37 matches found
SUSE-SU-2023:2313-1 Security update for c-ares
This update for c-ares fixes the following issues: Update to version 1.19.1: - CVE-2023-32067: 0-byte UDP payload causes Denial of Service bsc1211604 - CVE-2023-31147: Insufficient randomness in generation of DNS query IDs bsc1211605 - CVE-2023-31130: Buffer Underwrite in aresinetnetpton bsc12116...
kernel: RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device
An out-of-bounds write vulnerability exists in the linux kernel, such that when mlx5ibgethwstats is used forthe device portnum = 0, There is a special handling in order to use the correct counters, but, portnum is being passed down the stack without any change leading to damage in system...
kernel: RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device
An out-of-bounds write vulnerability exists in the linux kernel, such that when mlx5ibgethwstats is used forthe device portnum = 0, There is a special handling in order to use the correct counters, but, portnum is being passed down the stack without any change leading to damage in system...
SUSE CVE-2008-5081
The originatesfromlocallegacyunicastsocket function avahi-core/server.c in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service crash via a crafted mDNS packet with a source port of 0, which triggers an assertion failure...
Vulnerability fixed in OpenBSD
A vulnerability has been fixed in OpenBSD. A malicious person at remote user could potentially exploit the vulnerability to cause a Denial-of-Service by sending a TCP packet with destination port 0. To do this, however, a "divert-to" rule must be included in the pf configuration included in the p...
PT-2025-8062
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A issue in the Linux kernel has been identified where the driver does not properly guard against invalid local ports when processing events generated by the device's firmware...
DEBIAN-CVE-2019-18976
An issue was discovered in respjsipt38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. This is different from CVE-2019-18940...
CVE-2019-18976
An issue was discovered in respjsipt38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. This is different from CVE-2019-18940...
DEBIAN-CVE-2017-1000407
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic...
UBUNTU-CVE-2017-1000407
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic...
Cisco IOS and Cisco IOS XE Denial of Service Vulnerabilities
Cisco IOS and IOS XE are both operating systems developed by Cisco for its network devices.UDP processing is one of the UDP User Datagram Protocol protocol handlers. A denial of service vulnerability exists in the UDP processing code in Cisco IOS and IOS XE. A remote attacker could exploit this...
CVE-2017-6627
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14 through 3.18 could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and a denial of service DoS condition. The...
qemu: slirp: NULL pointer deref in sosendto()
A NULL pointer dereference flaw was found in the way QEMU handled UDP packets with a source port and address of 0 when QEMU's user networking was in use. A local guest user could use this flaw to crash the guest...
avahi: avahi-daemon DoS (application abort) via packet with source port 0
The originatesfromlocallegacyunicastsocket function avahi-core/server.c in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service crash via a crafted mDNS packet with a source port of 0, which triggers an assertion failure...
DEBIAN-CVE-2008-5081
The originatesfromlocallegacyunicastsocket function avahi-core/server.c in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service crash via a crafted mDNS packet with a source port of 0, which triggers an assertion failure...
CVE-2004-0525
HP Integrated Lights-Out iLO 1.10 and other versions before 1.55 allows remote attackers to cause a denial of service hang by accessing iLO using the TCP/IP reserved port zero...
CVE-1999-0675
Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host...