Lucene search
K

486 matches found

RedHat Linux
RedHat Linux
added 2019/09/04 12:28 p.m.2 views

kernel: brcmfmac heap buffer overflow in brcmf_wowl_nd_results

If the Wake-up on Wireless LAN functionality is configured in the brcmfmac driver, which only works with Broadcom FullMAC chipsets, a malicious event frame can be constructed to trigger a heap buffer overflow in the brcmfwowlndresults function. This vulnerability can be exploited by compromised...

8.3CVSS7.4AI score0.03844EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2019/09/04 11:15 a.m.3 views

kernel: brcmfmac heap buffer overflow in brcmf_wowl_nd_results

If the Wake-up on Wireless LAN functionality is configured in the brcmfmac driver, which only works with Broadcom FullMAC chipsets, a malicious event frame can be constructed to trigger a heap buffer overflow in the brcmfwowlndresults function. This vulnerability can be exploited by compromised...

8.3CVSS7.4AI score0.03844EPSS
Exploits1References7
Veracode
Veracode
added 2019/09/04 12:9 a.m.31 views

Buffer Overflows

kernel is vulnerable to buffer overflows. It causes brcmfmac heap buffer overflow in brcmfwowlndresults...

8.3CVSS3.2AI score0.03844EPSS
Exploits1References6Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/09/04 12:0 a.m.47 views

Scientific Linux Security Update : kernel on SL7.x x86_64 (20190903)

Security Fixes: - kernel: hw: Spectre SWAPGS gadget vulnerability CVE-2019-1125 - kernel: brcmfmac heap buffer overflow in brcmfwowlndresults CVE-2019-9500 Bug Fixes: - mlx4 VXLAN over VLAN TCP segmentation - Race condition in /dev/sg due to missing synchronization causes corruption in RHV - pani...

8.3CVSS7.2AI score0.04521EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2019/09/04 12:0 a.m.72 views

RHEL 7 : kernel (RHSA-2019:2600)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:2600 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: hw: Spectre SWAPGS gadget...

8.3CVSS7.2AI score0.04521EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2019/09/04 12:0 a.m.38 views

RHEL 7 : kernel-rt (RHSA-2019:2609)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:2609 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

8.3CVSS7.4AI score0.04521EPSS
Exploits5References9
Tenable Nessus
Tenable Nessus
added 2019/06/03 12:0 a.m.56 views

openSUSE Security Update : the Linux Kernel (openSUSE-2019-1479)

The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-7191: In the tun subsystem devgetvalidname xwas not called before registernetdevice. This allowed local users to cause a denial of service NULL pointer dereferen...

9.3CVSS6.6AI score0.04458EPSS
Exploits5References134
Tenable Nessus
Tenable Nessus
added 2019/05/29 12:0 a.m.49 views

Debian DLA-1799-2 : linux security update (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. This updated advisory text adds a note about the need to install new binary packages. CVE-2018-5995 ADLab of VenusTech discovered that the kernel logge...

8.3CVSS7.4AI score0.03278EPSS
Exploits6References18
Amazon
Amazon
added 2019/05/29 12:0 a.m.53 views

Important: kernel

Issue Overview: A flaw was found in the Linux kernel's freescale hypervisor manager implementation. A parameter passed via to an ioctl was incorrectly validated and used in size calculations for the page size calculation. An attacker can use this flaw to crash the system or corrupt memory or,...

8.3CVSS7.1AI score0.03844EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.38 views

openSUSE Security Update : the Linux Kernel (openSUSE-2019-1407) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

The openSUSE Leap 42.3 kernel was updated to 4.4.179 to receive various security and bugfixes. Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 - CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS - CVE-2018-12127:...

9.3CVSS7.9AI score0.04458EPSS
Exploits1References119
Tenable Nessus
Tenable Nessus
added 2019/05/17 12:0 a.m.50 views

openSUSE Security Update : the Linux Kernel (openSUSE-2019-1404) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

The openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes. Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 - CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS - CVE-2018-12127: Microarchitectural Fill...

9.3CVSS7.2AI score0.04881EPSS
Exploits2References207
UbuntuCve
UbuntuCve
added 2019/04/12 12:0 a.m.40 views

CVE-2019-9503

The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the iswlceventframe function will cause this frame to be discarded and unprocessed. I...

8.3CVSS6.8AI score0.03278EPSS
Exploits0References9
OSV
OSV
added 2019/04/12 12:0 a.m.2 views

UBUNTU-CVE-2019-9500

The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmfwowlndresults...

8.3CVSS7.5AI score0.03844EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2017/11/08 12:0 a.m.46 views

OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0167)

The remote OracleVM system is missing necessary patches to address critical security updates : - Revert 'drivers/char/mem.c: deny access in open operation when securelevel is set' Brian Maly Orabug: 27037811 - xfs: use dedicated log worker wq to avoid deadlock with cil wq Brian Foster Orabug:...

7.8CVSS6.7AI score0.20797EPSS
Exploits26References10
Tenable Nessus
Tenable Nessus
added 2017/11/03 12:0 a.m.145 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3635)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3635 advisory. - scsi: scsitransportiscsi: fix the issue that iscsiifrx doesn't parse nlmsg properly Xin Long Orabug: 26988633 CVE-2017-14489 - ipv6: avoid overfl...

7.8CVSS6.9AI score0.20797EPSS
Exploits26References6
Oracle linux
Oracle linux
added 2017/11/02 12:0 a.m.136 views

Unbreakable Enterprise kernel security update

4.1.12-103.9.2 - Revert 'drivers/char/mem.c: deny access in open operation when securelevel is set' Brian Maly Orabug: 27037811 4.1.12-103.9.1 - xfs: use dedicated log worker wq to avoid deadlock with cil wq Brian Foster Orabug: 27013241 - scsi: scsitransportiscsi: fix the issue that iscsiifrx...

7.8CVSS7.7AI score0.20797EPSS
Exploits26
Tenable Nessus
Tenable Nessus
added 2017/10/11 12:0 a.m.59 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3629)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-3629 advisory. - brcmfmac: fix possible buffer overflow in brcmfcfg80211mgmttx Tim Tianyang Chen Orabug: 26943541 CVE-2017-7541 Tenable has extracted the preceding...

7.8CVSS7AI score0.00547EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2017/10/10 12:0 a.m.51 views

Unbreakable Enterprise kernel security update

4.1.12-103.7.3 - brcmfmac: fix possible buffer overflow in brcmfcfg80211mgmttx Tim Tianyang Chen Orabug: 26943541 CVE-2017-7541 4.1.12-103.7.2 - rebuild bumping release...

7.8CVSS3.6AI score0.00547EPSS
Exploits0
OSV
OSV
added 2017/07/25 4:29 a.m.3 views

DEBIAN-CVE-2017-7541

The brcmfcfg80211mgmttx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service buffer overflow and system crash or possibly gain privileges via a crafted NL80211CMDFRAME Netlink packet...

7.8CVSS7.5AI score0.00547EPSS
Exploits0References1
OSV
OSV
added 2017/07/25 12:0 a.m.3 views

UBUNTU-CVE-2017-7541

The brcmfcfg80211mgmttx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service buffer overflow and system crash or possibly gain privileges via a crafted NL80211CMDFRAME Netlink packet...

7.8CVSS7AI score0.00547EPSS
Exploits0References15
Rows per page
Query Builder