Ubuntu: Security Advisory (USN-2891-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS : QEMU vulnerabilities (USN-2891-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2891-1 advisory. Qinghao Tang discovered that QEMU incorrectly handled PCI MSI-X support. An attacker inside the guest could use this issue to cause QEMU to crash,...

USN-2891-1: QEMU vulnerabilities

Qinghao Tang discovered that QEMU incorrectly handled PCI MSI-X support. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 15.10. CVE-2015-7549 Lian Yihan discovered that QEMU incorrectl...

FreeBSD : qemu -- denial of service vulnerability in Q35 chipset emulation (152acff3-b1bd-11e5-9728-002590263bf5)

Prasad J Pandit, Red Hat Product Security Team, reports : Qemu emulator built with the Q35 chipset based pc system emulator is vulnerable to a heap based buffer overflow. It occurs during VM guest migration, as more16 bytes data is moved into allocated 8 bytes memory area. A privileged guest user...

CVE-2015-8666

Heap-based buffer overflow in QEMU, when built with the Q35-chipset-based PC system emulator...

UBUNTU-CVE-2015-8666

Heap-based buffer overflow in QEMU, when built with the Q35-chipset-based PC system emulator...

Juniper Networks Junos OS Trio Chipset DoS Vulnerability

Junos OS with Trio Chipsets are prone to a DoS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; if...

qemu -- denial of service vulnerability in Q35 chipset emulation

Prasad J Pandit, Red Hat Product Security Team, reports: Qemu emulator built with the Q35 chipset based pc system emulator is vulnerable to a heap based buffer overflow. It occurs during VM guest migration, as more16 bytes data is moved into allocated 8 bytes memory area. A privileged guest user...

Trinity Chipset line card denial of service vulnerability-vulnerability warning-the black bar safety net

Affected system: Juniper Networks Trinity Description: -------------------------------------------------------------------------------- CVECAN ID: CVE-2 0 1 5-7 7 4 8 Juniper Networks is a network communications equipment company, a major supplier of IP network and information security solutions...

Juniper Junos MX and T4000 Series Trinity uBFD Packet DoS (JSA10701)

According to its self-reported version number, the remote Juniper Junos device is potentially affected by a denial of service vulnerability due to improper handling of uBFD packets that are received directly by chassis that have the 'Trio Chipset' Trinity MPC. A remote attacker can exploit this...

Juniper Networks Trio Chipset Denial of Service Vulnerability

Juniper chassis with Trio Trinity chipset line cards and Junos OS are both products of Juniper Networks. The former is a chipset product. The latter is a network operating system designed specifically for the company's hardware systems. A security vulnerability exists in the Juniper Networks Trio...

Design/Logic Flaw

Juniper chassis with Trio Trinity chipset line cards and Junos OS 13.3 before 13.3R8, 14.1 before 14.1R6, 14.2 before 14.2R5, and 15.1 before 15.1R2 allow remote attackers to cause a denial of service MPC line card crash via a crafted uBFD packet...

CVE-2015-7748

Juniper chassis with Trio Trinity chipset line cards and Junos OS 13.3 before 13.3R8, 14.1 before 14.1R6, 14.2 before 14.2R5, and 15.1 before 15.1R2 allow remote attackers to cause a denial of service MPC line card crash via a crafted uBFD packet...

CVE-2015-7748

CVE-2015-7748 affects Juniper Networks Junos OS on Trio (Trinity) chipset line cards. A remote attacker can crash the MPC line card by sending crafted uBFD packets, yielding a denial-of-service. Affected: Junos OS versions 13.3 before 13.3R8; 14.1 before 14.1R6; 14.2 before 14.2R5; 15.1 before 15...

Oracle Linux 5 : kernel (ELSA-2014-1143)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-1143 advisory. - audit auditsc: auditkrule mask accesses need bounds checking Denys Vlasenko 1102702 1102703 CVE-2014-3917 Tenable has extracted the preceding description bloc...

RHEL 5 : kernel (RHSA-2014:1143)

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

Moderate: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

kernel: security and bugfix update (important)

The Linux kernel was updated to fix security issues and bugs. Security issues fixed: CVE-2014-3153: The futexrequeue function in kernel/futex.c in the Linux kernel did not ensure that calls have two different futex addresses, which allowed local users to gain privileges via a crafted FUTEXREQUEUE...

Ubuntu Update for linux USN-2075-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN20751.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux USN-2075-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

Ubuntu 13.10 : linux vulnerabilities (USN-2075-1)

Vasily Kulikov reported a flaw in the Linux kernel's implementation of ptrace. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. CVE-2013-2929 Dave Jones and Vince Weaver reported a flaw in the Linux kernel's per event subsystem that allows...