7 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-11171
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local...
RHEL 6 : gnome-session (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gnome-session: Bad reference counting in accepticeconnection permits resource exhaustion CVE-2017-11171 Note that...
SUSE SLES11 Security Update : gnome-session (SUSE-SU-2017:2173-1)
This update for gnome-session fixes the following issues : - CVE-2017-11171: Fix a denial of service condition. an unauthenticated local user can create ICE connections, causing a file descriptor leak in gnome-session bsc1048274. Note that Tenable Network Security has extracted the preceding...
CVE-2017-11171
A denial-of-service flaw was found in the way gnome-session handled ICE connections. A local, authenticated attacker could potentially use this flaw to cause the gnome-session process to exhaust its file descriptors and enter an infinite loop, thereby leading to denial of service...
CVE-2017-11171
Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...
CVE-2017-11171
Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...
CVE-2017-11171
The CVE-2017-11171 issue affects gnome-session (older builds up to 2.29.92) with a vulnerability in gsm-xsmp-server.c inside accept_ice_connection(). A local attacker can establish ICE connections using invalid authentication data (invalid magic cookie). Each failed attempt leaks a file descripto...