openssl: DTLS out-of-sequence message handling NULL deref DoS

The dtls1retrievebufferedfragment function in ssl/d1both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an out-of-sequence DTLS handshake message, related to a "fragment bug."...

OpenSSL: DTLS pointer use-after-free flaw (DoS)

Use-after-free vulnerability in the dtls1retrievebufferedfragment function in ssl/d1both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service openssl sclient crash and possibly have unspecified other impact via a DTLS packet, as demonstrated by a packet from a server tha...

kernel: udp socket NULL ptr dereference

The udpsendmsg function in the UDP implementation in 1 net/ipv4/udp.c and 2 net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash via vectors involving the MSGMORE flag and a UDP socket...

kernel: udp socket NULL ptr dereference

The udpsendmsg function in the UDP implementation in 1 net/ipv4/udp.c and 2 net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash via vectors involving the MSGMORE flag and a UDP socket...

DEBIAN-CVE-2009-1377

The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS : linux, linux-source-2.6.15/22 vulnerabilities (USN-659-1)

It was discovered that the direct-IO subsystem did not correctly validate certain structures. A local attacker could exploit this to cause a system crash, leading to a denial of service. CVE-2007-6716 It was discovered that the disabling of the ZEROPAGE optimization could lead to large memory...

Mandriva Linux Security Advisory : kernel (MDVSA-2008:112)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.18, and probably other versions, does not properly check feature lengths, which might allow remote attackers to execute arbitrary code,...

Fedora 9 : udev-124-4.fc9 (2009-3712)

udev provides a user-space API and implements a dynamic device directory, providing only the devices present on the system. udev replaces devfs in order to provide greater hot plug functionality. Netlink is a datagram oriented service, used to transfer information between kernel modules and...

OpenBSD <= 4.5 IP datagram Null Pointer Deref DoS Exploit

No description provided by source. import sys from scapy import victim=sys.argv1 icmpv6=58 p=IPdst=victim p.proto=icmpv6 srp,timeout=1 milw0rm.com 2009-04-14...

OpenBSD <= 4.5 IP datagram Null Pointer Deref DoS Exploit

Exploit for openbsd platform in category dos / poc ========================================================= OpenBSD = 4.5 IP datagram Null Pointer Deref DoS Exploit ========================================================= import sys from scapy import victim=sys.argv1 icmpv6=58 p=IPdst=victim...

OpenBSD 4.5 - IP datagram Null Pointer Deref Denial of Service

import sys from scapy import victim=sys.argv1 icmpv6=58 p=IPdst=victim p.proto=icmpv6 srp,timeout=1 milw0rm.com 2009-04-14...

Mandriva Update for kernel MDVSA-2008:112 (kernel)

Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2008:112 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1

Ubuntu Update for Linux kernel vulnerabilities USN-659-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6591.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks...

Linux kernel dccp_setsockopt_change() integer overflow

Integer overflow in the dccpsetsockoptchange function in net/dccp/proto.c in the Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial of service panic via a crafted integer value, related to Change L and Chan...

RHEL 5 : kernel (RHSA-2008:0957)

Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 12th November 2008 The original packages distributed wi...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise MRG 1.0. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

Linux kernel dccp_setsockopt_change() integer overflow

Integer overflow in the dccpsetsockoptchange function in net/dccp/proto.c in the Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial of service panic via a crafted integer value, related to Change L and Chan...

DEBIAN-CVE-2008-2957

The UPnP functionality in Pidgin 2.0.0, and possibly other versions, allows remote attackers to trigger the download of arbitrary files and cause a denial of service memory or disk consumption via a UDP packet that specifies an arbitrary URL...

DEBIAN-CVE-2008-0882

Double free vulnerability in the processbrowsedata function in CUPS 1.3.5 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via crafted UDP Browse packets to the cupsd port 631/udp, related to an unspecified manipulation of a remote printer. NOT...

Debian Security Advisory DSA 651-1 (squid)

The remote host is missing an update to squid announced via advisory DSA 651-1. OpenVAS Vulnerability Test $Id: deb6511.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 651-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...