Ubuntu 15.10 : linux-raspi2 vulnerabilities (USN-3004-1)

Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-2117 Jann Horn discovered that eCryptfs improperly attempted to use...

Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerabilities (USN-3000-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3000-1 advisory. Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use th...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

DEBIAN-CVE-2012-3552

Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by sending packets to an application that sets socket options during the handling of network traffic...

Race condition

Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by sending packets to an application that sets socket options during the handling of network traffic...

UBUNTU-CVE-2012-3552

Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by sending packets to an application that sets socket options during the handling of network traffic...

CVE-2012-3552

Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by sending packets to an application that sets socket options during the handling of network traffic...

CVE-2012-3073

The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to cause a denial of service networking outage or process crash via 1 malformed IP packets, 2 a high...

Code injection

The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to cause a denial of service networking outage or process crash via 1 malformed IP packets, 2 a high...

CVE-2012-3073

The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to cause a denial of service networking outage or process crash via 1 malformed IP packets, 2 a high...

CVE-2008-1095

Unspecified vulnerability in the Internet Protocol IP implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service panic via unknown vectors, possibly related to ICMP packets and IP fragment reassembly...

CVE-2008-1095

CVE-2008-1095 affects the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10. The vulnerability is described as an unspecified issue that allows remote attackers to bypass firewall policies or cause a denial of service (panic) via unknown vectors, with possible involvement of ICMP ...

Sun Solaris IP实现远程拒绝服务漏洞

Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 Solaris 8/9的IP实现上存在安全漏洞，远程非特权用户可能利用此漏洞通过发送特制IP报文降低联网Solaris系统的性能。 Solaris系统上可见大量的伪造IP碎片和/或大量的IP碎片重组失败。例如，运行以下命令： % /usr/bin/netstat -s | /usr/bin/egrep 'ReasmDuplicates|ReasmFails' 可能显示很高的ipv6ReasmDuplicates和ipv6ReasmFails计数器值。 此外，单处理器的Solaris...

CVE-2007-2045

Unspecified vulnerability in the IP implementation in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service CPU consumption via crafted IP packets, probably related to fragmented packets with duplicate or missing fragments...

CVE-2007-2045

The CVE-2007-2045 vulnerability affects the IP stack in Sun Solaris 8 and 9. A remote attacker can trigger a denial-of-service (CPU consumption) by sending crafted IP packets, likely involving fragmented packets with duplicate or missing fragments. Impact is described as CPU depletion leading to ...

TCP/IP implementations handle unusual flag combinations inconsistently

Overview Various vendors' TCP/IP implementations handle packets containing unusual flag combinations in different ways, which may lead to a violation of implicit or explicit security policies. Description Background on TCP/IP Connection Semantics To establish a TCP connection, a client and server...

CVE-1999-1291

TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote attackers to reset connections by forcing a reset RST via a PSH ACK or other means, obtaining the target's last sequence number from the resulting packet, then spoofing a reset to the target...

CVE-2000-1065

CVE-2000-1065 concerns the IP implementation of HP JetDirect printer card firmware (versions up to x.08.20 and earlier). The vulnerability allows remote attackers to cause a denial of service (printer crash) by sending a malformed packet. The connected documents confirm affected product (HP JetDi...