CVE-2023-52558

CVE-2023-52558 affects OpenBSD 7.4 before errata 002 and OpenBSD 7.3 before errata 019. A kernel crash can occur from a network buffer that must be split at a certain length after receiving specially crafted escape sequences. The issue arises in the m_split handling; patches 002_msplit.patch (Ope...

PT-2024-14628 · Openbsd · Openbsd

Name of the Vulnerable Software and Affected Versions: OpenBSD versions 7.3 through 7.4 before errata 019 and 002 respectively OpenBSD version 7.3 before errata 019 OpenBSD version 7.4 before errata 002 Description: A network buffer issue exists where a buffer that had to be split at a certain...

UBUNTU-CVE-2024-1546

When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. This vulnerability affects Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8...

CVE-2022-3806

Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer...

CVE-2022-3806

Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer...

Double free

Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer...

zephyr 资源管理错误漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in zephyr 3.2 and earlier versions, which stems from inconsistent handling of error conditions in bluetooth hci, and could lead to a double release of a network buffer...

CVE-2022-3806 Bluetooth HCI Error Handling Double Free

Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer...

PT-2023-13577 · Unknown · Bluetooth Hci

Name of the Vulnerable Software and Affected Versions: Bluetooth HCI affected versions not specified Description: The issue is related to inconsistent handling of error cases in Bluetooth HCI, which may lead to a double free condition of a network buffer. Recommendations: At the moment, there is ...

CVE-2022-3806

CVE-2022-3806 covers inconsistent error handling in Bluetooth HCI that may cause a double free of a network buffer. Multiple connected sources (NVD, CNNVD, CVE listing) tie this to Zephyr and indicate Zephyr 3.2 and earlier as affected; the issue is rated CVSS v3.1 9.8 (CRITICAL) with network acc...

Rocky Linux 8 : edk2 (RLSA-2021:3066)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:3066 advisory. - NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. CVE-2021-38575 Note that Nessus has not tested for this issue but has instead relied only on the...

Siemens Nucleus RTOS-based APOGEE and TALON Products Improper Validation of Specified Quantity in Input (CVE-2021-31346)

A vulnerability has been identified in APOGEE MBC PPC BACnet All versions, APOGEE MBC PPC P2 Ethernet All versions, APOGEE MEC PPC BACnet All versions, APOGEE MEC PPC P2 Ethernet All versions, APOGEE PXC Compact BACnet All versions = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and...

CVE-2021-31346

A vulnerability has been identified in Capital Embedded AR Classic 431-422 All versions, Capital Embedded AR Classic R20-11 All versions V2303, PLUSCONTROL 1st Gen All versions, SIMOTICS CONNECT 400 All versions V0.5.0.0, SIMOTICS CONNECT 400 All versions V1.0.0.0. The total length of an ICMP...

systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling

It was discovered that systemd-network does not correctly keep track of a buffer size when constructing DHCPv6 packets. This flaw may lead to an integer underflow that can be used to produce an heap-based buffer overflow. A malicious host on the same network segment as the victim's one may...

Integer overflow

network/nwbuf.c in ViaBTC Exchange Server before 2018-08-21 has an integer overflow leading to memory corruption...

Unbreakable Enterprise kernel security update

2.6.39-400.294.1 - nvme: Limit command retries Ashok Vairavan Orabug: 25342947 - tcp: fix use after free in tcpxmitretransmitqueue Eric Dumazet Orabug: 25374376 CVE-2016-6828 - ALSA: pcm : Call killfasync in stream lock Takashi Iwai Orabug: 25231728 CVE-2016-9794 - net: avoid signed overflows for...

Fedora 22 : armacycles-ad-0.2.8.3.3-1.fc22 (2015-9528)

Changes since 0.2.8.3.2 : - security fix: do not read ahead of the beginning of network buffer. - security fix: don't attribute network errors from processing random packets to the connection to the server - security fix: while at it, don't process random packets unless they may be important - fi...

Fedora 21 : armacycles-ad-0.2.8.3.3-1.fc21 (2015-9504)

Changes since 0.2.8.3.2 : - security fix: do not read ahead of the beginning of network buffer. - security fix: don't attribute network errors from processing random packets to the connection to the server - security fix: while at it, don't process random packets unless they may be important - fi...

Fedora 20 : armacycles-ad-0.2.8.3.3-1.fc20 (2015-9527)

Changes since 0.2.8.3.2 : - security fix: do not read ahead of the beginning of network buffer. - security fix: don't attribute network errors from processing random packets to the connection to the server - security fix: while at it, don't process random packets unless they may be important - fi...

xfstt-1.4 vulnerability

--------------------------------------------------------------- ERA IT Solutions AG http://www.era-it.ch Security Advisory - xfstt-1.4 vulnerability - 11/07/2003 --------------------------------------------------------------- 1. Vulnerability description 2. Impact 3. Notification status 4. Exploi...