2808 matches found
Code injection
The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent attackers to cause a denial of service panic by triggering a digest operation, as demonstrated by an IPSec connection...
CVE-2013-5172
The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent attackers to cause a denial of service panic by triggering a digest operation, as demonstrated by an IPSec connection...
USN-1993-1: Linux kernel (OMAP4) vulnerability
An information leak was discovered in the Linux kernel when reading broadcast messages from the notifypolicy interface of the IPSec keysocket. A local user could exploit this flaw to examine potentially sensitive information in kernel memory...
USN-1992-1: Linux kernel vulnerability
An information leak was discovered in the Linux kernel when reading broadcast messages from the notifypolicy interface of the IPSec keysocket. A local user could exploit this flaw to examine potentially sensitive information in kernel memory...
Ubuntu 12.04 LTS : linux vulnerability (USN-1992-1)
An information leak was discovered in the Linux kernel when reading broadcast messages from the notifypolicy interface of the IPSec keysocket. A local user could exploit this flaw to examine potentially sensitive information in kernel memory. Note that Tenable Network Security has extracted the...
Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-1995-1)
An information leak was discovered in the Linux kernel when reading broadcast messages from the notifypolicy interface of the IPSec keysocket. A local user could exploit this flaw to examine potentially sensitive information in kernel memory. CVE-2013-2237 Kees Cook discovered flaw in the Human...
CVE-2013-5507
The IPsec implementation in Cisco Adaptive Security Appliance ASA Software 9.1 before 9.11.7, when an IPsec VPN tunnel is enabled, allows remote attackers to cause a denial of service device reload via a 1 ICMP or 2 ICMPv6 packet that is improperly handled during decryption, aka Bug ID CSCue18975...
Information disclosure
The IPsec implementation in Cisco Adaptive Security Appliance ASA Software 9.1 before 9.11.7, when an IPsec VPN tunnel is enabled, allows remote attackers to cause a denial of service device reload via a 1 ICMP or 2 ICMPv6 packet that is improperly handled during decryption, aka Bug ID CSCue18975...
CVE-2013-5507
The IPsec implementation in Cisco Adaptive Security Appliance ASA Software 9.1 before 9.11.7, when an IPsec VPN tunnel is enabled, allows remote attackers to cause a denial of service device reload via a 1 ICMP or 2 ICMPv6 packet that is improperly handled during decryption, aka Bug ID CSCue18975...
CVE-2013-5507
CVE-2013-5507 affects Cisco ASA Software 9.1 prior to 9.1(1.7) when an IPsec VPN tunnel is enabled. The issue, due to improper handling of ICMP/ICMPv6 packets during decryption, can cause a denial of service resulting in a device reload. Root cause is an IPsec ICMP handling bug (Bug ID CSCue18975...
Multiple Vulnerabilities in Cisco ASA Software
Cisco Adaptive Security Appliance ASA Software is affected by the following vulnerabilities: IPsec VPN Crafted ICMP Packet Denial of Service Vulnerability SQLNet Inspection Engine Denial of Service Vulnerability Digital Certificate Authentication Bypass Vulnerability Remote Access VPN...
PT-2013-5591 · Cisco · Cisco Asa
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software versions 9.1 through 9.11.6 Description: The issue allows remote attackers to cause a denial of service, resulting in a device reload. This can be achieved by sending either an ICMP or ICMPv6...
Ubuntu Update for linux USN-1972-1
Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN19721.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for linux USN-1972-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...
Ubuntu: Security Advisory (USN-1973-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for linux-ti-omap4 USN-1973-1
Check for the Version of linux-ti-omap4 OpenVAS Vulnerability Test $Id: gbubuntuUSN19731.nasl 8448 2018-01-17 16:18:06Z teissa $ Ubuntu Update for linux-ti-omap4 USN-1973-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program i...
Ubuntu Update for linux-lts-quantal USN-1970-1
Check for the Version of linux-lts-quantal OpenVAS Vulnerability Test $Id: gbubuntuUSN19701.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for linux-lts-quantal USN-1970-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This...
APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004 OS X Mountain Lion v10.8.5 and Security Update 2013-004 is now available and addresses the following: Apache Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lio...
Ubuntu 12.04 LTS : linux-lts-quantal vulnerabilities (USN-1970-1)
Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A failure to validate block numbers was discovered in the Linux kernel's implementation of th...
Ubuntu 12.10 : linux vulnerabilities (USN-1972-1)
Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A failure to validate block numbers was discovered in the Linux kernel's implementation of th...
USN-1973-1: Linux kernel (OMAP4) vulnerabilities
Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A failure to validate block numbers was discovered in the Linux kernel's implementation of th...