1034 matches found
Design/Logic Flaw
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation...
DEBIAN-CVE-2018-5391
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation...
CVE-2018-5391
CVE-2018-5391 affects the Linux kernel (3.9+) via FragmentSmack: IP fragment reassembly can be exploited to exhaust CPU and cause DoS. Citrix/Arista/CentOS advisories describe affected products and kernel updates; CentOS/RH advisories list patched versions and note the vulnerability stems from fr...
CVE-2018-5391 The Linux kernel, versions 3.9+, IP implementation is vulnerable to denial of service conditions with low rates of specially modified packets
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation...
CVE-2018-5391
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation...
Unable to publish image, out of disk space, ELM console reports "No free mft record for $MFT: No space left on device"
When publishing an image, the task fails with the message, "A failure occurred while publishing the Layered Image: An error occurred while compositing the layer or image. Please check the available disk space on the local storage or the size of the target image." Also, in the ELM console, you mig...
CVE-2018-6923
CVE-2018-6923 affects FreeBSD versions prior to 11.1-STABLE, 11.2-RELEASE-p2, and 11.1-RELEASE-p13. The issue is in the IP fragment reassembly code and can allow a remote attacker that can send arbitrary IP fragments to cause denial of service through excessive resource consumption. The primary p...
FreeBSD Denial of Service Vulnerability (CNVD-2020-38784)
FreeBSD is a set of Unix-like free operating systems in the FreeBSD project, headed by the Core Team team, and is an important branch of Unix-like systems that have evolved through BSD, 386BSD, and 4.4BSD. A denial of service vulnerability exists in the ip fragmentation reorganization code in...
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2018-4195)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4195 advisory. - ipv4: frags: handle possible skb truesize change Eric Dumazet Orabug: 28481663 CVE-2018-5391 - inet: frag: enforce memory limits earlier Eric Dumazet...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4196)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4196 advisory. - posix-timer: Properly check sigevent-sigevnotify Thomas Gleixner Orabug: 28481412 CVE-2017-18344 - x86/mm/kmmio: Make the tracer robust against...
[SECURITY] [DSA 4272-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4272-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 14, 2018 https://www.debian.org/security/faq -...
UBUNTU-CVE-2018-5391
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation...
SUSE SLES12 Security Update : glibc (SUSE-SU-2018:2185-1)
This update for glibc fixes the following issues: Security issues fixed : - CVE-2017-15804: Fix buffer overflow during unescaping of user names in the glob function in glob.c bsc1064580. - CVE-2017-15670: Fix buffer overflow in glob with GLOBTILDE bsc1064583. - CVE-2017-15671: Fix memory leak in...
SUSE-SU-2018:2187-1 Security update for glibc
This update for glibc fixes the following issues: Security issues fixed: - CVE-2017-15804: Fix buffer overflow during unescaping of user names in the glob function in glob.c bsc1064580. - CVE-2017-15670: Fix buffer overflow in glob with GLOBTILDE bsc1064583. - CVE-2017-15671: Fix memory leak in...
Linux Kernel - UDP Fragmentation Offset 'UFO' Privilege Escalation (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linux Kernel UDP Fragmentation Offset UFO Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Linux systems...
Linux Kernel UDP Fragmentation Offset (UFO) Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linux Kernel UDP Fragmentation Offset UFO Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Linux systems...
CVE-2018-0369
A vulnerability in the reassembly logic for fragmented IPv4 packets of Cisco StarOS running on virtual platforms could allow an unauthenticated, remote attacker to trigger a reload of the npusim process, resulting in a denial of service DoS condition. There are four instances of the npusim proces...
Cisco StarOS IPv4 Fragmentation Denial of Service Vulnerability
A vulnerability in the reassembly logic for fragmented IPv4 packets of Cisco StarOS running on virtual platforms could allow an unauthenticated, remote attacker to trigger a reload of the npusim process, resulting in a denial of service DoS condition. There are four instances of the npusim proces...
Sifang CSI-200EA Measurement and Control Device IP Protocol Segmentation Denial of Service Vulnerability
CSI-200EA measurement and control device is mainly used in substation automation system of 110kV and above voltage level. A denial of service vulnerability exists in the IP protocol fragmentation of the Sifang CSI-200EA measurement and control device. An attacker can cause the network function of...
CVE-2018-0252
CVE-2018-0252 affects Cisco Wireless LAN Controller software on the 3500/5500/8500 series. Root cause: corruption in an internal data structure during IPv4 fragment reassembly. Impact: unauthenticated remote attacker can trigger a device reload, causing DoS. Affected releases include all 8.4 vers...