Ubuntu: Security Advisory (USN-4005-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-4008-1 linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities

Robert Święcki discovered that the Linux kernel did not properly apply Address Space Layout Randomization ASLR in some situations for setuid elf binaries. A local attacker could use this to improve the chances of exploiting an existing vulnerability in a setuid elf binary. CVE-2019-11190 It was...

The vulnerability of the PIM protocol implementation in the Cisco IOS XR operating system allows a attacker to trigger a service failure.

The vulnerability of the Protocol Independent Multicast PIM implementation in the Cisco IOS XR operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted packets to port UDP 49...

The vulnerability of the McAfee Agent client component, caused by an operation going beyond the buffer in memory, allows a perpetrator to trigger a service failure.

The vulnerability of the McAfee Agent client component arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted UDP packets remotely...

CVE-2019-11683

udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memory corruption or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka t...

UBUNTU-CVE-2019-11683

udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memory corruption or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka t...

CVE-2019-10309

Jenkins Self-Organizing Swarm Plug-in Modules Plugin clients that use UDP broadcasts to discover Jenkins masters do not prevent XML External Entity processing when processing the responses, allowing unauthorized attackers on the same network to read arbitrary files from Swarm clients...

CVE-2018-19016

Rockwell Automation EtherNet/IP Web Server Modules 1756-EWEB includes 1756-EWEBK Version 5.001 and earlier, and CompactLogix 1768-EWEB Version 2.005 and earlier. A remote attacker could send a crafted UDP packet to the SNMP service causing a denial-of-service condition to occur until the affected...

Design/Logic Flaw

Rockwell Automation RSLinx Enterprise Software LogReceiver.exe CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it receives a datagram with an incorrect value in the “Record Data Size” field. By sendin...

Design/Logic Flaw

Rockwell Automation RSLinx Enterprise Software LogReceiver.exe CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it calculates an incorrect value for the “End of Current Record” field. By sending a...

CVE-2013-2806

Rockwell Automation RSLinx Enterprise Software LogReceiver.exe CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it calculates an incorrect value for the “End of Current Record” field. By sending a...

CVE-2019-6596

In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, 12.1.0-12.1.3.6, 11.6.1-11.6.3.2, or 11.5.1-11.5.8, when processing fragmented ClientHello messages in a DTLS session TMM may corrupt memory eventually leading to a crash. Only systems offering DTLS connections via APM are impacted...

McAfee Agent Denial of Service Vulnerability

The McAfee Agent is a distributed component of McAfee ePolicy Orchestrator McAfee ePO that downloads and enforces policies, performs client-side tasks such as deployments and updates, and also uploads events and provides other data about the status of each system. A denial of service vulnerabilit...

CVE-2019-3598

Buffer Access with Incorrect Length Value in McAfee Agent MA 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets...

The vulnerability of the UDP protocol implementation in the IoT Field Network Director software for network management allows a attacker to cause a service failure.

The vulnerability of the UDP protocol implementation in the IoT Field Network Director software for network management involves an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

Cisco IoT Field Network Director Resource Management Error Vulnerability

Cisco IoT Field Network Director IoT-FND is an end-to-end IoT management system from Cisco USA. The system features device management, asset tracking and smart metering. A resource management error vulnerability exists in Cisco IoT Field Network Director. An attacker can exploit this vulnerabilit...

CVE-2019-1644

A vulnerability in the UDP protocol implementation for Cisco IoT Field Network Director IoT-FND could allow an unauthenticated, remote attacker to exhaust system resources, resulting in a denial of service DoS condition. The vulnerability is due to improper resource management for UDP ingress...

Denial Of Service

The kernel packages is vulnerable to use-after-free flaw. Linux kernel's Datagram Congestion Control Protocol DCCP implementation has a flaw in freeing SKB socket buffer resources for a DCCPPKTREQUEST packet when the IPV6RECVPKTINFO option is set on the socket, allowing a local user with little...

Denial Of Service (DoS)

The kernel-rt package is vulnerable to denial of serviceDoS. The attack exists because of a use-after-free flaw in the way the Linux kernel's Datagram Congestion Control Protocol DCCP implementation freed SKB socket buffer resources for a DCCPPKTREQUEST packet when the IPV6RECVPKTINFO option is s...

Zoom Client Message Spoofing Vulnerability

Zoom Client is a video conferencing endpoint from Zoom USA that supports multiple platforms. A message spoofing vulnerability exists in Zoom Client. An attacker can construct malicious UDP packets to remotely control users using the desktop version of Zoom including MacOS, Linux, and Windows on t...