Debian dla-4608 : corosync - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4608 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4608-1 [email protected]...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: UDP: The flag SOCKRCUFREE was set earlier in udplibgetport. The syzkaller function triggered the warning 0 in udpv4earlydemux. In udpv46earlydemux and sklookup, we do not touch the refcount of the sk object and use sockpfree as t...

corosync security update

An update is available for corosync. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The corosync packages provide the Corosync Cluster Engine and C APIs for Roc...

CVE-2026-23567

An integer underflow in the UDP command handler of the TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 26.1 for Windows allows an adjacent network attacker to trigger a heap-based buffer overflow and cause a denial-of-service service crash via...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990078)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990078 advisory. In the Linux kernel, the following vulnerability has been resolved: udp: Set SOCKRCUFREE earlier in udplibgetport. syzkaller triggered the warning 0 in...

EUVD-2002-2393

Malware in sbrugna...

EUVD-2010-4137

Malware in sbrugna...

EUVD-2007-1820

Malware in sbrugna...

EUVD-2004-1644

Malware in sbrugna...

EUVD-2019-14768

Malware in sbrugna...

EUVD-2019-10201

Malware in sbrugna...

EUVD-2025-11237

Malicious code in bioql PyPI...

EUVD-2022-54655

Malicious code in bioql PyPI...

Security Advisory 0121

Security Advisory 0121 . CSAF PDF Date: July 22, 2025 Revision | Date | Changes ---|---|--- 1.0 | July 22, 2025 | Initial release 1.1 | August 8, 2025 | Updated Mitigation section Updated EOS versions which CVE-2025-6188 has been fixed 1.2 | September 30, 2025 | Added CSAF file The CVE-ID trackin...

CVE-2025-34127 Achat v0.150 SEH Buffer Overflow via UDP

A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler SEH due to insufficient bounds checking on user-supplied input leading to remote code executio...

CVE-2025-22058

In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP memory usage issue. Under normal operation, the UDP memory usage reported in /proc/net/sockstat remains close to zero. However, it occasionally spiked to 524,288...

CVE-2025-22059

CVE-2025-22059 describes a Linux kernel UDP receive memory accounting overflow due to wraparounds in sk_rmem_alloc. The issue arises when sk_rcvbuf is set large (e.g., INT_MAX) and skb sizes are added unconditionally to sk_rmem_alloc, combined with signed/unsigned misalignment, enabling multiple ...

CVE-2025-22059 udp: Fix multiple wraparounds of sk->sk_rmem_alloc.

In the Linux kernel, the following vulnerability has been resolved: udp: Fix multiple wraparounds of sk-skrmemalloc. udpenqueuescheduleskb has the following condition: if atomicread&sk-skrmemalloc sk-skrcvbuf goto drop; sk-skrcvbuf is initialised by net.core.rmemdefault and later can be configure...

CVE-2025-22059 udp: Fix multiple wraparounds of sk->sk_rmem_alloc.

In the Linux kernel, the following vulnerability has been resolved: udp: Fix multiple wraparounds of sk-skrmemalloc. udpenqueuescheduleskb has the following condition: if atomicread&sk-skrmemalloc sk-skrcvbuf goto drop; sk-skrcvbuf is initialised by net.core.rmemdefault and later can be configure...

PT-2025-16699 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the Linux kernel's UDP implementation, where multiple wraparounds of sk-sk rmem alloc can occur. This happens when sk-sk rcvbuf is set to a large value, such as...