Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

The vulnerability of SonicWall SMA 100 series network interface card software, related to buffer overflow in dynamic memory, allows attackers to execute arbitrary code.

The vulnerability of SonicWall SMA 100 network firewall microprogramming software is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of SonicWall SMA 100 series network interface card software, related to buffer overflow in dynamic memory, allows attackers to execute arbitrary code.

The vulnerability of SonicWall SMA 100 network firewall microprogramming software is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the SSH server of the microprogrammed network interface devices of Cisco Adaptive Security Appliance (ASA) allows a attacker to execute arbitrary commands on the basic operating system as the root user.

The vulnerability of the SSH server of the microprogrammed network interface devices in Cisco Adaptive Security Appliance ASA is related to insufficient validation of data entered by users. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands on the basic operating...

The vulnerability of the nl80211 component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the nl80211 component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the web interface for managing Zyxel ZLD microprogramming software’s network interface allows a perpetrator to execute file uploads or downloads.

The vulnerability in the web interface for managing Zyxel ZLD microprogramming software lies in incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to perform file uploads or downloads through a specially crafted URL address...

Fedora 41 : bluez / iwd / libell (2024-acb9425c93)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-acb9425c93 advisory. libell 0.69: Add support for getting remaining microseconds left on a timer. Add support for setting link MTU on a network interface. iwd 2.21: Fix issue wit...

kernel: s390/qeth: Fix kernel panic after setting hsuid

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: Fix kernel panic after setting hsuid Symptom: When the hsuid attribute is set for the first time on an IQD Layer3 device while the corresponding network interface is already UP, the kernel will try to execute a napi...

kernel: net/mlx5e: Fix netif state handling

A vulnerability was found in the Linux kernel within the net/mlx5e component, where improper handling of network interface states could lead to a NULL pointer dereference or resource leaks if network registration fails during initialization. This condition could cause system instability, as...

kernel: net/mlx5e: Fix netif state handling

A vulnerability was found in the Linux kernel within the net/mlx5e component, where improper handling of network interface states could lead to a NULL pointer dereference or resource leaks if network registration fails during initialization. This condition could cause system instability, as...

The vulnerability of the Dynamic Access Policies function in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to induce service failures.

The vulnerability of the Dynamic Access Policies function in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to improper validation of the specified type of input data. Exploiting this vulnerability c...

The vulnerability of the $pconfig variable in the interfaces_groups_edit.php file of the software network interface controller based on the FreeBSD Netgate pfSense operating system allows a hacker to execute arbitrary code.

The vulnerability of the $pconfig variable in the interfacesgroups Edit.php file of the software network interface layer based on the FreeBSD Netgate pfSense operating system is related to the lack of security measures for the website structure. Exploiting this vulnerability allows a remote...

containernetworking-plugins security update

An update is available for containernetworking-plugins. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Container Network Interface CNI project consists of a...

RLSA-2024:8110 Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

DEBIAN-CVE-2022-49015

In the Linux kernel, the following vulnerability has been resolved: net: hsr: Fix potential use-after-free The skb is delivered to netifrx which may free it, after calling this, dereferencing skb may trigger use-after-free...

Important: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

RHEL 9 : containernetworking-plugins (RHSA-2024:8110)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:8110 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfaces in Lin...

Important: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

CVE-2024-28813

An issue was discovered in Infinera hiT 7300 5.60.50. Undocumented privileged functions in the @CT management application allow an attacker to activate remote SSH access to the appliance via an unexpected network interface...

CVE-2024-28813

An issue was discovered in Infinera hiT 7300 5.60.50. Undocumented privileged functions in the @CT management application allow an attacker to activate remote SSH access to the appliance via an unexpected network interface...