PT-2024-19493 · Kwik · Kwik

Name of the Vulnerable Software and Affected Versions: Kwik commit 745fd4e2 Description: The issue arises from Kwik not properly discarding unused encryption keys. Recommendations: For commit 745fd4e2, ensure that unused encryption keys are properly discarded to mitigate the issue...

PQUIC Security Vulnerabilities

PQUIC is a framework for PQUIC open source . Enables QUIC clients and servers to dynamically exchange protocol plug-ins, thereby extending the protocol on a per-connection basis. A security vulnerability exists in versions prior to PQUIC 5bde5bb, which stems from the retention of unused initial...

PT-2022-35997 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue concerns the mctp i2c, where unused or invalid keys are counted for flow release. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

Linux kernel input validation vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the 'keygcunusedkeys' function in the security/keys/gc.c file in Linux kernel 4.2.6 and earlier versions. A local attacker can exploit this...

PT-2015-7650 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.2.7 Description: The issue allows local users to cause a denial of service via crafted keyctl commands. It is related to the key gc unused keys function in security/keys/gc.c. Recommendations: For Linux kernel...