JLSEC-2026-569

OpenCV is an Open Source Computer Vision Library. Versions 4.10.0 and 4.11.0 have an uninitialized pointer variable on stack that may lead to arbitrary heap buffer write when reading crafted JPEG images. Version 4.12.0 fixes the vulnerability...

PT-2026-49252

OpenCV is an Open Source Computer Vision Library. Versions 4.10.0 and 4.11.0 have an uninitialized pointer variable on stack that may lead to arbitrary heap buffer write when reading crafted JPEG images. Version 4.12.0 fixes the vulnerability...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002584)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002584 advisory. The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; th...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002950)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002950 advisory. The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; th...

SUSE CVE-2017-17712

The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...

The vulnerability of the Routing Protocol Daemon (rpd) implementation in Juniper Networks’ Junos OS Evolved and Junos operating systems allows a attacker to cause a service failure.

The vulnerability of the Routing Protocol Daemon rpd implementation in Juniper Networks’ Junos OS Evolved and Junos operating systems lies in the use of an uninitialized pointer on the stack. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of the SBIOS component in NVIDIA’s DGX A100 server allows a hacker to execute arbitrary code, cause system failures, or compromise the confidentiality of protected information.

The vulnerability of the SBIOS component in NVIDIA’s Ofbd server NVIDIA DGX A100 is related to the use of an uninitialized pointer on the stack. Exploiting this vulnerability could allow a attacker to execute arbitrary code, cause service failures, or compromise the confidentiality of protected...

SUSE-SU-2018:0436-1 Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP3)

This update for the Linux Kernel 4.4.103-638 fixes one issue. The following security issue was fixed: - CVE-2017-17712: The rawsendmsg function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges bsc1073230...

SUSE-SU-2018:0433-1 Security update for the Linux Kernel (Live Patch 6 for SLE 12 SP3)

This update for the Linux Kernel 4.4.103-633 fixes one issue. The following security issue was fixed: - CVE-2017-17712: The rawsendmsg function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges bsc1073230...

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:0383-1) (Spectre)

The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.114 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of...

SUSE-SU-2018:0345-1 Security update for the Linux Kernel (Live Patch 4 for SLE 12 SP3)

This update for the Linux Kernel 4.4.90-612 fixes several issues. The following security issues were fixed: - CVE-2017-17712: The rawsendmsg function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges bsc1073230. -...

SUSE-SU-2018:0294-1 Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP2)

This update for the Linux Kernel 4.4.90-9250 fixes one issue. The following security issue was fixed: - CVE-2017-17712: The rawsendmsg function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges bsc1073230...

Race condition

The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...

CVE-2017-17712

The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...

CVE-2017-17712

The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...

CVE-2017-17712

Technical details about CVE-2017-17712 are not publicly available in the provided connected documents. Monitor for updates from vendor advisories and upstream kernel patches.

UBUNTU-CVE-2017-17712

The rawsendmsg function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges...

PT-2017-14963 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 4.14.6 Description: The issue is related to a race condition in the raw sendmsg function, specifically in the inet-hdrincl component, which leads to the usage of an uninitialized stack pointer. This condition...

CVE-2015-0240

The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets...

DEBIAN-CVE-2015-0240

The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets...