CVE-2024-39526

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX304 devices, and Juniper Networks Junos OS Evolved on PTX Series, allows an attacker sending...

CVE-2024-39526

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX304 devices, and Juniper Networks Junos OS Evolved on PTX Series, allows an attacker sending...

CVE-2024-39526 Junos OS and Junos OS Evolved: MX Series with MPC10/MPC11/LC9600, MX304, EX9200, PTX Series: Receipt of malformed DHCP packets causes interfaces to stop processing packets

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX304 devices, and Juniper Networks Junos OS Evolved on PTX Series, allows an attacker sending...

CVE-2024-39526

CVE-2024-39526 affects Junos OS on MX Series (MPC10/MPC11/LC9600), EX9200 (EX9200-15C), MX304, and Junos OS Evolved on PTX Series. The issue is an improper handling of exceptional conditions in DHCP packet processing; when DHCP snooping is enabled, malformed DHCP packets can cause ingress process...

Juniper Junos OS Vulnerability (JSA88103)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA88103 advisory. - An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with...

PT-2024-27981

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon Auto User Packet Handler affected versions not specified Description The issue is related to memory corruption that occurs while processing user packets, leading to the generation of page faults. This is caused by a...

net: ethernet: mtk_eth_soc: fix PPE hanging issue

...

kernel: netfilter: bridge: replace physindev with physinif in nf_bridge_info

CVE-2024-35839 is a flaw in the Linux kernel's Netfilter bridge functionality. It occurs when bridging certain packets, such as those involving destination NAT between virtual Ethernet interfaces. A mismatch between the network device associated with a packet and the neighbor's device can lead to...

kernel: netfilter: bridge: replace physindev with physinif in nf_bridge_info

CVE-2024-35839 is a flaw in the Linux kernel's Netfilter bridge functionality. It occurs when bridging certain packets, such as those involving destination NAT between virtual Ethernet interfaces. A mismatch between the network device associated with a packet and the neighbor's device can lead to...

PT-2024-41494 · Git +1 · Pcapplusplus

Name of the Vulnerable Software and Affected Versions: libpcap affected versions not specified Description: The software contains a use-of-uninitialized-value issue within the pcpp::NflogLayer::parseNextLayer and pcpp::Packet::setRawPacket functions, as reported by OSS-Fuzz. This issue occurs...

DEBIAN-CVE-2024-41043

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: drop bogus WARNON Happens when rules get flushed/deleted while packet is out, so remove this WARNON. This WARN exists in one form or another since v4.14, no need to backport this to older releases, henc...

Fedora 39 : tcpreplay (2024-740d26aaf7)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-740d26aaf7 advisory. Announcing v4.5.1 This release contains contributions from a record number of new contributors. This is greatly appreciated since I am a team of one, and do...

Fedora 40 : tcpreplay (2024-ecd4cc8435)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-ecd4cc8435 advisory. Announcing v4.5.1 This release contains contributions from a record number of new contributors. This is greatly appreciated since I am a team of one, and do...

Tenda AX12 Denial of Service Vulnerability

Tenda AX12 is a dual-band Gigabit Wi-Fi 6 wireless router designed for home users, supporting dual-band concurrent transmission at up to 2976Mbps. The Tenda AX12 suffers from a denial of service vulnerability that can be exploited by attackers to cause a denial of service with the help of Routing...

CVE-2024-39559

An Improper Check for Unusual or Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS Evolved may allow a network-based unauthenticated attacker to crash the device vmcore by sending a specific TCP packet over an established TCP session with MD5 authentication...

Juniper Networks Junos OS Evolved Security Vulnerability

Juniper Networks Junos OS Evolved is an upgraded version of Juniper Networks' Junos OS system. A security vulnerability exists in Juniper Networks Junos OS Evolved, which arises from a vulnerability in packet processing that does not properly check for anomalies or unusual conditions, allowing an...

kernel: gro: fix ownership transfer

A flaw was found in the Linux kernel's Generic Receive Offload GRO feature, where packets processed with a fragment list are not properly orphaned due to incorrect handling of socket references. This vulnerability can cause system instability or kernel bugs. The issue has been fixed by making sur...

CBL Mariner 2.0 Security Update: openvswitch (CVE-2023-1668)

The version of openvswitch installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-1668 advisory. - A flaw was found in openvswitch OVS. When processing an IP packet with protocol 0, OVS will install the...

SUSE CVE-2024-38558

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix overwriting ct original tuple for ICMPv6 OVSPACKETCMDEXECUTE has 3 main attributes: - OVSPACKETATTRKEY - Packet metadata in a netlink format. - OVSPACKETATTRPACKET - Binary packet content. -...

CVE-2024-38381

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in ncirxwork syzbot reported the following uninit-value access issue 1 ncirxwork parses received packet from ndev-rxq. It should be validated header size, payload size and total packet size before...