16 matches found
RHCOS 4 : OpenShift Container Platform 4.6.9 (RHSA-2020:5615)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5615 advisory. - lldpd: buffer overflow in the lldpdecode function in daemon/protocols/lldp.c CVE-2015-8011 Note that Nessus has not tested for this issue b...
K06878231: LLDPD vulnerabilities CVE-2015-8011 and CVE-2015-8012
Security Advisory Description CVE-2015-8011 Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV...
Siemens Industrial Products LLDP (Update D)
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 10.0 (openvswitch) security update
An update for openvswitch is now available for Red Hat OpenStack Platform 10 Newton. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
RHEL 7 : Red Hat OpenStack Platform 10.0 (openvswitch) (RHSA-2021:2205)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2205 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixe...
RHEL 7 : openvswitch (RHSA-2021:2077)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2077 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...
Debian DLA-2571-1 : openvswitch security update
Several issues have been found in openvswitch, a production quality, multilayer, software-based, Ethernet virtual switch. CVE-2020-35498 Denial of service attacks, in which crafted network packets could cause the packet lookup to ignore network header fields from layers 3 and 4. The crafted netwo...
[SECURITY] [DLA 2571-1] openvswitch security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2571-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz February 19, 2021 https://wiki.debian.org/LTS -...
Debian DSA-4836-1 : openvswitch - security update
Two vulnerabilities were discovered in the LLPD implementation of Open vSwitch, a software-based Ethernet virtual switch, which could result in denial of service. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...
[SECURITY] [DSA 4836-1] openvswitch security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4836-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 22, 2021 https://www.debian.org/security/faq -...
[ASA-202101-28] openvswitch: multiple issues
Arch Linux Security Advisory ASA-202101-28 ========================================== Severity: Medium Date : 2021-01-20 CVE-ID : CVE-2015-8011 CVE-2020-27827 Package : openvswitch Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1456 Summary ======= The package...
CVE-2015-8011
Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries...
CVE-2015-8011
Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries...
CVE-2015-8011
CVE-2015-8011 (buffer overflow in lldp_decode of lldpd) affects Open vSwitch/openvswitch builds and allows remote attackers to cause a daemon crash or potentially execute arbitrary code via large management addresses and TLV boundary handling in lldpd before 0.8.0. Documented impacts include deni...
CVE-2015-8011
Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries...
FreeBSD : lldpd -- Buffer overflow/Denial of service (2a4a112a-7c1b-11e5-bd77-0800275369e2)
The lldpd developer Vincent Bernat reports : A buffer overflow may allow arbitrary code execution only if hardening was disabled. Malformed packets should not make lldpd crash. Ensure we can handle them by not using assert in this part. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...