CVE-2023-33965 Brook's tproxy server is vulnerable to a drive-by command injection.

Brook is a cross-platform programmable network tool. The tproxy server is vulnerable to a drive-by command injection. An attacker may fool a victim into visiting a malicious web page which will trigger requests to the local tproxy service leading to remote code execution. A patch is available in...

Brook 操作系统命令注入漏洞

Brook is a cross-platform programmable web tool for individual developers of TxThinking. A security vulnerability exists in Brook. An attacker can exploit this vulnerability to trick a victim into visiting a malicious web page, which will trigger a request to the local "tproxy" service, leading t...

PT-2023-24606 · Brook · Brook

Name of the Vulnerable Software and Affected Versions: Brook versions prior to 20230606 Description: The tproxy server in Brook is vulnerable to a drive-by command injection. An attacker can trick a victim into visiting a malicious web page, triggering requests to the local tproxy service and...

Important: kernel

Issue Overview: A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM L0 advertising eIBRS support to L1. An attacker at L...

kernel: netfilter: nft_tproxy: restrict to prerouting hook

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfttproxy: restrict to prerouting hook TPROXY is only allowed from prerouting, but nfttproxy doesn't check this. This fixes a crash null dereference when using tproxy from e.g. output...

PT-2025-25927

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns the Linux kernel's netfilter, specifically the nft tproxy component. TPROXY is only allowed from the prerouting hook, but nft tproxy does not enforce this restriction...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, whi...

Oracle Linux 6 kernel security, bug fix and enhancement update

2.6.32-279.el6 - netdrv mlx4: ignore old module parameters Jay Fenlason 830553 2.6.32-278.el6 - kernel sysctl: silence warning about missing strategy for file-max at boot time Jeff Layton 803431 - net sunrpc: make new tcpmaxslottableentries sysctl use CTLUNNUMBERED Jeff Layton 803431 - drm i915:...