Assessing SIEM effectiveness

A SIEM is a complex system offering broad and flexible threat detection capabilities. Due to its complexity, its effectiveness heavily depends on how it is configured and what data sources are connected to it. A one-time SIEM setup during implementation is not enough: both the organization's...

DEBIAN-CVE-2025-38571

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

AZL-66467 CVE-2025-38571 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

CVE-2025-38566 sunrpc: fix handling of server side tls alerts

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

SUSE CVE-2016-8610

A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail...

SUSE: Security Advisory (SUSE-SU-2018:0112-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of Google Chrome, related to improper input validation, allows a malicious actor to create a confusing user interface through a specially crafted HTML page.

The vulnerability of Google Chrome relates to improper handling of the alert window display in Blink. Exploiting this vulnerability allows an attacker to create a confusing user interface through a specially created HTML page...

CVE-2018-6160

Removed by vendor...

CVE-2018-6160

CVE-2018-6160 concerns Google Chrome (iOS) where JavaScript/HTML crafted content allowed a remote attacker to spoof the Omnibox (URL bar). The connected Chrome/Chromium notes confirm this as a URL spoof issue in Chrome on iOS and tie the vulnerability to the Chromium 68.0.3440.75 release family. ...

Denial Of Service (DoS) In SSL Alert Handling

github.com/golang/go is vulnerable to denial of service DoS in SSL alert handling aka SSL-Death-Alert. The attacks are possible due to a flaw in the way that SSL3ALWARNING are handled, consuming 100% CPU on the server. This vulnerability is related to CVE-2016-8610...

SUSE-SU-2017:0601-1 Security update for compat-openssl097g

This update for compat-openssl097g fixes the following issues contained in the OpenSSL Security Advisory 26 Jan 2017 bsc1021641 Security issues fixed: - CVE-2016-8610: A remote denial of service in SSL alert handling was fixed bsc1005878 - degrade 3DES to MEDIUM in SSL2 bsc1001912 - CVE-2016-2108...

Updated gnutls packages fix security vulnerability

Remote denial of service in SSL alert handling. CVE-2016-8610 In gnutlsx509extimportproxy: if the language was set but the policy wasn't, that could lead to a double free. CVE-2017-5334 Decoding a specially crafted OpenPGP certificate could have lead to heap and stack overflows. CVE-2017-5335,...

USN-3181-1 openssl vulnerabilities

Guido Vranken discovered that OpenSSL used undefined behaviour when performing pointer arithmetic. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. This issue only applied to Ubuntu 12.04 LTS and Ubuntu 14.04 LTS as other releases were...

SUSE SLES11 Security Update : gnutls (SUSE-SU-2017:0304-1)

This update for gnutls fixes the following issues : - Malformed asn1 definitions could cause a segmentation fault in the asn1 definition parser bsc961491. - CVE-2016-8610: Remote denial of service in SSL alert handling bsc1005879. - CVE-2017-5335: Decoding a specially crafted OpenPGP certificate...

SolarWinds Server & Application Monitor (SAM) Alert Handling Local Privilege Escalation

The version of SolarWinds Server & Application Monitor SAM running on the remote host is affected by a privilege escalation vulnerability in the Alert Manager component due to improper handling of specially crafted alerts. A local attacker can exploit this to gain elevated privileges and execute...

[SECURITY] Fedora 10 Update: prelude-manager-0.9.14.2-2.fc10

Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is a multithreaded server which handles connections from the Prelude sensors. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any...