ALPINE-CVE-2017-15227

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

Design/Logic Flaw

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

CVE-2017-15227

CVE-2017-15227 affects Irssi before 1.0.5. The vulnerability occurs when waiting for channel synchronization, where destroyed channels may not be removed from the query list, leading to use-after-free during state updates. Documented in multiple advisories (EulerOS, Debian, Red Hat/Nessus feeds) ...

CVE-2017-15227

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

CVE-2017-15227

Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on...

CVE-2017-6165

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms only, the script which synchronizes SafeNet External Network HSM configuration elements between...

Default credentials

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms only, the script which synchronizes SafeNet External Network HSM configuration elements between...

kernel: Heap out-of-bounds read in AF_PACKET sockets

A race condition issue was found in the way the raw packet socket implementation in the Linux kernel networking subsystem handled synchronization. A local user able to open a raw packet socket requires the CAPNETRAW capability could use this to waste resources in the kernel's ring buffer or...

WEM agent is not able to connect/synchronize with the WEM Broker Server

ISSUE: WEM Agent is not able to connect and synchronize with the WEM Broker servers ERRORS PRESENT: The WEM Agent session & Debug logs show the following error: Exception - AgentLocalCacheSync. : The communication object, System.ServiceModel.Channels.ServiceChannel, cannot be used for communicati...

Enterprise Plus license is required error on dashboards and reports

Challenge Verify health of Data Warehouse Cause Veeam MP license is synchronized to the Data Warehouse then the reports load this information. If license is invalid in the Data Warehouse due to Synchronization server having issue this error will occur Solution 1. Open SCOM Operations Manager...

RHEL 7 : kernel (RHSA-2017:2770)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:2770 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A race condition was found in the Linux kernel,...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.3 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

The vulnerability of the WLAN driver of the Android operating system from the CAF repository, which allows a hacker to trigger a memory access after it is freed

The vulnerability of the WLAN driver for the Android operating system, found in the CAF repository, is caused by synchronization errors when using a shared resource during gameplay. Exploiting this vulnerability allows a remote attacker to access memory after it has been freed...

The vulnerability of the memory handler and free function handlers in the Android operating system from the CAF repository allows a attacker to trigger the use of memory after it has been freed.

The vulnerability of Android operating system memory handlers and free functions from the CAF repository stems from synchronization errors when using shared resources. Exploiting this vulnerability allows a remote attacker to trigger the use of memory after it has been freed...

The vulnerability of the Android operating system’s IOCTL handler from the SAF repository, which allows a attacker to trigger a numerical overflow and write beyond the memory boundaries.

The vulnerability of the Android operating system’s IOCTL handler from the CAF repository arises due to synchronization errors when using a shared resource during a race condition. Exploiting this vulnerability can allow an attacker to trigger a full memory overflow and write beyond the memory...

The vulnerability of the Crypto-NAK packages, the demon program ntpd, the Network Time Protocol NTP, allows a perpetrator to bypass the authentication process.

The vulnerability of the Crypto-NAK packages, the demon program ntpd, and the Network Time Protocol NTP are related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to bypass authentication procedures...

Moderate: Red Hat Security Advisory: satellite and spacewalk security and bug fix update

An update for satellite-schema, spacewalk-backend, spacewalk-java, and spacewalk-schema is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base...

Cyrus IMAP Arbitrary File Write Vulnerability

Cyrus IMAP is a free, open source Unix and Linux-based operating system for supporting IMAP Interactive Mail Access Protocol protocol mail server . A security vulnerability exists in Cyrus IMAP versions prior to 3.0.3. The vulnerability can be exploited by a remote attacker to overwrite arbitrary...

Important: Red Hat Bug Fix Advisory: redhat-virtualization-host bug fix, and enhancement update for RHV 4.1.5

Updated redhat-virtualization-host packages are now available. The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts RHVH are installed using a special build of R...

Virtuozzo 7 : readykernel-patch (VZA-2017-071)

According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A race condition issue leading to a use-after-free flaw was found in the way the raw packet sockets are implemented ...