Memory corruption

Cisco IOS XR allows local users to cause a denial of service Silicon Packet Processor memory corruption, improper mutex handling, and device reload by starting an outbound flood of large ICMP Echo Request packets and stopping this with a CTRL-C sequence, aka Bug ID CSCui60347...

Ubuntu Update for gnupg USN-1923-1

Check for the Version of gnupg OpenVAS Vulnerability Test $Id: gbubuntuUSN19231.nasl 8542 2018-01-26 06:57:28Z teissa $ Ubuntu Update for gnupg USN-1923-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...

USN-1923-1: GnuPG, Libgcrypt vulnerability

Yuval Yarom and Katrina Falkner discovered a timing-based information leak, known as Flush+Reload, that could be used to trace execution in programs. GnuPG and Libgcrypt followed different execution paths based on key-related data, which could be used to expose the contents of private keys...

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : gnupg, libgcrypt11 vulnerability (USN-1923-1)

Yuval Yarom and Katrina Falkner discovered a timing-based information leak, known as Flush+Reload, that could be used to trace execution in programs. GnuPG and Libgcrypt followed different execution paths based on key-related data, which could be used to expose the contents of private keys. Note...

FreeBSD : gnupg -- side channel attack on RSA secret keys (80771b89-f57b-11e2-bf21-b499baab0cbe)

A Yarom and Falkner paper reports : Flush+Reload is a cache side-channel attack that monitors access to data in shared pages. In this paper we demonstrate how to use the attack to extract private encryption keys from GnuPG. The high resolution and low noise of the Flush+Reload attack enables a sp...

gnupg -- side channel attack on RSA secret keys

A Yarom and Falkner paper reports: Flush+Reload is a cache side-channel attack that monitors access to data in shared pages. In this paper we demonstrate how to use the attack to extract private encryption keys from GnuPG. The high resolution and low noise of the Flush+Reload attack enables a spy...

Cisco Unified Communications Domain Manager Memory Exhaustion Vulnerability

A vulnerability in the web framework of Cisco Unified Communications Domain Manager could allow an authenticated, remote attacker to exhaust available memory and crash several critical processes. The vulnerability is due to improper memory allocation when the affected system receives crafted HTTP...

Fedora 18 : ReviewBoard-1.7.11-1.fc18 (2013-11646)

New upstream release 1.7.11 - http://www.reviewboard.org/docs/releasenotes/reviewboa rd/1.7.11/ - Bug Fixes : - Fixed compatibility with Python 2.5 - Fixed the drop-down arrow by Support and the account name on older versions of Internet Explorer - New upstream release 1.7.10 -...

Cisco ASA Next-Generation Firewall Fragmented Traffic Denial of Service Vulnerability

Cisco ASA Next-Generation Firewall NGFW Services��contains a Fragmented Traffic Denial of Service DoS vulnerability.�� Successful exploitation of this vulnerability on the Cisco ASA NGFW could cause the device to reload or stop processing user traffic that has been redirected by the parent Cisco...

Mozilla: Execution of unmapped memory through onreadystatechange event (MFSA 2013-53)

Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial of service application crash or...

Mozilla: Execution of unmapped memory through onreadystatechange event (MFSA 2013-53)

Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial of service application crash or...

Cisco ASA-CX TCP Traffic Denial of Service Vulnerability

A vulnerability processing TCP traffic on Cisco ASA CX could allow an unauthenticated, remote attacker to cause a reload of the affected device. The vulnerability is due to invalid parsing of TCP packet data forwarded to Cisco ASA CX by the Cisco ASA. An attacker could exploit this vulnerability ...

Updated wireshark packages fix security vulnerabilities (Mageia 3)

The RELOAD dissector could go into an infinite loop CVE-2013-2486, CVE-2013-2487. The GTPv2 dissector could crash CVE-2013-3555. The ASN.1 BER dissector could crash CVE-2013-3557. The PPP CCP dissector could crash CVE-2013-3558. The DCP ETSI dissector could crash CVE-2013-3559. The MPEG DSM-CC...

Cisco IOS ISM Module for ISR G2 Authentication Header DoS

The Cisco ISM module for ISR G2 has a denial of service vulnerability. According to its self-reported IOS version, the remote device may be affected by this vulnerability. A remote, authenticated attacker could exploit this issue by sending malformed authentication header packets over an...

CVE-2013-1236

Cisco TelePresence Supervisor MSE 8050 before 2.31.31 allows remote attackers to cause a denial of service CPU consumption or device reload by establishing TCP connections at a high rate, aka Bug IDs CSCuf76076 and CSCuf79763...

Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability

Cisco TelePresence Supervisor MSE 8050 contains a vulnerability that may allow an unauthenticated, remote attacker to cause high CPU utilization and a reload of the affected system. Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability a...

SuSE 11.2 Security Update : wireshark (SAT Patch Number 7490)

wireshark has been updated to 1.8.6 which fixes bugs and security issues : Vulnerabilities fixed : - The TCP dissector could crash. wnpa-sec-2013-10. CVE-2013-2475 - The HART/IP dissectory could go into an infinite loop. wnpa-sec-2013-11. CVE-2013-2476 - The CSN.1 dissector could crash...

Race condition

Race condition on Cisco Adaptive Security Appliances ASA devices allows remote attackers to cause a denial of service CPU consumption or device reload by establishing multiple connections, leading to improper handling of hash lookups for secondary flows, aka Bug IDs CSCue31622 and CSCuc71272...

CVE-2012-5415

CVE-2012-5415 is a race condition affecting Cisco Adaptive Security Appliances (ASA) where an attacker can trigger denial of service (CPU consumption or device reload) by opening multiple connections. The issue arises from improper handling of hash lookups for secondary flows (Bug IDs CSCue31622 ...

CVE-2013-1149

Cisco Adaptive Security Appliances ASA devices with software 7.x before 7.25.10, 8.0 before 8.05.28, 8.1 and 8.2 before 8.25.35, 8.3 before 8.32.34, 8.4 before 8.44.11, 8.6 before 8.61.10, and 8.7 before 8.71.3, and Cisco Firewall Services Module FWSM software 3.1 and 3.2 before 3.224.1 and 4.0 a...