30 matches found
Linux Distros Unpatched Vulnerability : CVE-2011-2699
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier f...
Azure Linux 3.0 Security Update: kernel (CVE-2024-44985)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44985 advisory. - In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible UAF in ip6xmit If...
Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-15040024125 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637...
Medium: opensmtpd
Issue Overview: asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable through 7.0.0-portable, can abort upon a connection from a local, scoped IPv6 address. CVE-2023-29323 Affected Packages: opensmtpd Issue Correction: Run dnf update opensmt...
PT-2022-23032 · Unknown · Contiki-Ng
Name of the Vulnerable Software and Affected Versions: Contiki-NG versions prior to 4.8 Description: The issue is related to insufficient validation of IPv6 neighbor discovery options, allowing attackers to send neighbor solicitation packets that trigger an out-of-bounds read. This problem exists...
Moderate: Red Hat Bug Fix Advisory: openvswitch2.16 bug fix and enhancement update
An update for openvswitch2.16 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Bug Fixes and Enhancements: IPv6 related datapath flows are evict...
No network connectivity on Windows 7-based or Windows Server 2008 R2-based client computers when a DHCPv6 message is sent that has a duplicated DUID
No network connectivity on Windows 7-based or Windows Server 2008 R2-based client computers when a DHCPv6 message is sent that has a duplicated DUID Symptoms Consider the following scenario: You use a DHCP unique identifier DUID as a unique identifier in a network environment. You use DUID and...
CVE-2018-15505
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. An HTTP POST request with a specially crafted "Host" header field may cause a NULL pointer dereference and thus cause a denial of service, as demonstrated by the lack of a trailing '' character in an IPv6 address...
Fedora 20 : suricata-2.0.4-1.fc20 (2014-11462)
This update fixes a bug in the SSH parser, where a malformed banner could lead to evasion of SSH rules and missing log entries. In some cases it may also lead to a crash, CVE-2014-6603. Additionally, this release also addresses a new IPv6 issue that can lead to evasion. Note that Tenable Network...
CVE-2003-0254
Apache 2 before 2.0.47, when running on an IPv6 host, allows attackers to cause a denial of service CPU consumption by infinite loop when the FTP proxy server fails to create an IPv6 socket...