3 matches found
CVE-2024-6387
CVE-2024-6387 is a remote code-execution vulnerability in OpenSSH’s server (sshd) caused by a race condition in a signal handler that may run after a client fails to authenticate within LoginGraceTime. The issue is exploitable by an unauthenticated, remote attacker on glibc-based Linux systems, p...
CVE-2024-26733
CVE-2024-26733 (Linux kernel) : A heap-based buffer overflow in arp_req_get() was fixed. The issue occurs when ioctl(SIOCGARP) copies neigh->ha into arpreq.arp_ha.sa_data (14-byte sockaddr) with a 14-byte copy, risking overflow into arp_flags and overwriting arp_netmask if dev->addr_len exc...
CVE-2024-26633
CVE-2024-26633 affects the Linux kernel’s ip6_tunnel code, specifically the NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim(). Syzbot reported that frag_off could be read before enough bytes were pulled into skb->head, causing reads of uninitialized or garbage data. The issue is exposed...