76 matches found
CVE-2016-1277
Juniper Junos OS versions listed (various 12.1X, 12.3X, 13.3, 14.x, 15.x) are affected when GRE or IPIP tunnels are configured. The issue is triggered by a crafted ICMP packet, causing a remote kernel panic and resulting in a denial of service. The attack is network-reachable and does not require...
Juniper Networks Junos OS Kernel Crash With Crafted ICMP Packet Vulnerability
Junos OS is prone to a kernel crash vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; if description...
Oracle Linux 6 : unbreakable enterprise kernel (ELSA-2014-3046)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-3046 advisory. - l2tp: fix an unprivileged user to kernel privilege escalation Sasha Levin Orabug: 19229497 CVE-2014-4943 CVE-2014-4943 - ptrace,x86: force IRET path...
Amazon Linux AMI : kernel (ALAS-2013-252)
The Linux kernel before 3.12, when UDP Fragmentation Offload UFO is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service memory corruption and system crash or possibly gain privileges via a crafted application that uses the UDPCORK...
Medium: kernel
Issue Overview: The Linux kernel before 3.12, when UDP Fragmentation Offload UFO is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service memory corruption and system crash or possibly gain privileges via a crafted application that us...
Linux kernel security vulnerabilities
DoS conditions, information leakage, tuntap interface privilege escalation, bt8xx driver privilege escalation, IPv6 ICTP, UDP offload, ipip memory corruptions...
CVE-2013-4348
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
DEBIAN-CVE-2013-4348
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
CVE-2013-4348
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
Design/Logic Flaw
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
CVE-2013-4348
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
CVE-2013-4348
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
CVE-2013-4348
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
kernel: net: deadloop path in skb_flow_dissect()
The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service infinite loop via a small value in the IHL field of a packet with IPIP encapsulation...
Design/Logic Flaw
Cisco IOS 12.2 and 15.0 through 15.2 on Cisco 10000 series routers, when a tunnel interface exists, allows remote attackers to cause a denial of service interface queue wedge via tunneled 1 GRE/IP, 2 IPIP, or 3 IPv6 in IPv4 packets, aka Bug ID CSCts66808...
CVE-2012-4620
Cisco IOS Software (12.2 and 15.0–15.2) on Cisco 10000 Series routers is affected when a tunnel interface exists. The vulnerability allows remote attackers to trigger a DoS via tunneled packets (GRE/IP, IPIP, or IPv6-in-IPv4) that cause an interface queue wedge. The root cause involves how tunnel...