Lucene search
+L

206 matches found

Prion
Prion
added 2023/09/22 2:15 p.m.30 views

Buffer overflow

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

4.3CVSS7.5AI score0.00296EPSS
Exploits0References4Affected Software2
Vulnrichment
Vulnrichment
added 2023/09/22 1:34 p.m.2 views

CVE-2023-34319 Linux: buffer overrun in netback due to unusual packet

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

6.9AI score0.00296EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2023/09/22 1:34 p.m.27 views

CVE-2023-34319

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

7.8CVSS7AI score0.00296EPSS
Exploits0
CVE
CVE
added 2023/09/22 1:34 p.m.444 views

CVE-2023-34319

CVE-2023-34319 is a Linux kernel netback driver buffer overrun caused by an edge case where an entire packet is fragmented into the maximum pieces yet remains smaller than the area that preserves all headers together, after the XSA-423 fix. Exploitation could enable local denial-of-service or ins...

7.8CVSS6.8AI score0.00296EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2023/09/22 1:34 p.m.31 views

CVE-2023-34319 Linux: buffer overrun in netback due to unusual packet

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

8AI score0.00296EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2023/09/22 1:34 p.m.73 views

CVE-2023-34319

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

7.8CVSS7.1AI score0.00296EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/09/06 12:0 a.m.43 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6343-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6343-1 advisory. It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker...

7.8CVSS8AI score0.00664EPSS
Exploits1References7
OSV
OSV
added 2023/09/02 11:5 a.m.3 views

OESA-2023-1584 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connectio...

7.8CVSS6.7AI score0.0056EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/08/24 2:24 a.m.4 views

SUSE CVE-2023-34319

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

6.5CVSS6.7AI score0.00296EPSS
Exploits0References30
Amazon
Amazon
added 2023/08/22 12:0 a.m.44 views

Medium: kernel

Issue Overview: A buffer overrun vulnerability was found in the netback driver in Xen due to an unusual split packet. This flaw allows an unprivileged guest to cause a denial of service DoS of the host by sending network packets to the backend, causing the backend to crash. CVE-2023-34319 A...

7.8CVSS6.7AI score0.00296EPSS
Exploits0
Amazon
Amazon
added 2023/08/21 12:0 a.m.35 views

Medium: kernel

Issue Overview: A buffer overrun vulnerability was found in the netback driver in Xen due to an unusual split packet. This flaw allows an unprivileged guest to cause a denial of service DoS of the host by sending network packets to the backend, causing the backend to crash. CVE-2023-34319 A...

7.8CVSS6.8AI score0.00296EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/08/10 12:0 a.m.37 views

Fedora 37 : kernel (2023-638681260a)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-638681260a advisory. The 6.4.9 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly...

7.8CVSS7.1AI score0.0616EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/08/10 12:0 a.m.28 views

Fedora 38 : kernel (2023-ddfd3073b3)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ddfd3073b3 advisory. The 6.4.9 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly...

7.8CVSS7.1AI score0.0616EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2023/08/09 7:48 a.m.59 views

CVE-2023-34319

A buffer overrun vulnerability was found in the netback driver in Xen due to an unusual split packet. This flaw allows an unprivileged guest to cause a denial of service DoS of the host by sending network packets to the backend, causing the backend to crash...

5.5CVSS6.7AI score0.00296EPSS
Exploits0References4
OSV
OSV
added 2023/08/09 12:0 a.m.3 views

UBUNTU-CVE-2023-34319

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

7.8CVSS7AI score0.00296EPSS
Exploits0References23
UbuntuCve
UbuntuCve
added 2023/08/09 12:0 a.m.45 views

CVE-2023-34319

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

7.8CVSS6.8AI score0.00296EPSS
Exploits0References22
Xen Project
Xen Project
added 2023/08/08 5:0 p.m.40 views

Linux: buffer overrun in netback due to unusual packet

ISSUE DESCRIPTION The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split...

7.8CVSS7.3AI score0.00296EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/08/08 12:0 a.m.13 views

PT-2023-4315 · Linux +6 · Linux +6

Name of the Vulnerable Software and Affected Versions: Linux affected versions not specified Description: The issue is related to the Linux netback driver, which was modified to handle a frontend splitting a packet in a way that not all headers come in one piece. However, the introduced logic did...

9.8CVSS6.9AI score0.54577EPSS
Exploits28References819
Tenable Nessus
Tenable Nessus
added 2023/03/28 12:0 a.m.53 views

Ubuntu 22.04 LTS : Linux kernel (HWE) vulnerabilities (USN-5979-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5979-1 advisory. It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs...

8.8CVSS7.7AI score0.03702EPSS
Exploits5References10
Tenable Nessus
Tenable Nessus
added 2023/03/24 12:0 a.m.83 views

Ubuntu 22.10 : Linux kernel vulnerabilities (USN-5970-1)

The remote Ubuntu 22.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5970-1 advisory. It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs. An...

8.8CVSS7.7AI score0.03702EPSS
Exploits5References10
Rows per page
Query Builder