =Latest version. ------------------------------------------------------------------- Abstract: ----------- By sending large passwords, a remote user can enumerate users on system that runs SSHD...

Multiple Vendor TCP Timestamp Option Denial of Service attack - Ver2 (CVE-2005-0356)

A denial-of-service vulnerability has been reported in multiple products. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

ICMP and TCP timestamp attacks to reset TCP connections

By using different ICMP packet types and TCP timestamps values it's possible to cause TCP connection resets or performance decrease...