11 matches found
UBUNTU-CVE-2026-43411
In the Linux kernel, the following vulnerability has been resolved: tipc: fix divide-by-zero in tipcskfilterconnect A user can set conntimeout to any value via setsockoptTIPCCONNTIMEOUT, including values less than 4. When a SYN is rejected with TIPCERROVERLOAD and the retry path in...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002519)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002519 advisory. net/tipc/socket.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure and a certain length variable, which allows local users to obtain...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989436)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989436 advisory. In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipcskcreate Free sk in case tipcskinsert fails. Tenable...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-36898: gpiolib: cdev: fix uninitialised kfifo bsc1225736. CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088. CVE-2024-50142: xfrm: validate new...
CVE-2022-49620
In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipcskcreate Free sk in case tipcskinsert fails...
CVE-2022-49620 net: tipc: fix possible refcount leak in tipc_sk_create()
In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipcskcreate Free sk in case tipcskinsert fails...
CVE-2022-49620
In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipcskcreate Free sk in case tipcskinsert fails...
CLSA-2024-1714065191 Fix of 9 CVEs
CVE-url: https://ubuntu.com/security/CVE-2023-1998 - x86/speculation: Allow enabling STIBP with legacy IBRS CVE-url: https://ubuntu.com/security/CVE-2021-47193 - scsi: pm80xx: Tie the interrupt name to the module instance - scsi: pm80xx: Deal with kexec reboots - scsi: pm80xx: Increase number of...
SUSE CVE-2010-3877
The getname function in net/tipc/socket.c in the Linux kernel before 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure...
SUSE CVE-2013-3235
net/tipc/socket.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure and a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...
USN-3016-2 linux-raspi2 vulnerabilities
Jesse Hertz and Tim Newsham discovered that the Linux netfilter implementation did not correctly perform validation when handling 32 bit compatibility IPTSOSETREPLACE events on 64 bit platforms. A local unprivileged attacker could use this to cause a denial of service system crash or execute...