Unbreakable Enterprise kernel-container security update

5.4.17-2136.323.8.2.el8 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824307 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824307 - netfilter: xtu32: validate user space input Wander Lairson Costa Orabug: 35824307 - netfilter: ipset: ad...

CVE-2023-39193

A flaw was found in the Netfilter subsystem in the Linux kernel. The sctpmtcheck did not validate the flagcount field. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of-bounds read, leading to a crash or information disclosure. Mitigation This flaw can be mitigated by...

Unbreakable Enterprise kernel security update

5.15.0-105.125.6.2.2 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824297 - netfilter: nftables: exthdr: fix 4-byte stack OOB write Florian Westphal Orabug: 35824297 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824297 - netfilter: xtu3...

Unbreakable Enterprise kernel security update

5.4.17-2136.323.8.2 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824307 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824307 - netfilter: xtu32: validate user space input Wander Lairson Costa Orabug: 35824307 - netfilter: ipset: add th...

Linux Kernel "xt_sctp"拒绝服务攻击漏洞

Secunia Advisory:SA20703 Linux内核被报告一个漏洞，这个漏洞可被恶意攻击者操作进行拒绝服务攻击Denial of Service。 这个漏洞是因为对"xtsctp"代码的SCTP块长度缺省检查引起的。这可能通过一个0长度的块导致一个无限循环从而致使系统资源耗尽。 Linux Kernel 2.6.x 升级到版本2.6.17.1。 http://kernel.org/...