CVE-2025-66270

The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, and Valent before 1.0.0.alpha.49...

CVE-2025-66270

The CVE-2025-66270 entry concerns KDE Connect protocol 8 prior to 2025-11-28, with affected releases across multiple platforms: desktop KDE Connect before 25.12, iOS KDE Connect before 0.5.4, Android KDE Connect before 1.34.4, GSConnect before 68, and Valent before 1.0.0.alpha.49. The underlying ...

CVE-2025-66270

The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, and Valent before 1.0.0.alpha.49...

DEBIAN-CVE-2024-45030

In the Linux kernel, the following vulnerability has been resolved: igb: cope with large MAXSKBFRAGS Sabrina reports that the igb driver does not cope well with large MAXSKBFRAG values: setting MAXSKBFRAG to 45 causes payload corruption on TX. An easy reproducer is to run ssh to connect to the...

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

CVE-2024-38063 Overview In August 2024, Microsoft release...

SoftEther VPN Security Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. A security vulnerability exists prior to SoftEther VPN version 5.02.5185 that stems from the fact that when L2TP is enabled on a device to deploy SoftEtherVPN, two response packets larger than...

kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt()

A flaw was found in the TC flower classifier clsflower in the Networking subsystem of the Linux kernel. This issue occurs when sending two TCAFLOWERKEYENCOPTSGENEVE packets with a total size of 252 bytes, which results in an out-of-bounds write when the third packet enters flsetgeneveopt,...

kernel: remote DoS in TIPC kernel module

A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipclinkxmit hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in the CPU utilization...

SUSE CVE-2005-3275

The NAT code 1 ipnatprototcp.c and 2 ipnatprotoudp.c in Linux kernel 2.6 before 2.6.13 and 2.4 before 2.4.32-rc1 incorrectly declares a variable to be static, which allows remote attackers to cause a denial of service memory corruption by causing two packets for the same protocol to be NATed at t...

New Wi-Fi Encryption Vulnerability Affects Over A Billion Devices

Cybersecurity researchers today uncovered a new high-severity hardware vulnerability residing in the widely-used Wi-Fi chips manufactured by Broadcom and Cypress—apparently powering over a billion devices, including smartphones, tablets, laptops, routers, and IoT gadgets. Dubbed 'Kr00k ' and...

DEBIAN-CVE-2016-6271

The Bzrtp library aka libbzrtp 1.0.x before 1.0.4 allows man-in-the-middle attackers to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception...

evolution-data-server: insufficient checking of NTLM authentication challenge packets

The ntlmchallenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server aka evolution-data-server 2.24.5 and earlier, and 2.25.92 and earlier 2.25.x versions, does not validate whether a certain length value is consistent with the amount o...