DNS Spoofing

GNU C Library is vulnerable to DNS spoofing attacks. A remote unauthenticated attacker could potentially simplify off-path DNS spoofing attacks due to IP fragmentation. This affects some unknown processing of the component EDNS Support...

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1475)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denia...

Out-Of-Bounds Read

Linux kernel is vulnerable to out-of-bounds reads. This is because the IPv6 fragmentation implementation in the Linux kernel does not consider that the nexthdr field may be associated with an invalid option. Local users could cause a denial of service or possibly have unspecified other impact via...

Denial Of Service (DoS)

IPv6 protocol is vulnerable to denial of serviceDos attacks. Remote attacker could leverage the generation of IPv6 atomic fragments to trigger the use of fragmentation in an arbitrary IPv6 flow and subsequently perform any type of a fragmentation-based attack against legacy IPv6 nodes that do not...

Heap-based Out-Of-Bounds Write

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way IP packets with an Internet Header Length ihl of zero were processed in the skbflowdissect function in the Linux kernel. A remote attacker could use this flaw to trigger an infinit...

Null pointer dereference

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

ALPINE-CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

DEBIAN-CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

UBUNTU-CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

FreeBSD : FreeBSD -- EAP-pwd message reassembly issue with unexpected fragment (a207bbd8-6572-11e9-8e67-206a8a720317)

EAP-pwd implementation in hostapd EAP server and wpasupplicant EAP peer does not to validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to NULL pointer dereference. See...

The vulnerability of the Windows operating system, related to errors in processing fragmented IP packets by the stack, allows a hacker to disclose sensitive information that is protected.

The vulnerability of the Windows operating system is related to errors in processing fragmented IP packets. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose sensitive information using specially crafted fragmented IP packets...

kernel: IP fragments with random offsets allow a remote denial of service (FragmentSmack)

A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU...

kernel: IP fragments with random offsets allow a remote denial of service (FragmentSmack)

A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU...

Cisco Remote PHY Software Resource Management Error Vulnerability

Cisco Remote PHY Software is a digital fiber-based DOCSIS solution from Cisco. The program uses Ethernet PON EPON and metro network as the transmission network. A resource management error vulnerability exists in the IPv4 fragmentation function in Cisco Remote PHY Software. A remote attacker coul...

CVE-2018-5391

creationtimestamp| type| source ---|---|--- 2018-10-04 07:29:19+00:00| seen| https://t.me/securixykz/19 2018-12-31 08:38:43+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus-ip-pakettien-pilkkomisen-toteutuksissa...

kernel: IP fragments with random offsets allow a remote denial of service (FragmentSmack)

A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU...

UBUNTU-CVE-2018-14641

A security flaw was found in the ipfragreasm function in net/ipv4/ipfragment.c in the Linux kernel from 4.19-rc1 to 4.19-rc3 inclusive, which can cause a later system crash in ipdofragment. With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash...