Lucene search
K

32 matches found

F5 Networks
F5 Networks
added 2023/02/21 5:38 p.m.44 views

K37510383: Linux kernel SCTP vulnerability CVE-2015-5283

Security Advisory Description The sctpinit function in net/sctp/protocol.c in the Linux kernel before 4.2.3 has an incorrect sequence of protocol-initialization steps, which allows local users to cause a denial of service panic or memory corruption by creating SCTP sockets before all of the steps...

4.7CVSS6.2AI score0.00549EPSS
Exploits1Affected Software22
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2015:2194-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.7AI score0.05059EPSS
Exploits2References56
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2015:1727-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.8AI score0.01164EPSS
Exploits2References54
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1488)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.06267EPSS
Exploits12References2
Tenable Nessus
Tenable Nessus
added 2017/02/28 12:0 a.m.95 views

F5 Networks BIG-IP : Linux kernel SCTP vulnerability (K37510383)

The sctpinit function in net/sctp/protocol.c in the Linux kernel before 4.2.3 has an incorrect sequence of protocol-initialization steps, which allows local users to cause a denial of service panic or memory corruption by creating SCTP sockets before all of the steps have finished. CVE-2015-5283 ...

4.7CVSS6.5AI score0.00549EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2016/01/28 12:0 a.m.47 views

SOL37510383 - Linux kernel SCTP vulnerability CVE-2015-5283

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

4.7CVSS0.4AI score0.00549EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/12/22 12:0 a.m.88 views

Scientific Linux Security Update : kernel on SL7.x x86_64 (20151119)

A flaw was found in the way the Linux kernel's file system implementation handled rename operations in which the source was inside and the destination was outside of a bind mount. A privileged user inside a container could use this flaw to escape the bind mount and, potentially, escalate their...

6.9CVSS6.4AI score0.01246EPSS
Exploits4References16
Tenable Nessus
Tenable Nessus
added 2015/12/07 12:0 a.m.40 views

Ubuntu 15.04 : linux vulnerabilities (USN-2829-1)

It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local attacker could use this to cause a denial of service system crash. CVE-2015-5283 Dmitry Vyukov discovered that the Linux kernel's keyring handler...

4.7CVSS6.3AI score0.00549EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/12/07 12:0 a.m.58 views

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2015:2194-1)

The SUSE Linux Enterprise 12 kernel was updated to 3.12.51 to receive various security and bugfixes. Following security bugs were fixed : - CVE-2015-7799: The slhcinit function in drivers/net/slip/slhc.c in the Linux kernel did not ensure that certain slot numbers were valid, which allowed local...

10CVSS6.5AI score0.05059EPSS
Exploits2References71
Tenable Nessus
Tenable Nessus
added 2015/12/07 12:0 a.m.44 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2829-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2829-2 advisory. It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local...

4.7CVSS6.5AI score0.00549EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/12/05 12:0 a.m.51 views

SUSE: Security Advisory for kernel (SUSE-SU-2015:2194-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.1AI score0.05059EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2015/12/05 12:0 a.m.45 views

Ubuntu: Security Advisory (USN-2829-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.8AI score0.00549EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/12/05 12:0 a.m.50 views

Ubuntu: Security Advisory (USN-2829-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.8AI score0.00549EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2015/12/04 6:21 p.m.72 views

USN-2829-2: Linux kernel (Vivid HWE) vulnerabilities

It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local attacker could use this to cause a denial of service system crash. CVE-2015-5283 Dmitry Vyukov discovered that the Linux kernel's keyring handler...

4.7CVSS6.3AI score0.00549EPSS
Exploits1
OSV
OSV
added 2015/12/04 6:21 p.m.3 views

USN-2829-2 linux-lts-vivid vulnerabilities

It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local attacker could use this to cause a denial of service system crash. CVE-2015-5283 Dmitry Vyukov discovered that the Linux kernel's keyring handler...

4.7CVSS6.6AI score0.00549EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/12/04 12:0 a.m.49 views

Ubuntu: Security Advisory (USN-2826-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.8AI score0.00549EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/12/02 12:0 a.m.250 views

Oracle: Security Advisory (ELSA-2015-3101)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.9AI score0.00549EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2015/12/02 12:0 a.m.50 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2823-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2823-1 advisory. It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local...

4.7CVSS6.5AI score0.00549EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2015/12/01 8:37 p.m.70 views

USN-2823-1: Linux kernel vulnerabilities

It was discovered that the SCTP protocol implementation in the Linux kernel performed an incorrect sequence of protocol-initialization steps. A local attacker could use this to cause a denial of service system crash. CVE-2015-5283 Dmitry Vyukov discovered that the Linux kernel's keyring handler...

4.7CVSS6.3AI score0.00549EPSS
Exploits1
Cent OS
Cent OS
added 2015/11/30 7:36 p.m.101 views

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2015:2152 Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 7. This is the second...

7.8CVSS6.5AI score0.03693EPSS
Exploits4References7
Rows per page
Query Builder