DEBIAN-CVE-2016-6888

Integer overflow in the nettxpktinit function in hw/net/nettxpkt.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service QEMU process crash via the maximum fragmentation count, which triggers an unchecked multiplication and NULL pointer dereference...

DEBIAN-CVE-2016-6834

The nettxpktdoswfragmentation function in hw/net/nettxpkt.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via a zero length for the current fragment length...

Code injection

The icmp6send function in net/ipv6/icmp.c in the Linux kernel through 4.8.12 omits a certain check of the dst data structure, which allows remote attackers to cause a denial of service panic via a fragmented IPv6 packet...

Cisco IOS IKEv1 Fragmentation DoS (cisco-sa-20160928-ios-ikev1)

According to its self-reported version and configuration, the Cisco IOS software running on the remote device is affected by a denial of service vulnerability in the Internet Key Exchange version 1 IKEv1 subsystem due to improper handling of fragmented IKEv1 packets. An unauthenticated, remote...

Android Fragmentation Sinks Patching Gains

It’s been 13 months since Google began releasing Android security bulletins and software patches on a scheduled, monthly basis. So far, the benefits of the new strategy to shore up Android’s defenses are mixed at best. Compared to Apple’s patching track record, Google’s is significantly lacking...

Cisco IOS and IOS XE Software Denial of Service Vulnerability (CNVD-2016-08395)

Cisco IOS and IOS XE Software are operating systems developed by Cisco for its network devices.Internet Key Exchange version 1 IKEv1 Fragmentation is one of the protocols used to set up security associations SAs in the IPsec protocol suite. . A denial of service vulnerability exists in IKEv1...

Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerability

A vulnerability in the Internet Key Exchange version 1 IKEv1 fragmentation code of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an exhaustion of available memory or a reload of the affected system. The vulnerability is due to the improper handling of...

Schneider PLC 67160 IP Segmentation Syntax Denial of Service Vulnerability

The Schneider PLC is a hot standby system. A denial of service vulnerability exists in the Schneider PLC 67160 IP fragmentation syntax. The vulnerability occurs due to a failure to properly process and discard illegal data frames from these IP slices, resulting in a system buffer overflow and...

Tengen Controls Model T-920 PLC IP Segmentation Syntax Denial of Service Vulnerability

T920 is an all-in-one, industrial-grade, high-performance programmable controller from TengControl Technology. A denial of service vulnerability exists in the IP fragmentation syntax of the Tengen T-920 PLC. An attacker can test its fragmentation reorganization capability by sending a data frame...

UBUNTU-CVE-2016-6888

Integer overflow in the nettxpktinit function in hw/net/nettxpkt.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service QEMU process crash via the maximum fragmentation count, which triggers an unchecked multiplication and NULL pointer dereference...

UBUNTU-CVE-2016-6834

The nettxpktdoswfragmentation function in hw/net/nettxpkt.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash via a zero length for the current fragment length...

QEMU '/hw/net/net_tx_pkt.c' Packet Fragmentation Denial of Service Vulnerability

QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. A denial-of-service vulnerability exists in the QEMU '/hw/net/nettxpkt.c' package fragment, which allows an attacker to exploit the vulnerability to crash the...

Fedora 22 : nfdump (2016-3b49c9aa49)

nfdump 1.6.15 released. --- - Fix Security issue http://www.security-assessment.com/files/documents/advis ory/Nfdump%20nfcapd%201.6.14%20-%20Multiple%20Vulnerabil ities.pdf - Fix obyte, opps and obps output records - Fix wrong bps type case in cvs output. Fix opbs ipbs typos nfdump 1.6.14 release...

Fedora 24 : nfdump (2016-a771d67ba0)

nfdump 1.6.15 released. --- - Fix Security issue http://www.security-assessment.com/files/documents/advis ory/Nfdump%20nfcapd%201.6.14%20-%20Multiple%20Vulnerabil ities.pdf - Fix obyte, opps and obps output records - Fix wrong bps type case in cvs output. Fix opbs ipbs typos nfdump 1.6.14 release...

Vulnerability of the OpenSSL software, which allows a malicious attacker to compromise protected information

The vulnerability in the ssl23getclienthello function of s23srvr.c for OpenSSL allows a malicious actor to downgrade the TLS protocol version by fragmenting the ClientHello message during data exchange between the client and servers that support newer versions of the protocol...

Cisco IOS and IOS XE Software Internet Key Exchange Version 2 Fragmentation Denial of Service Vulnerability

A vulnerability in the Internet Key Exchange IKE version 2 v2 fragmentation code of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of the affected system. The vulnerability is due to an improper handling of crafted, fragmented IKEv2 packets. An...

The vulnerability of the Android operating system, which allows a hacker to execute arbitrary code or cause a service failure

The vulnerability of the MPEG4Source::fragmentedRead function in the libstagefright library of the Android operating system exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure memory...

Cisco IOS IKEv2 Fragmentation DoS (cisco-sa-20160323-ios-ikev2)

According to its self-reported version, the Cisco IOS software running on the remote device is affected by a denial of service vulnerability in the Internet Key Exchange version 2 IKEv2 subsystem due to improper handling of fragmented IKEv2 packets. An unauthenticated, remote attacker can exploit...

Cisco IOS XE IKEv2 Fragmentation DoS (cisco-sa-20160323-ios-ikev2)

According to its self-reported version, the Cisco IOS XE software running on the remote device is affected by a denial of service vulnerability in the Internet Key Exchange version 2 IKEv2 subsystem due to improper handling of fragmented IKEv2 packets. An unauthenticated, remote attacker can...

Cisco IOS and IOS XE Software Internet Key Exchange Denial of Service Vulnerability

Cisco IOS and IOS XE Software are both operating systems developed by Cisco for its network devices. A security vulnerability exists in the IKE version 2 fragmentation code in Cisco IOS and IOS XE Software due to the program failing to properly handle fragmented IKEv2 packets. A remote attacker...