25 matches found
EUVD-2018-3798
Malware in sbrugna...
CVE-2023-24818
RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a NULL pointer dereference. During forwarding of a fragment an...
CVE-2023-33975 RIOT-OS vulnerable to Out of Bounds Write in _rbuf_add
RIOT-OS, an operating system for Internet of Things IoT devices, contains a network stack with the ability to process 6LoWPAN frames. In version 2023.01 and prior, an attacker can send a crafted frame to the device resulting in an out of bounds write in the packet buffer. The overflow can be used...
CVE-2023-24819 RIOT-OS vulnerable to Buffer Overflow during IPHC receive
RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in an out of bounds write in the packet buffer. The overflow can be us...
K51428664: QEMU vulnerability CVE-2018-11806
Security Advisory Description mcat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams. CVE-2018-11806 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development has evaluated the currently...
SUSE CVE-2018-11806
mcat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams...
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1313)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams
A heap buffer overflow issue was found in the way SLiRP networking back-end in QEMU processes fragmented packets. It could occur while reassembling the fragmented datagrams of an incoming packet. A privileged user/process inside guest could use this flaw to crash the QEMU process resulting in DoS...
Arbitrary Code Execution
Linux kernel is vulnerable to buffer overflow vulnerability. This is due to a lack of input filtering of incoming fragmented datagrams was found in the IP-over-1394 driver firewire-net in a fragment handling code in the Linux kernel. Remote attackers could execute arbitrary code via crafted...
kernel: Buffer overflow in firewire driver via crafted incoming packets
A buffer overflow vulnerability due to a lack of input filtering of incoming fragmented datagrams was found in the IP-over-1394 driver firewire-net in a fragment handling code in the Linux kernel. The vulnerability exists since firewire supported IPv4, i.e. since version 2.6.31 year 2009 till...
QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams
A heap buffer overflow issue was found in the way SLiRP networking back-end in QEMU processes fragmented packets. It could occur while reassembling the fragmented datagrams of an incoming packet. A privileged user/process inside guest could use this flaw to crash the QEMU process resulting in DoS...
EulerOS 2.0 SP2 : qemu-kvm (EulerOS-SA-2018-1313)
According to the versions of the qemu-kvm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams CVE-2018-11806 - QEMU: i386: multiboot OOB access while loading kern...
EulerOS 2.0 SP3 : qemu-kvm (EulerOS-SA-2018-1314)
According to the versions of the qemu-kvm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams CVE-2018-11806 - QEMU: i386: multiboot OOB access while loading kern...
QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams
A heap buffer overflow issue was found in the way SLiRP networking back-end in QEMU processes fragmented packets. It could occur while reassembling the fragmented datagrams of an incoming packet. A privileged user/process inside guest could use this flaw to crash the QEMU process resulting in DoS...
SUSE SLES11 Security Update : kvm (SUSE-SU-2018:2615-1) (Spectre)
This update for kvm fixes the following security issues : CVE-2018-12617: qmpguestfileread had an integer overflow that could have been exploited by sending a crafted QMP command including guest-file-read with a large count value to the agent via the listening socket causing DoS bsc1098735...
SUSE SLES12 Security Update : xen (SUSE-SU-2018:2081-1)
This update for xen fixes the following issues: Security issues fixed : - CVE-2018-12891: Fix preemption checks bypass in x86 PV MM handling XSA-264 bsc1097521. - CVE-2018-12892: Fix libxl failure to honour readonly flag on HVM emulated SCSI disks XSA-266 bsc1097523. - CVE-2018-12893: Fix DB...
CVE-2018-11806
mcat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams...
DEBIAN-CVE-2018-11806
mcat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams...
CVE-2018-11806
mcat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams...
Heap overflow
mcat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams...