EUVD-2007-4145

Malware in sbrugna...

EUVD-2017-3892

Malware in sbrugna...

EUVD-2021-2889

Malicious code in bioql PyPI...

EUVD-2021-2878

Malicious code in bioql PyPI...

kernel: SUNRPC: lock against ->sock changing during sysfs read

A vulnerability was found in the Linux kernel's SUNRPC component, where a race condition exists during sysfs read operations due to improper handling of the -sock pointer. If the mutex -recvmutex is not held, -sock may change asynchronously, leading to a potential kernel oops. This vulnerability...

DHCP configurations for PVS

Citrix recommends DHCP configuration which ensures that a PVS target device receives the same IP address for all DHCP requests during its booted lifespan. The end result should be a target device using the same IP address it received at boot time, for the entirety of its booted lifespan. DHCP...

SUSE CVE-2023-52741

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix use-after-free in rdata-readintopages When the network status is unstable, use-after-free may occur when read data from the server. BUG: KASAN: use-after-free in readpagesfillpages+0x14c/0x7e0 Call Trace:...

UBUNTU-CVE-2023-52741

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix use-after-free in rdata-readintopages When the network status is unstable, use-after-free may occur when read data from the server. BUG: KASAN: use-after-free in readpagesfillpages+0x14c/0x7e0 Call Trace:...

SUSE CVE-2018-1000155

OpenFlow version 1.0 onwards contains a Denial of Service and Improper authorization vulnerability in OpenFlow handshake: The DPID DataPath IDentifier in the featuresreply message are inherently trusted by the controller. that can result in Denial of Service, Unauthorized Access, Network...

Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial-of-Service Vulnerability

A vulnerability in the Border Gateway Protocol BGP over an Ethernet Virtual Private Network EVPN for Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service DoS condition, or potentially corrupt the BGP routing table,...

Virtuozzo Hybrid Infrastructure 4.6 Update 1

This update provides new features, as well as bug fixes and improvements. Vulnerability id: VSTOR-45315 The MDS service may be unstable under a high load condition. Vulnerability id: VSTOR-43126 A deadlock is possible between atomic and non-atomic commands in the iSCSI kernel module. Vulnerabilit...

Design/Logic Flaw

Due to a vulnerability in DDoS protection in Juniper Networks Junos OS and Junos OS Evolved on QFX5K Series switches in a VXLAN configuration, instability might be experienced in the underlay network as a consequence of exceeding the default ddos-protection aggregate threshold. If an attacker on ...

CVE-2021-0270 Junos OS: PTX Series, QFX10K Series: A PTX/QFX FPC may restart unexpectedly with the "inline-Jflow" feature enabled on a large-scale deployment

On PTX Series and QFX10k Series devices with the "inline-jflow" feature enabled, a use after free weakness in the Packet Forwarding Engine PFE microkernel architecture of Juniper Networks Junos OS may allow an attacker to cause a Denial of Service DoS condition whereby one or more Flexible PIC...

CVE-2021-0270

CVE-2021-0270 impacts Juniper Networks Junos OS on PTX Series and QFX10K Series when the inline-Jflow feature is enabled. The issue is described as a use-after-free in the Packet Forwarding Engine (PFE) microkernel, leading to a DoS through restarting one or more FPCs and generating core files du...

OpenFlow has multiple vulnerabilities

OpenFlow is an open source network communication protocol, a data link layer that controls the forwarding plane of a network switch or router, and is considered one of the first software-defined networking SDN standards. A denial of service and improper authorization vulnerability exists in the...

CVE-2018-1000155

OpenFlow version 1.0 onwards contains a Denial of Service and Improper authorization vulnerability in OpenFlow handshake: The DPID DataPath IDentifier in the featuresreply message are inherently trusted by the controller. that can result in Denial of Service, Unauthorized Access, Network...

Authorization

OpenFlow version 1.0 onwards contains a Denial of Service and Improper authorization vulnerability in OpenFlow handshake: The DPID DataPath IDentifier in the featuresreply message are inherently trusted by the controller. that can result in Denial of Service, Unauthorized Access, Network...

CVE-2018-1000155

OpenFlow vulnerability CVE-2018-1000155 affects OpenFlow 1.0 and later during the handshake: the DPID in features_reply is treated as trusted by the controller, enabling Denial of Service and Improper Authorization. The issue can lead to DoS, Unauthorized Access, and network instability once an a...

CVE-2017-12319

A vulnerability in the Border Gateway Protocol BGP over an Ethernet Virtual Private Network EVPN for Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service DoS condition, or potentially corrupt the BGP routing table,...

Cisco Patches DoS Flaw in BGP over Ethernet VPN Implementation

Cisco said that changes to its implementation of the Border Gateway Protocol BGP over an Ethernet VPN has created a vulnerability in its IOE XE software. The networking giant has released software updates for IOS XE that patches the issue, which could be exploited remotely without authentication,...