Lucene search
+L

1066 matches found

OSV
OSV
added 2018/03/01 5:47 p.m.4 views

USN-3586-1 isc-dhcp vulnerabilities

Konstantin Orekhov discovered that the DHCP server incorrectly handled a large number of concurrent TCP sessions. A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2016-2774 It was discovered that the...

7.5CVSS6.8AI score0.73622EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2018/03/01 5:47 p.m.78 views

USN-3586-1: DHCP vulnerabilities

Konstantin Orekhov discovered that the DHCP server incorrectly handled a large number of concurrent TCP sessions. A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2016-2774 It was discovered that the...

7.5CVSS6.8AI score0.73622EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2017/12/13 9:50 a.m.42 views

CVE-2017-17564

An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service host OS crash or gain host OS privileges by leveraging incorrect error handling for reference counting in shadow mode...

7.8CVSS5.1AI score0.00352EPSS
Exploits0References2
NVD
NVD
added 2017/12/12 11:29 p.m.19 views

CVE-2017-17564

An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service host OS crash or gain host OS privileges by leveraging incorrect error handling for reference counting in shadow mode...

7.8CVSS6.7AI score0.00352EPSS
Exploits0References9
OSV
OSV
added 2017/12/12 11:29 p.m.5 views

UBUNTU-CVE-2017-17564

An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service host OS crash or gain host OS privileges by leveraging incorrect error handling for reference counting in shadow mode...

7.8CVSS6.9AI score0.00352EPSS
Exploits0References4
OSV
OSV
added 2017/12/12 11:29 p.m.3 views

DEBIAN-CVE-2017-17564

An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service host OS crash or gain host OS privileges by leveraging incorrect error handling for reference counting in shadow mode...

7.8CVSS7.9AI score0.00352EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/12/12 10:0 p.m.27 views

CVE-2017-17564

An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service host OS crash or gain host OS privileges by leveraging incorrect error handling for reference counting in shadow mode...

6.4AI score0.00352EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2017/12/12 10:0 p.m.30 views

CVE-2017-17564

An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service host OS crash or gain host OS privileges by leveraging incorrect error handling for reference counting in shadow mode...

7.8CVSS7.8AI score0.00352EPSS
Exploits0
CVE
CVE
added 2017/12/12 10:0 p.m.117 views

CVE-2017-17564

CVE-2017-17564 affects the Xen hypervisor (up to 4.9.x). Vulnerability arises from incorrect error handling for reference counting in shadow mode, allowing a guest OS user to crash the host OS or gain host privileges. Exploitation details are not provided in the initial document, but related conn...

7.8CVSS6.2AI score0.00352EPSS
Exploits0References9Affected Software1
Ubuntu
Ubuntu
added 2017/09/18 11:25 p.m.100 views

USN-3422-2: Linux kernel (Trusty HWE) vulnerabilities

USN-3422-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 LTS. It was discovered that a buffer overflow existed in the Bluetooth stack of the Linux...

8CVSS7.9AI score0.16181EPSS
Exploits17
OSV
OSV
added 2017/09/18 8:29 p.m.14 views

USN-3422-1 linux vulnerabilities

It was discovered that a buffer overflow existed in the Bluetooth stack of the Linux kernel when handling L2CAP configuration responses. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2017-1000251 It was discovered that the asynchronous I/O aio...

8CVSS7.8AI score0.16181EPSS
Exploits17References19
OpenVAS
OpenVAS
added 2017/09/11 12:0 a.m.34 views

Debian: Security Advisory (DSA-3969-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.0367EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/09/01 12:0 a.m.46 views

OracleVM 3.2 : xen (OVMSA-2017-0149)

The remote OracleVM system is missing necessary patches to address critical security updates : - From e26560a4b056dad6d85ffd9ebfad9565f210a9cc Mon Sep 17 00:00:00 2001 From: Jan Beulich Date: Wed, 30 May 2012 09:22:17 +0100 Subject: PATCH gnttab: don't use domain lock for serialization Instead us...

8.8CVSS6.9AI score0.00452EPSS
Exploits0References4
Xen Project
Xen Project
added 2017/08/15 12:0 p.m.347 views

multiple problems with transitive grants

ISSUE DESCRIPTION 1 Code to handle copy operations on transitive grants has built in retry logic, involving a function reinvoking itself with unchanged parameters. Such use assumes that the compiler would also translate this to a so called "tail call" when generating machine code. Empirically, th...

8.8CVSS0.5AI score0.00452EPSS
Exploits0Affected Software1
OSV
OSV
added 2017/07/11 8:29 p.m.14 views

CVE-2017-11171

Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...

5.5CVSS6.6AI score
Exploits0References2
CVE
CVE
added 2017/07/11 8:0 p.m.60 views

CVE-2017-11171

The CVE-2017-11171 issue affects gnome-session (older builds up to 2.29.92) with a vulnerability in gsm-xsmp-server.c inside accept_ice_connection(). A local attacker can establish ICE connections using invalid authentication data (invalid magic cookie). Each failed attempt leaks a file descripto...

5.5CVSS5.3AI score0.00322EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2017/05/17 12:0 a.m.5 views

Linux kernel denial of service vulnerability (CNVD-2017-06929)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'ipxitfioctl' function of the net/ipx/afipx.c file in Linux kernel version 4.11.1 and earlier, which stems from the program...

7.8CVSS8.4AI score0.00395EPSS
Exploits0References1
OSV
OSV
added 2017/05/14 10:29 p.m.3 views

DEBIAN-CVE-2017-7487

The ipxitfioctl function in net/ipx/afipx.c in the Linux kernel through 4.11.1 mishandles reference counts, which allows local users to cause a denial of service use-after-free or possibly have unspecified other impact via a failed SIOCGIFADDR ioctl call for an IPX interface...

7.8CVSS6.7AI score0.00395EPSS
Exploits0References1
OSV
OSV
added 2017/05/12 12:0 a.m.3 views

UBUNTU-CVE-2017-8925

The omninetopen function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service tty exhaustion by leveraging reference count mishandling...

5.5CVSS6.7AI score0.00422EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2017/02/24 12:0 a.m.66 views

Debian DSA-3791-1 : linux - security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or have other impacts. - CVE-2016-6786 / CVE-2016-6787 It was discovered that the performance events subsystem does not properly manage locks during certain migrations,...

9.8CVSS6.9AI score0.0596EPSS
Exploits13References31
Rows per page
Query Builder