2805 matches found
PT-2024-7997 · Draytek · Draytek Vigor3900
Name of the Vulnerable Software and Affected Versions: DrayTek Vigor 3900 version 1.5.1.3 Description: The issue exists due to the lack of neutralization of special elements used in the operating system command by the doIPSec function in the mainfunction.cgi file of the DrayTek Vigor 3900 router'...
CVE-2024-50036
In the Linux kernel, the following vulnerability has been resolved: net: do not delay dstentriesadd in dstrelease dstentriesadd uses per-cpu data that might be freed at netns dismantle from ip6routenetexit calling dstentriesdestroy Before ip6routenetexit can be called, we release all the dsts...
CVE-2024-50036 net: do not delay dst_entries_add() in dst_release()
In the Linux kernel, the following vulnerability has been resolved: net: do not delay dstentriesadd in dstrelease dstentriesadd uses per-cpu data that might be freed at netns dismantle from ip6routenetexit calling dstentriesdestroy Before ip6routenetexit can be called, we release all the dsts...
CVE-2024-50036
CVE-2024-50036 is a Linux kernel vulnerability where dst_entries_add() uses per-CPU data that can be freed during netns dismantle, making dst_entries_destroy() race with dst_release() and potentially causing a use-after-free. The issue arises because the count of dsts must be decremented earlier,...
CVE-2024-50036 net: do not delay dst_entries_add() in dst_release()
In the Linux kernel, the following vulnerability has been resolved: net: do not delay dstentriesadd in dstrelease dstentriesadd uses per-cpu data that might be freed at netns dismantle from ip6routenetexit calling dstentriesdestroy Before ip6routenetexit can be called, we release all the dsts...
CVE-2024-50036 net: do not delay dst_entries_add() in dst_release()
In the Linux kernel, the following vulnerability has been resolved: net: do not delay dstentriesadd in dstrelease dstentriesadd uses per-cpu data that might be freed at netns dismantle from ip6routenetexit calling dstentriesdestroy Before ip6routenetexit can be called, we release all the dsts...
CVE-2024-46678
...
CVE-2024-44990
...
CentOS 7 : kernel-alt (RHSA-2021:0354)
The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0354 advisory. - Use-after-free vulnerability in fs/blockdev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by...
CVE-2024-20455
A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense UTD component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists...
CVE-2024-20455
CVE-2024-20455 affects Cisco IOS XE Software in controller mode via the Unified Threat Defense (UTD) component. The issue arises because UTD mishandles certain packets as they egress an SD-WAN IPsec tunnel, allowing unauthenticated remote attackers to trigger a device reload and a DoS condition. ...
CVE-2024-20455
A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense UTD component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists...
CVE-2024-20455
A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense UTD component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists...
Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability
A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense UTD component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists...
Cisco IOS XE Software 安全漏洞
Cisco IOS XE Software is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that stems from UTD...
RHSA-2004:165 Red Hat Security Advisory: ipsec-tools security update
Bulletin has no description...
RHSA-2009:1036 Red Hat Security Advisory: ipsec-tools security update
Bulletin has no description...
RHSA-2008:0849 Red Hat Security Advisory: ipsec-tools security update
Bulletin has no description...
RHSA-2007:0342 Red Hat Security Advisory: ipsec-tools security update
Bulletin has no description...
RHSA-2006:0267 Red Hat Security Advisory: ipsec-tools security update
Bulletin has no description...