kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2017:0293 An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CentOS 6 : kernel (CESA-2017:0293)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

RHEL 7 : kernel (RHSA-2017:0294)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:0294 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A use-after-free flaw was found in the way the...

kernel: use after free in dccp protocol

A use-after-free flaw was found in the way the Linux kernel's Datagram Congestion Control Protocol DCCP implementation freed SKB socket buffer resources for a DCCPPKTREQUEST packet when the IPV6RECVPKTINFO option is set on the socket. A local, unprivileged user could use this flaw to alter the...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

kernel: use after free in dccp protocol

A use-after-free flaw was found in the way the Linux kernel's Datagram Congestion Control Protocol DCCP implementation freed SKB socket buffer resources for a DCCPPKTREQUEST packet when the IPV6RECVPKTINFO option is set on the socket. A local, unprivileged user could use this flaw to alter the...

USN-3207-1 linux vulnerabilities

It was discovered that a use-after-free vulnerability existed in the block device layer of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly gain administrative privileges. CVE-2016-7910 Dmitry Vyukov discovered a use-after-free vulnerability ...

DEBIAN-CVE-2017-6074

The dccprcvstateprocess function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCPPKTREQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service double free via an application that makes an IPV6RECVPKTINF...

CVE-2016-10178

An issue was discovered on the D-Link DWR-932B router. HELODBG on port 39889 UDP launches the "/sbin/telnetd -l /bin/sh" command...

ALPINE-CVE-2016-7936

The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udpprint...

UBUNTU-CVE-2016-7936

The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udpprint...

OpenSSL: Invalid free in DTLS

An invalid-free flaw was found in the way OpenSSL handled certain DTLS handshake messages. A malicious DTLS client or server could send a specially crafted message to the peer, which could cause the application to crash or potentially result in arbitrary code execution...

openssl: Padding oracle in AES-NI CBC MAC check

It was discovered that OpenSSL leaked timing information when decrypting TLS/SSL and DTLS protocol encrypted records when the connection used the AES CBC cipher suite and the server supported AES-NI. A remote attacker could possibly use this flaw to retrieve plain text from encrypted packets by...

Denial of service vulnerability in ntpd

Network Time Protocol NTP is a protocol used to synchronize a computer's time to its server or clock source e.g., quartz clock, GPS, etc.. Synchronizing a computer's clock to UTC ensures that data interactions in a network can proceed smoothly.NTPD Network Time Protocol daemon is an operating...

Qemu: net: out of bounds read in net_checksum_calculate()

An out-of-bounds read-access flaw was found in the QEMU emulator built with IP checksum routines. The flaw could occur when computing a TCP/UDP packet's checksum, because a QEMU function used the packet's payload length without checking against the data buffer's size. A user inside a guest could...

Multiple Denial of Service Vulnerabilities in Hollysys' K-Series Master Controller Module K-CU01

Founded in 1993, HollySys is a provider of automation and information technology solutions. Multiple denial of service vulnerabilities exist in Hollysys' K-Series Master Controller module K-CU01. 1 A malformed ulMessageSize field in the UdpComHeader structure is malformed to send malformed packet...

IKEv1 protocol is vulnerable to DoS amplification attack

A traffic amplification flaw was found in the Internet Key Exchange version 1 IKEv1 protocol. A remote attacker could use a libreswan server with IKEv1 enabled in a network traffic amplification denial of service attack against other hosts on the network by sending UDP packets with a spoofed sour...

Cisco NX-OS Software Information Disclosure Vulnerability (CNVD-2016-09464)

Cisco NX-OS is a data center-class operating system from Cisco that embodies modular design, perpetuity, and maintainability. An information disclosure vulnerability exists in versions prior to Cisco NX-OS 7.07.0has allowed remote attackers to obtain sensitive information via TCP or UDP...

Cisco IOS and IOS XE Software Denial of Service Vulnerability (CNVD-2016-08395)

Cisco IOS and IOS XE Software are operating systems developed by Cisco for its network devices.Internet Key Exchange version 1 IKEv1 Fragmentation is one of the protocols used to set up security associations SAs in the IPsec protocol suite. . A denial of service vulnerability exists in IKEv1...

openssl: DTLS replay protection bypass allows DoS against DTLS connection

A flaw was found in the Datagram TLS DTLS replay protection implementation in OpenSSL. A remote attacker could possibly use this flaw to make a DTLS server using OpenSSL to reject further packets sent from a DTLS client over an established DTLS connection...