Lucene search
K

9179 matches found

Ubuntu
Ubuntu
added 2020/01/28 3:27 a.m.437 views

USN-4254-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors. A local attacker could use this to expose sensitive information. CVE-2019-14615 It was discovered that a race condition existed in the Virtual Video Test Drive...

7CVSS6.5AI score0.01447EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2020/01/28 12:0 a.m.68 views

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4254-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4254-1 advisory. It was discovered that the Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors. A local attacke...

7CVSS6.6AI score0.01447EPSS
Exploits4References10
CVE
CVE
added 2020/01/26 4:45 a.m.138 views

CVE-2019-16026

Cisco CVE-2019-16026 affects the SCTP implementation in Cisco Mobility Management Entity (MME). Affected component: SCTP input validation in MME could be exploited by a remote attacker in a MITM position between the eNodeB and the MME to send a crafted SCTP message, causing the MME to stop sendin...

6.8CVSS6.1AI score0.01389EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/01/24 12:0 p.m.19 views

RUSTSEC-2020-0062 Improper `Sync` implementation on `FuturesUnordered` in futures-utils can cause data corruption

Affected versions of the crate had an unsound Sync implementation on the FuturesUnordered structure, which used a Cell for interior mutability without any code to handle synchronized access to the underlying task list's length and head safely. This could of lead to data corruption since two threa...

5.5CVSS5.6AI score0.00334EPSS
Exploits0References3
RustSec
RustSec
added 2020/01/24 12:0 p.m.27 views

Contents of uninitialized memory exposed in DeflateOutput's AsyncRead implementation

Affected versions of this crate passes an uninitialized buffer to a user-provided trait function AsyncRead::pollread. Arbitrary AsyncRead::pollread implementations can read from the uninitialized buffer memory exposure and also can return incorrect number of bytes written to the buffer. Reading...

9.8CVSS3.6AI score0.0123EPSS
Exploits0Affected Software1
OSV
OSV
added 2020/01/23 5:15 p.m.23 views

CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS4.8AI score
Exploits0References5
Prion
Prion
added 2020/01/23 5:15 p.m.19 views

Information disclosure

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

1.9CVSS4.7AI score0.00329EPSS
Exploits0References5Affected Software4
RedHat Linux
RedHat Linux
added 2020/01/23 4:30 a.m.3 views

golang.org/x/crypto: Keystream loop in amd64 assembly when overflowing 32-bit counter

An issue was discovered in the supplementary Go cryptography library, golang.org/x/crypto, before v0.0.0-20190320223903-b7391e95e576. A flaw was found in the amd64 implementation of the golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa packages. If more than 256 GiB of keystream i...

5.9CVSS7.3AI score0.03437EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.64 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1484)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.24299EPSS
Exploits8References2
CVE
CVE
added 2020/01/23 12:0 a.m.134 views

CVE-2019-18222

CVE-2019-18222 affects Arm Mbed Crypto 2.1 and Mbed TLS up to 2.19.1: the ECDSA implementation in ecdsa.c does not reduce the blinded scalar before the inverse, enabling local side-channel attacks to recover the private key. Several advisories report upstream fixes (e.g., 2.20.0, 3.0.1) and packa...

4.7CVSS4.6AI score0.00329EPSS
Exploits0References5Affected Software2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.55 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1672)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.2AI score0.98745EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2019-1355)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.9AI score0.58204EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.74 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1509)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.7AI score0.01825EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1519)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.1AI score0.37679EPSS
Exploits34References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1476)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.6AI score0.08149EPSS
Exploits17References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.43 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2016-1047)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.63029EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for sssd (EulerOS-SA-2019-2667)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.01122EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1488)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.06267EPSS
Exploits12References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2017-1150)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.8AI score0.03524EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.253 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1483)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.05489EPSS
Exploits17References2
Rows per page
Query Builder