PT-2022-35498 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.150 Description: The issue is related to the xfrm component, specifically with the update of ipcomp scratches when freed. The actual impact and attack plausibility have not yet been proven. Recommendations...

PT-2022-35291 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to the xfrm component, specifically with the update of ipcomp scratches when freed. The actual impact and attack plausibility have not yet been proven. Recommendations:...

XNU - Remote Double-Free via Data Race in IPComp Input Path Exploit

=== Summary === This report describes a bug in the XNU implementation of the IPComp protocol https://tools.ietf.org/html/rfc3173. This bug can be remotely triggered by an attacker who is able to send traffic to a macOS system iOS AFAIK isn't affected over two network interfaces at the same time...

XNU - Remote Double-Free via Data Race in IPComp Input Path

XNU - Remote Double-Free via Data Race in IPComp Input Path === Summary === This report describes a bug in the XNU implementation of the IPComp protocol https://tools.ietf.org/html/rfc3173. This bug can be remotely triggered by an attacker who is able to send traffic to a macOS system iOS AFAIK...

XNU - Remote Double-Free via Data Race in IPComp Input Path

=== Summary === This report describes a bug in the XNU implementation of the IPComp protocol https://tools.ietf.org/html/rfc3173. This bug can be remotely triggered by an attacker who is able to send traffic to a macOS system iOS AFAIK isn't affected over two network interfaces at the same time...

tcpdump buffer overflow vulnerability (CNVD-2017-02327)

tcpdump is a set of sniffing tools developed by the Tcpdump team that run under the command line. The tool allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer. A buffer overflow vulnerability exists in the ipcompprint function...

ALPINE-CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

CVE-2016-7928

The CVE-2016-7928 entry concerns tcpdump prior to version 4.9.0, where the IPComp parser (print-ipcomp.c:ipcomp_print()) is vulnerable to a buffer overflow. The flaw allows a remote attacker to overflow a buffer by sending an overly long argument, potentially leading to arbitrary code execution o...

CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

UBUNTU-CVE-2016-7928

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcompprint...

Apple Mac OS X xnu <= 1228.3.13 - IPv6-ipcomp Remote kernel DoS PoC

No description provided by source. / xnu-ipv6-ipcomp.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.3.13 ipv6-ipcomp remote kernel DoS POC by mu-b - Sun 24 Feb 2008 - Tested on: Apple MACOS X 10.5.1 xnu-1228.0.21/RELEASEI386 Apple MACOS X 10.5.2 xnu-1228.3.131/RELEASEI386...

IPComp encapsulation pre-auth kernel memory corruption

No description provided by source. //source: http://lists.grok.org.uk/pipermail/full-disclosure/2011-April/080031.html BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, this...

CVE-2011-1547

Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1, when IPsec is enabled, allow remote attackers to cause a denial of service memory corruption and panic or possibly have unspecified other impact via a crafted 1 IPv4 or 2 IPv6 packet wi...

Memory corruption

Multiple stack consumption vulnerabilities in the kernel in NetBSD 4.0, 5.0 before 5.0.3, and 5.1 before 5.1.1, when IPsec is enabled, allow remote attackers to cause a denial of service memory corruption and panic or possibly have unspecified other impact via a crafted 1 IPv4 or 2 IPv6 packet wi...

IPComp encapsulation pre-auth kernel memory corruption

Exploit for bsd platform in category dos / poc from: http://lists.grok.org.uk/pipermail/full-disclosure/2011-April/080031.html BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, th...