Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ppp: Rejects packets that are claimed to be LCP packets but are actually malformed packets. Since pppasyncencode assumes that the packets are valid LCP packets with codes from 1 to 7 inclusive, add pppcheckpacket to ensure that t...

The vulnerability of the UDP packet verification mechanism in microprogramming software for Cisco SD-WAN vEdge allows a attacker to trigger a service failure.

The vulnerability of the UDP packet verification mechanism in Cisco SD-WAN vEdge microprogramming software lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially...

CVE-2022-20683

A vulnerability in the Application Visibility and Control AVC-FNF feature of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to...

Buffer overflow

The SIP module of some Huawei products have a denial of service DoS vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the...

CVE-2017-17222

Import Language Package function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after Language Package is uploaded. Due to insufficient...