96 matches found
kernel: infinite loop in update_blocked_averages() in kernel/sched/fair.c leading to denial of service
The CFS Linux kernel scheduler mishandles handling of leaf cfsrq's in the kernel/sched/fair.c code, which allows a local unprivileged attacker to cause a denial of service DoS by entering an infinite loop in updateblockedaverages function by inducing a high load on a system. Due to the nature of...
Dell SonicWall SonicOS NSA Cross-Site Scripting Vulnerability (CNVD-2018-03085)
The Dell SonicWall Network Security Appliance NSA 2017 Q4 devices is a firewall appliance from Dell USA.SonicWall SonicOS is a system that runs on it.CFS Custom Category and Cloud AV DB Exclusion Settings are among the modules. A cross-site scripting vulnerability exists in the CFS Custom Categor...
Information disclosure
SonicWall SonicOS on Network Security Appliance NSA 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens...
Dell SonicWall SonicOS NSA CVE-2018-5281 Multiple HTML Injection Vulnerabilities
SonicWall SonicOS on Network Security Appliance NSA 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens. CVE: CVE-2018-5281 Last updated: Jan. 30, 2018, 4:12 p.m...
CVE-2018-5281
SonicWall SonicOS on Network Security Appliance NSA 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens...
CVE-2018-5281
SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices is affected by a cross-site scripting (XSS) vulnerability via the CFS Custom Category and Cloud AV DB Exclusion Settings screens. The available connected data confirms the affected product and the vulnerability class, but does ...
SonicWall SonicOS NSA Filter Bypass
Document Title: =============== SonicWall SonicOS NSA - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1729 Release Date: ============= 2018-01-04 Vulnerability Laboratory ID VL-ID: ====================================...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which gi...
FreeBSD Ports: cfs
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: cfs
The remote host is missing an update to the system as announced in the referenced advisory. VID e55f948f-d729-11e0-abd1-0017f22d6707 OpenVAS Vulnerability Test $ Description: Auto generated from VID e55f948f-d729-11e0-abd1-0017f22d6707 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
FreeBSD : security/cfs -- buffer overflow (e55f948f-d729-11e0-abd1-0017f22d6707)
Debian reports : Zorgon found several buffer overflows in cfsd, a daemon that pushes encryption services into the Unixtm file system. We are not yet sure if these overflows can successfully be exploited to gain root access to the machine running the CFS daemon. However, since cfsd can easily be...
SEC Consult SA-20090525-4 :: SonicOS Format String Vulnerability
SEC Consult Security Advisory 20090525-4 ========================================================================== title: SonicOS Format String Vulnerability program: SonicWALL Global VPN Client vulnerable version: PRO 4100 SonicOS 4.0.0.2-51e Standard and Enhanced possibly other versions...
Cross site scripting
Cross-site scripting XSS vulnerability in SonicWALL SonicOS Enhanced before 4.0.1.1, as used in SonicWALL Pro 2040 and TZ 180 and 190, allows remote attackers to inject arbitrary web script or HTML into arbitrary web sites via a URL to a site that is blocked based on content filtering, which is n...
CVE-2008-4918
Cross-site scripting XSS vulnerability in SonicWALL SonicOS Enhanced before 4.0.1.1, as used in SonicWALL Pro 2040 and TZ 180 and 190, allows remote attackers to inject arbitrary web script or HTML into arbitrary web sites via a URL to a site that is blocked based on content filtering, which is n...
Debian Security Advisory DSA 116-1 (cfs)
The remote host is missing an update to cfs announced via advisory DSA 116-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1138-1 (cfs)
The remote host is missing an update to cfs announced via advisory DSA 1138-1. Carlo Contavalli discovered an integer overflow in CFS, a cryptographic filesystem, which allows local users to crash the encryption daemon. OpenVAS Vulnerability Test $Id: deb11381.nasl 6616 2017-07-07 12:10:49Z...
Debian: Security Advisory (DSA-1138-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 7 : kernel-2.6.22.4-65.fc7 (2007-1785)
Update to kernel 2.6.22.2, 2.6.22.3 and 2.6.22.4: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.2 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.3 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.4 - Fix failure to find serial ports on some machines. -...
Fedora 7 : kernel-2.6.22.1-27.fc7 (2007-1130)
Rebase kernel to 2.6.22.1: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.1 Includes the CFS scheduler from upstream kernel 2.6.23. Users should update to the latest autofs package with this kernel or autofs will use...
Fedora 7 : kernel-2.6.22.7-85.fc7 (2007-2298)
Update to official Linux 2.6.22.6 from 2.6.22.6-rc1: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6 Update to Linux 2.6.22.7: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7 - libata: add option to disable DMA on PATA devices libata.patadma, see kernel-parameters.tx...