Linux Distros Unpatched Vulnerability : CVE-2018-17438

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A SIGFPE signal is raised in the function H5Dselectio of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file,...

CVE-2019-17438

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

openSUSE: Security Advisory for hdf5 (SUSE-SU-2022:1912-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1932)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1953)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : open-iscsi (EulerOS-SA-2021-1932)

According to the version of the open-iscsi package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails to properly...

SUSE: Security Advisory (SUSE-SU-2021:0663-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 2.9.1 : open-iscsi (EulerOS-SA-2021-1718)

According to the version of the open-iscsi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails...

SUSE SLES15 Security Update : open-iscsi (SUSE-SU-2021:1164-1)

This update for open-iscsi fixes the following issues : CVE-2020-17437: uIP Out-of-Bounds Write bsc1179908 CVE-2020-17438: uIP Out-of-Bounds Write bsc1179908 CVE-2020-13987: uIP Out-of-Bounds Read bsc1179908 CVE-2020-13988: uIP Integer Overflow bsc1179908 Enabled no-wait '-W' iscsiadm option for...

Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1718)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1762)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : open-iscsi (SUSE-SU-2021:0663-1)

This update for open-iscsi fixes the following issues : Fixes for CVE-2019-17437, CVE-2020-17438, CVE-2020-13987 and CVE-2020-13988 bsc1179908 : check for TCP urgent pointer past end of frame check for u8 overflow when processing TCP options check for header length underflow during checksum...

SUSE-SU-2021:0663-1 Security update for open-iscsi

This update for open-iscsi fixes the following issues: Fixes for CVE-2019-17437, CVE-2020-17438, CVE-2020-13987 and CVE-2020-13988 bsc1179908: - check for TCP urgent pointer past end of frame - check for u8 overflow when processing TCP options - check for header length underflow during checksum...

CVE-2020-17438

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails to properly validate the total length of an incoming packet specified in its IP header, as well as the fragmentation offset value specified in the IP header. By crafti...

CVE-2020-17438

CVE-2020-17438 affects uIP 1.0 (used in Contiki 3.0 and other products). The IP reassembly code fails to validate the total packet length and fragmentation offset, enabling crafted IP headers to write past the static buffer into the .bss area, causing a denial of service in uip_reass() and potent...

Novatek NT9665X HFS Overwrite denial-of-service vulnerability

Summary An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version “RoavA1SWV1.9.” The HTTP server could allow an attacker to overwrite the root directory of the server, resulting in a denial of service. An attacker can send a...

CVE-2018-17438

A SIGFPE signal is raised in the function H5Dselectio of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack...

CVE-2018-17438

CVE-2018-17438 affects the HDF5 library (H5D__select_io in H5Dselect.c) and can raise a SIGFPE (division-by-zero) during parsing of a crafted HDF file, enabling a remote denial of service. The vulnerability exists in HDF5 versions up to 1.10.3. SUSE advisories SUSE-SU-2022:1912-1 and SUSE-SU-2022...

CVE-2019-17438

This CVE entry is rejected/not used; the candidate number should not be used.