Lucene search
K

26 matches found

SUSE CVE
SUSE CVE
added 2026/05/13 3:34 a.m.8 views

SUSE CVE-2026-43384

In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

9.8CVSS5.7AI score0.00457EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/13 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-43384

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/tcp-ao: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for...

9.8CVSS7.2AI score0.00457EPSS
Exploits0References2
OSV
OSV
added 2026/05/08 3:16 p.m.7 views

UBUNTU-CVE-2026-43384

In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

9.8CVSS5.7AI score0.00457EPSS
Exploits0References10
CVE
CVE
added 2026/05/08 2:21 p.m.21 views

CVE-2026-43384

The CVE-2026-43384 issue concerns the Linux kernel TCP Authentication Option (TCP-AO) where MACs were compared without constant-time handling. The connected documents confirm a fix was applied to make MAC comparisons constant-time, mitigating timing-attack leakage of sensitive information. The vu...

9.8CVSS5.7AI score0.00457EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.9 views

PT-2026-39045

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A timing attack issue exists in the TCP Authentication Option TCP-AO implementation. The Message Authentication Code MAC comparison was not performed in constant-time, which could allow ...

9.8CVSS5.8AI score0.00595EPSS
Exploits0References334
Cvelist
Cvelist
added 2025/10/04 7:31 a.m.9 views

CVE-2025-39950 net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCPREPAIR A NULL pointer dereference can occur in tcpaofinishconnect during a connect system call on a socket with a TCP-AO key added and TCPREPAIR enabled. The...

0.00138EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/08/27 10:40 a.m.20 views

CVE-2024-43887

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

4.7CVSS6.5AI score0.00189EPSS
Exploits0References4
NVD
NVD
added 2024/08/26 11:15 a.m.22 views

CVE-2024-43887

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

4.7CVSS0.00189EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/08/26 11:15 a.m.16 views

CVE-2024-43887

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

4.7CVSS6.4AI score0.00189EPSS
Exploits0References9
OSV
OSV
added 2024/08/26 11:15 a.m.2 views

UBUNTU-CVE-2024-43887

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

4.7CVSS6.5AI score0.00189EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/08/26 10:10 a.m.27 views

CVE-2024-43887 net/tcp: Disable TCP-AO static key after RCU grace period

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

0.00189EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/26 10:10 a.m.12 views

CVE-2024-43887 net/tcp: Disable TCP-AO static key after RCU grace period

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

6.5AI score0.00189EPSS
Exploits0References2
CVE
CVE
added 2024/08/26 10:10 a.m.94 views

CVE-2024-43887

The CVE-2024-43887 entry relates to the Linux kernel (net/tcp) TCP-AO static key handling. The vulnerability arises because the lifetime of the TCP-AO static_key is tied to the last tcp_ao_info, and, if an RCU grace period is delayed, a CPU may observe a tcp_ao_info that is about to be deallocate...

4.7CVSS6.6AI score0.00189EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2024/08/26 10:10 a.m.15 views

CVE-2024-43887

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

4.7CVSS5.9AI score0.00189EPSS
Exploits0
OSV
OSV
added 2024/08/26 10:10 a.m.15 views

CVE-2024-43887 net/tcp: Disable TCP-AO static key after RCU grace period

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Disable TCP-AO static key after RCU grace period The lifetime of TCP-AO statickey is the same as the last tcpaoinfo. On the socket destruction tcpaoinfo ceases to be with RCU grace period, while tcp-ao static branch is...

4.7CVSS5.7AI score0.00189EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/07/16 6:55 p.m.21 views

CVE-2024-40985

In the Linux kernel, the following vulnerability has been resolved: net/tcpao: Don't leak aoinfo on error-path It seems I introduced it together with TCPAOCMDFAOREQUIRED, on version 5 1 of TCP-AO patches. Quite frustrative that having all these selftests that I've written, running kmemtest & kcov...

3.3CVSS6.9AI score0.00235EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/07/16 2:34 a.m.2 views

SUSE CVE-2024-40985

In the Linux kernel, the following vulnerability has been resolved: net/tcpao: Don't leak aoinfo on error-path It seems I introduced it together with TCPAOCMDFAOREQUIRED, on version 5 1 of TCP-AO patches. Quite frustrative that having all these selftests that I've written, running kmemtest & kcov...

5.5CVSS7.7AI score0.00235EPSS
Exploits0References3
OSV
OSV
added 2024/07/12 1:15 p.m.2 views

DEBIAN-CVE-2024-40985

In the Linux kernel, the following vulnerability has been resolved: net/tcpao: Don't leak aoinfo on error-path It seems I introduced it together with TCPAOCMDFAOREQUIRED, on version 5 1 of TCP-AO patches. Quite frustrative that having all these selftests that I've written, running kmemtest & kcov...

5.5CVSS4.6AI score0.00235EPSS
Exploits0References1
OSV
OSV
added 2024/07/12 1:15 p.m.4 views

UBUNTU-CVE-2024-40985

In the Linux kernel, the following vulnerability has been resolved: net/tcpao: Don't leak aoinfo on error-path It seems I introduced it together with TCPAOCMDFAOREQUIRED, on version 5 1 of TCP-AO patches. Quite frustrative that having all these selftests that I've written, running kmemtest & kcov...

5.5CVSS5.7AI score0.00235EPSS
Exploits0References12
OSV
OSV
added 2024/07/12 12:37 p.m.22 views

CVE-2024-40985 net/tcp_ao: Don't leak ao_info on error-path

In the Linux kernel, the following vulnerability has been resolved: net/tcpao: Don't leak aoinfo on error-path It seems I introduced it together with TCPAOCMDFAOREQUIRED, on version 5 1 of TCP-AO patches. Quite frustrative that having all these selftests that I've written, running kmemtest & kcov...

5.5CVSS5.8AI score0.00235EPSS
Exploits0References5
Rows per page
Query Builder