18 matches found
EUVD-2026-24899
In the Linux kernel, the following vulnerability has been resolved: afkey: validate families in pfkeysendmigrate syzbot was able to trigger a crash in skbput 1 Issue is that pfkeysendmigrate does not check old/new families, and that setipsecrequest @family argument was truncated, thus possibly...
BIT-MONGODB-2025-12657 Malformed KMIP response may result in access violation
The KMIP response parser built into mongo binaries is overly tolerant of certain malformed packets, and may parse them into invalid objects. Later reads of this object can result in read access violations...
CVE-2025-12657
The KMIP response parser built into mongo binaries is overly tolerant of certain malformed packets, and may parse them into invalid objects. Later reads of this object can result in read access violations...
CVE-2025-12657
The KMIP response parser built into mongo binaries is overly tolerant of certain malformed packets, and may parse them into invalid objects. Later reads of this object can result in read access violations...
UBUNTU-CVE-2025-12657
The KMIP response parser built into mongo binaries is overly tolerant of certain malformed packets, and may parse them into invalid objects. Later reads of this object can result in read access violations...
CVE-2025-12657
The CVE-2025-12657 issue affects the KMIP response parser built into MongoDB binaries. The parser is overly tolerant of certain malformed KMIP packets, which can cause it to construct invalid objects. Subsequent reads of these objects may trigger read access violations, as described in multiple c...
Malformed KMIP response may result in access violation
The KMIP response parser built into mongo binaries is overly tolerant of certain malformed packets, and may parse them into invalid objects. Later reads of this object can result in read access violations...
MongoDB Server 安全漏洞
MongoDB Server is a set of open source NoSQL databases from the American company MongoDB. The database provides collection-oriented storage, dynamic querying, data replication and automatic failover. A security vulnerability exists in MongoDB Server that stems from an over-tolerance of malformed...
MongoDB -- Improper Check for Unusual or Exceptional Conditions
https://jira.mongodb.org/browse/SERVER-101230 reports: The KMIP response parser built into mongo binaries is overly tolerant of certain malformed packets, and may parse them into invalid objects. Later reads of this object can result in read access violations...
SUSE CVE-2005-3241
Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote attackers to cause a denial of service memory consumption via unspecified vectors in the 1 ISAKMP, 2 FC-FCS, 3 RSVP, and 4 ISIS LSP dissector...
SUSE CVE-2017-5205
The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2eprint...
tcpdump: Buffer over-read in print-isakmp.c, several functions in ISAKMP parser
The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions...
Tcpdump ISAKMP Parser Denial of Service Vulnerability
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.ISAKMP parser is one of the key exchange protocol parsers. A denial of...
UBUNTU-CVE-2012-6059
The dissectisakmp function in epan/dissectors/packet-isakmp.c in the ISAKMP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data structure to determine IKEv2 decryption parameters, which allows remote attackers to cause a denial of service application crash via...
security flaw
Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote attackers to cause a denial of service memory consumption via unspecified vectors in the 1 ISAKMP, 2 FC-FCS, 3 RSVP, and 4 ISIS LSP dissector...
security flaw
The rawprint function in the ISAKMP decoding routines print-isakmp.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service segmentation fault via malformed ISAKMP packets that cause invalid "len" or "loc" values to be used in a loop, a different vulnerability than...
security flaw
tcpdump before 3.8.1 allows remote attackers to cause a denial of service infinite loop via certain ISAKMP packets, a different vulnerability than CVE-2004-0057...
security flaw
Ethereal 0.9.15 and earlier, and Tethereal, allows remote attackers to cause a denial of service crash via certain malformed 1 ISAKMP or 2 MEGACO packets...