CVE-2022-49663

In the Linux kernel, the following vulnerability has been resolved: tunnels: do not assume mac header is set in skbtunnelcheckpmtu Recently added debug in commit f9aefd6b2aa3 "net: warn if mac header was not set" caught a bug in skbtunnelcheckpmtu, as shown in this syzbot report 1. In ndostartxmi...

How to use PING to check for proper MTU level for fragmentation for storage networks

There are many times in XenServer environments where the customer will have implemented MTU of 9000 to be able to enjoy the benefits of Jumbo Frames. While this is 100% supported, it is not 100% recommended. For the best customer experience we need to be able to suggest, test, and implement the...

qemu-kvm security, bug fix, and enhancement update

7.2.0-14 - Rebuild for 9.2 release - Resolves: bz2173590 bugs in emulation of BMI instructions for libguestfs without KVM - Resolves: bz2156876 virtual networkrhel7.9guest qemu-kvm: vhost vring error in virtqueue 1: Invalid argument 22 7.2.0-13 -...

SUSE CVE-2004-0790

Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service reset TCP connections via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks;...

dnsmasq security and bug fix update

2.79-19 - Correct typo in man page 1947039 2.79-18 - Properly randomize outgoing ports also with bound interface CVE-2021-3448 2.79-17 - Fix sporadic bind-dynamic failures 1887649 2.79-16 - Fix network errors on queries both from ipv4 and ipv6 1921153...

Google Android Information Disclosure Vulnerability

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android OS There is an information disclosure vulnerability, the vulnerability stems from the network system or product in the operation process there are configuration and other...

Google Android Information Disclosure Vulnerability

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android OS There is an information disclosure vulnerability, the vulnerability stems from the network system or product in the operation process there are configuration and other...

Google Android Information Disclosure Vulnerability (CNVD-2019-37952)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA in the U.S. An information disclosure vulnerability exists in System in Android Q. The vulnerability is due to the fact that the system is not compatible with Google and the OHA. The vulnerability...

Dealing with Nessus logs

Debugging Nessus scans is a very interesting topic. And it is not very well described even in Tenable University course. It become especially interesting when you see strange network errors in the scan results. Let's see how we can troubleshoot Nessus scans without sending Nessus DB files to...

Debian DSA-2839-1 : spice - denial of service

Multiple vulnerabilities have been found in spice, a SPICE protocol client and server library. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2013-4130 David Gibson of Red Hat discovered that SPICE incorrectly handled certain network errors. A remote user...

Debian Security Advisory DSA 2839-1 (spice - denial of service)

Multiple vulnerabilities have been found in spice, a SPICE protocol client and server library. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2013-4130 David Gibson of Red Hat discovered that SPICE incorrectly handled certain network errors. A remote user ab...

Debian: Security Advisory (DSA-2839-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

spice: unsafe clients ring access abort

The 1 redchannelpipesaddtype and 2 redchannelpipesaddemptymsg functions in server/redchannel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service reachable assertion and server exit by triggering a network error...

Ubuntu: Security Advisory (USN-1926-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1926-1: SPICE vulnerability

David Gibson discovered that SPICE incorrectly handled certain network errors. An attacker could use this issue to cause the SPICE server to crash, resulting in a denial of service...

Low: Red Hat Security Advisory: openstack-keystone security and bug fix update

Updated openstack-keystone packages that fix one security issue and various bugs are now available for Red Hat OpenStack Folsom. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Glider collectn kill 1.0.0.0 - Buffer Overflow (PoC)

/ by Luigi Auriemma / include include include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError case 10004: error = "Interrupte...

netPanzer 0.8 - Remote Denial of Service

netPanzer 0.8 - Remote Denial of Service / by Luigi Auriemma / include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError case...

Yager 5.24 - Multiple Denial of Service Vulnerabilities

Yager 5.24 - Multiple Denial of Service Vulnerabilities / by Luigi Auriemma / include include include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char erro...

Scrapland 1.0 - Server Termination Denial of Service

Scrapland 1.0 - Server Termination Denial of Service / by Luigi Auriemma / include include include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error;...