CVE-2020-25662

A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernel's Bluetooth stack implementation handled the initialization of stack memory when handling certain AMP packets. This flaw allows a remote attacker in an adjacent range to leak small portions of stack memory on the...

CVE-2020-25661

A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on...

CVE-2020-5652

Uncontrolled resource consumption vulnerability in Ethernet Port on MELSEC iQ-R, Q and L series CPU modules R 00/01/02 CPU firmware versions '20' and earlier, R 04/08/16/32/120 EN CPU firmware versions '52' and earlier, R 08/16/32/120 SFCPU firmware versions '22' and earlier, R 08/16/32/120 PCPU...

Security Bulletin: Publicly disclosed vulnerabilities from Kernel affect IBM Netezza Host Management

Summary Kernel is used by IBM Netezza Host Management. This bulletin provides mitigation for the reported CVEs. Vulnerability Details CVEID: CVE-2019-19051 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a memory leak in the i2400moprfkillswtoggle function in...

Missing handle permissions check in SMB1/2/3

Description The SMB1/2/3 protocols have a concept of "ChangeNotify", where a client can request file name notification on a directory handle when a condition such as "new file creation" or "file size change" or "file timestamp update" occurs. A missing permissions check on a directory handle...

bettercap-proxy-modules

This is a collection of HTTP proxy modules for the BetterCap framework, a tool for performing network attacks and penetration testing. The modules are designed to be used with the BetterCap proxy server, which can be configured to intercept and modify HTTP traffic between a client and a server. T...

USN-4552-3: Pam-python regression

USN-4552-1 and USN-4552-2 fixed a vulnerability in Pam-python. The update introduced a regression which prevented PAM modules written in Python from importing python modules from site-specific directories. We apologize for the inconvenience. Original advisory details: Malte Kraus discovered that...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules exists due to insufficient testing of input data. This allows attackers to trigger service failures.

Vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to access control deficiencies, allows attackers to trigger service failures.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of microprogramming software in server boards, server systems, and Intel computing modules relates to writing beyond the buffer memory boundaries, allowing attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to writing beyond the buffer memory boundaries. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.

The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.

The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.

The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of microprogramming software in server boards, server systems, and Intel computing modules arises from the lack of measures to protect input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules relates to the improper activation of a pointer, allowing an attacker to trigger a service failure.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the exploitation of a faulty pointer. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow attackers to enhance their privileges...