ALSA-2024:4761 Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

Important: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Citrix Virtual Apps and Desktop - Machine Creation (MCS, PVS, App Layering)

Introduction This article is a summary of the top support articles related to Machine Creation including MCS, PVS and App Layering Top Support Knowledge Content Host Connections and Resource Errors CTX224551 - Delivery Controller cannot contact vCenter server after certificate update on vCenter...

How to Adjust the Bond Balance Interval in XenServer 6.x

XenServer 6.1.0 introduces a change to the NIC bonding load balancing algorithm for active-active bonds in the vSwitch network stack. In past releases, active-active bonds were set to rebalance load every 10 seconds. However, in XenServer 6.1.0 active-active bonds on the vSwitch rebalance load...

How to Replace a Network Interface Card in a XenServer Host

This article describes the procedure to replace a Network Interface Card NIC in a XenServer Host. For example, the procedure can be used to replace a faulty NIC. Requirements The XenServer host must be standalone and not joined to a resource pool. Replacing the NIC used as management interface...

How to Enable Promiscuous Mode on a Physical Network Card

This article describes how to enable promiscuous mode on a physical Network Interface Card NIC.In a network, promiscuous mode allows a network device to intercept and read each network packet that arrives in its entirety. This mode of operation is sometimes given to a network snoop server that...

How to Configure a Promiscuous Virtual Machine in XenServer

This article describes how to configure a Virtual Machine VM running on XenServer to behave promiscuously on the network, that is, allow it to see all network traffic on the Physical Network Interface PIF. Certain applications, such as network diagnostic or performance monitoring tools, might...

Unable to Bind Provisioning Services TFTP Service to Multiple NICs

Target devices on different non-routable VLANs are unable to connect to the Provisioning Services PVS server that has a NIC bound to each of the non-routable VLANs...

How to Image a Target Device Using the Imaging Wizard

This article describes how to image target device using the Imaging Wizard. Prerequisites Enable Windows Automount on Windows Enterprise Server operating systems. Disable Windows Autoplay. Remove any virtualization software before performing a conversion. Verify adequate free space exists on the...

vDisk Inactive State with Broadcom Network Cards

After installing Citrix Provisioning Services Server Target Device Software on a client computer that has a Broadcom Network Interface Card and restarting the target device, the Provisioning Services PVS status in the system tray displays Inactive. After initially installing the Target Device...

DEBIAN-CVE-2024-39502

In the Linux kernel, the following vulnerability has been resolved: ionic: fix use after netifnapidel When queues are started, netifnapiadd and napienable are called. If there are 4 queues and only 3 queues are used for the current configuration, only 3 queues' napi should be registered and...

RHEL 8 : qemu-kvm (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - QEMU: usbredir: free call on invalid pointer in bufpalloc CVE-2021-3682 - qemu-bridge-helper.c in QEMU 3....

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an issue with the ionic component using a released network interface card when handling the NAPI New API for...

The vulnerability of the lxc-user-nic component of the LXC virtualization system, which allows a hacker to gain unauthorized access to protected information

The vulnerability of the lxc-user-nic component in the LXC virtualization system is related to the exposure of information through incompatibility. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

SUSE CVE-2021-4439

In the Linux kernel, the following vulnerability has been resolved: isdn: cpai: check ctr-cnr to avoid array index out of bound The cmtpaddconnection would add a cmtp session to a controller and run a kernel thread to process cmtp. modulegetTHISMODULE; session-task = kthreadruncmtpsession, sessio...

PT-2024-5381 · Omnivise · Omnivise T3000 R8.2 Sp3 +2

Name of the Vulnerable Software and Affected Versions: Omnivise T3000 Application Server R9.2 All versions Omnivise T3000 R8.2 SP3 All versions Omnivise T3000 R8.2 SP4 All versions Description: The issue is related to insufficient input validation, which can be exploited by a remote attacker to...

CVE-2024-38359

The CVE-2024-38359 vulnerability affects the Lightning Network Daemon (lnd) in its onion processing logic, causing a Denial-of-Service due to excessive memory allocation. It has been patched in lnd v0.17.0; upgrading to a version greater than 0.17.0 mitigates the issue. As a partial mitigation, u...

SUSE-SU-2024:1499-2 Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: - CVE-2024-21011: Fixed denial of service due to long Exception message logging JDK-8319851,bsc1222979 - CVE-2024-21012: Fixed unauthorized data modification due HTTP/2 client improper reverse DNS lookup JDK-8315708,bsc1222987 -...

CVE-2024-5313

CWE-668: Exposure of the Resource Wrong Sphere vulnerability exists that exposes a SSH interface over the product network interface. This does not allow to directly exploit the product or make any unintended operation as the SSH interface access is protected by an authentication mechanism. Impact...