Linux Distros Unpatched Vulnerability : CVE-2020-0347

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In iptables, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution...

CVE-2020-0347

In iptables, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-136658008...

DEBIAN-CVE-2020-0347

In iptables, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-136658008...

puppet-tripleo: if ssl is enabled, traffic is open on both undercloud and overcloud

An access-control flaw was discovered in puppet-tripleo's IPtables rules management, which allowed the creation of TCP/UDP rules with empty port values. Some API services in Red Hat OpenStack Platform director are not exposed to public networks, which meant their $publicsslport value was set to...

Design/Logic Flaw

extensions/libxttcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant...

Mandrake Linux Security Advisory : kernel (MDKSA-2001:071)

A security hole was found in the earlier Linux 2.4 kernels dealing with iptables RELATED connection tracking. The iptables ipconntrackftp module, which is used for stateful inspection of FTP traffic, does not validate parameters passed to it in an FTP PORT command. Due to this flaw, carefully...

Дырка в iptables/nat в linux (protection bypass)

Некорректная обработка команд FTP и других протоколов позволяет открыть любой порт сервера и приводит к возможности атаки из демилитаризованной в приватную зону...

Tempest Security Techonologies -- Adivsory #01/2001 -- Linux IPTables

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 This advisory is also available at: http://www.tempest.com.br/advisories/01-2001.html Cristiano Lincoln Mattos, CISSP, SSCP CESAR - Centro de Estudos e Sistemas Avanзados do Recife ===== Tempest Security Technologies - Advisory 01 / 2001 =============...